Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json)
Hash identifier: MkW6XsqgF6Z72a53tZNovbmt5NU1Wb7Imvq5e+CuApg=
Subject key identifier: 0C:8E:D3:7F:FB:73:1E:64:C3:25:70:3E:F0:25:0F:BE:5C:19:C9:56
Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Certificate serial: 019D9AABBB85CA162942F15F60EAFEA95EB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 09:00:38 +0000
Manifest this update: Fri 17 Apr 2026 09:00:38 +0000
Manifest next update: Sat 18 Apr 2026 09:00:38 +0000
Files and hashes: 1: 8Cyiu9TGgmUOUznTzwuimvpBz-0.roa (hash: fxDhOvakeaBpONzylzbpa6MC2T2cHPWJh3ryLVED65Q=)
2: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: 92cthj8t49xDyjmDhR6rEZF7DDKZKStrGW3Luv31IhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:bb:85:ca:16:29:42:f1:5f:60:ea:fe:a9:5e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Validity
Not Before: Apr 17 09:00:38 2026 GMT
Not After : Apr 18 09:00:38 2026 GMT
Subject: CN=0c8ed37ffb731e64c325703ef0250fbe5c19c956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fc:3a:92:26:a5:b6:7e:44:8b:2f:b9:9a:dd:
ba:07:f7:fe:6e:8a:22:33:69:dd:a8:95:6e:b6:c0:
d9:b3:60:5a:b6:c0:ea:a0:44:76:8a:b3:a5:8f:09:
ea:31:a6:4d:1f:cc:f9:1d:16:b2:fa:b6:cf:e7:20:
c9:78:48:43:cd:d8:56:37:49:5a:00:96:32:e3:de:
e2:16:91:05:3b:be:96:06:b3:c7:c6:ea:72:d6:9a:
db:c0:2b:10:e2:e1:4d:25:8d:7a:6a:9f:98:6b:83:
a8:2b:bd:c5:fc:e6:b7:0b:b2:b0:e3:da:f4:c3:43:
6b:0e:06:70:03:10:37:bc:88:89:35:8c:04:c3:26:
df:ba:76:12:63:a3:47:69:94:66:c9:d6:10:fe:96:
81:5e:16:45:4a:ab:4f:60:98:01:21:10:cc:9c:cb:
01:3b:ee:82:56:93:48:13:60:90:41:b1:95:c3:18:
d3:3d:d1:53:db:42:98:83:d5:a1:19:f6:03:59:dc:
2d:78:c6:ab:b0:ef:72:69:58:d0:45:bc:61:05:f7:
79:35:d8:c5:50:86:c9:d3:ba:88:72:90:dd:c6:d9:
69:6e:1b:c3:cb:78:41:47:65:4f:9d:d8:7e:03:cb:
4c:75:80:bc:47:ce:6a:27:77:d8:66:27:55:1d:dd:
f1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:8E:D3:7F:FB:73:1E:64:C3:25:70:3E:F0:25:0F:BE:5C:19:C9:56
X509v3 Authority Key Identifier:
keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:5d:f6:aa:1c:81:9e:1f:d6:bf:c2:64:17:f8:9f:36:41:4e:
ed:f7:cd:cc:83:e4:1d:06:0c:72:85:6a:ef:70:0b:af:01:ab:
c3:5b:a4:ca:0f:8d:d1:e1:bf:fa:d6:41:f8:8d:e6:f1:54:7d:
c4:87:3b:90:e1:86:f8:35:be:47:e2:82:65:a2:63:0f:0f:5a:
71:97:19:46:46:8a:ac:d2:80:cc:17:b7:2e:d8:da:b5:5b:ea:
3e:b7:2e:f1:91:27:07:41:d7:ac:90:03:8d:fc:40:1c:2f:82:
f0:ce:8d:f2:1c:61:9e:50:5f:06:6e:32:a7:78:5d:3c:05:f6:
55:ca:1f:8d:8a:0a:a1:d9:a8:2e:9d:03:dd:98:8a:82:d8:61:
46:a9:ae:df:ed:e4:78:f8:23:e4:01:76:2c:5c:ef:8d:8a:ba:
c1:9c:6d:87:77:40:28:f2:74:08:8d:4b:9f:e8:a5:8d:12:1b:
99:69:d3:a8:33:8b:e6:4e:f6:8e:db:24:09:da:75:5f:34:c2:
92:21:5b:aa:e8:95:48:24:cd:05:4a:0e:f8:59:05:36:af:d3:
2d:73:0c:66:2f:03:bb:0d:81:9e:aa:76:33:0e:54:2e:84:59:
9b:59:2c:58:93:7a:b9:94:c7:76:1c:04:76:1f:ee:9c:e3:c8:
5f:71:c9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:24:50 2026 by rpki-client