Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json)
Hash identifier: xcZ+QshuY3emZH83MG6XDCf6tLUm9hba+9zDUlbcRfM=
Subject key identifier: 6E:EA:BB:F9:A9:79:02:36:7F:F9:6B:DB:E4:74:CC:C6:10:53:EA:63
Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Certificate serial: 019CAD23067F3112B37A20C7DC2E6BDB745D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 06:01:19 +0000
Manifest this update: Mon 02 Mar 2026 06:01:19 +0000
Manifest next update: Tue 03 Mar 2026 06:01:19 +0000
Files and hashes: 1: 8Cyiu9TGgmUOUznTzwuimvpBz-0.roa (hash: fxDhOvakeaBpONzylzbpa6MC2T2cHPWJh3ryLVED65Q=)
2: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: ed5ePvrpuQzfSbXCB9dsVCORhdnJhVdbsqYCsVDbrWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:23:06:7f:31:12:b3:7a:20:c7:dc:2e:6b:db:74:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Validity
Not Before: Mar 2 06:01:19 2026 GMT
Not After : Mar 3 06:01:19 2026 GMT
Subject: CN=6eeabbf9a97902367ff96bdbe474ccc61053ea63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ed:2a:3b:89:d5:79:5b:e4:aa:67:5b:68:88:
3e:70:6a:2b:d3:a4:86:09:f3:0d:ea:d8:da:0f:ad:
0e:b6:9e:7a:18:bc:06:7c:62:b7:e6:09:48:46:05:
e1:33:32:3e:32:90:20:7f:a5:01:51:10:37:d0:7b:
a4:ac:39:c1:a7:18:c7:0f:01:0d:e1:b4:e7:0c:8e:
2b:db:55:ab:31:07:56:31:f5:6a:3d:f2:d4:70:d5:
67:8d:a5:04:26:1d:29:fa:c9:51:54:a1:18:34:78:
2d:1e:c2:34:29:9c:7d:16:84:5d:3f:d9:58:9f:56:
58:8f:78:3f:62:91:2d:0d:47:dc:a8:8c:95:28:76:
cb:5a:a1:f5:6f:06:15:b5:05:eb:f7:25:89:c6:fd:
06:33:db:00:5b:57:10:3f:1c:54:cf:e6:8d:a0:d0:
45:40:8a:d4:f4:43:d6:e2:dc:ed:0e:b8:ac:f9:bf:
79:52:d5:9f:ef:b8:54:50:8b:ec:bc:01:75:73:26:
19:32:1b:72:62:60:08:a6:3c:5d:8f:70:39:9f:22:
65:7c:79:e3:f6:a5:61:9f:01:dc:10:fd:f3:96:d8:
83:a5:94:18:41:ec:6b:01:53:f9:e3:6d:15:c4:de:
db:9e:da:29:e5:43:2a:f9:07:b5:d1:95:37:50:6e:
ce:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EA:BB:F9:A9:79:02:36:7F:F9:6B:DB:E4:74:CC:C6:10:53:EA:63
X509v3 Authority Key Identifier:
keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a7:e9:5a:82:4a:e5:ce:fd:35:b3:74:6a:60:3a:2a:90:72:
b1:ef:97:db:15:0b:31:a6:a6:8b:27:28:7b:a5:0f:67:7f:aa:
0c:01:a3:90:4c:5b:0d:fb:5b:36:c5:04:19:59:f8:f6:a1:66:
3a:0e:c9:a9:b5:4f:45:cd:eb:78:04:61:4c:38:0c:42:30:c1:
5e:e2:0f:6b:63:95:de:41:b3:8a:db:42:42:76:b0:7b:38:b3:
63:f6:bf:b8:c6:0d:7b:6d:5d:a2:6d:23:8f:ea:34:a6:87:b5:
32:fd:57:bb:70:d0:ed:60:93:3f:30:23:18:72:af:92:2f:fc:
1e:f0:bc:16:80:90:ca:ab:10:5a:c3:3d:0c:8e:06:65:0a:d0:
07:ae:65:f7:da:39:08:1d:29:4f:14:26:56:4f:93:06:b9:ca:
53:d2:7a:4a:0b:0a:a3:8d:c3:a4:af:72:43:45:e2:57:a5:86:
9a:0a:ab:f1:f7:c9:62:66:9d:03:52:95:84:e8:f8:d6:c8:82:
45:e7:f1:47:a7:d2:9f:85:4e:e1:83:47:47:f5:b1:35:fd:3b:
b4:3e:73:f9:56:36:8e:cb:fa:49:8d:7d:59:54:29:8c:1c:58:
c1:47:e7:c6:7a:e1:ef:da:20:fa:cd:f4:d1:05:3e:fe:af:e6:
13:62:d1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:48:52 2026 by rpki-client