Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json)
Hash identifier: 4Y0S/ZKwIfu/DpdMB7FsD5vV4ibFeIKiyrRM5jaX8N0=
Subject key identifier: F1:08:9E:A9:35:BE:BF:91:EA:B8:97:28:99:66:8D:B7:DD:16:79:23
Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Certificate serial: 019EBE47C66A52F180DC047C5E4A593D2C47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
Manifest number: 1956
Signing time: Sat 13 Jun 2026 00:00:35 +0000
Manifest this update: Sat 13 Jun 2026 00:00:35 +0000
Manifest next update: Sun 14 Jun 2026 00:00:35 +0000
Files and hashes: 1: 8Cyiu9TGgmUOUznTzwuimvpBz-0.roa (hash: fxDhOvakeaBpONzylzbpa6MC2T2cHPWJh3ryLVED65Q=)
2: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: BHHnxMF81HvtGi321NlPF4VApd4ce19IKKblizaIaqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:c6:6a:52:f1:80:dc:04:7c:5e:4a:59:3d:2c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Validity
Not Before: Jun 13 00:00:35 2026 GMT
Not After : Jun 14 00:00:35 2026 GMT
Subject: CN=f1089ea935bebf91eab8972899668db7dd167923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9e:62:ac:8a:5d:e7:01:1d:f9:4a:2a:87:ae:
11:e6:3f:e5:8d:b6:00:5b:84:11:20:57:8c:25:92:
4e:03:8a:1f:fb:6d:8a:4e:ec:e2:99:dd:87:b6:43:
c8:74:3b:66:85:5a:98:28:60:9c:ed:ec:0d:ec:fd:
a1:c8:ae:1a:cc:a5:14:a7:4a:ac:62:34:be:f5:88:
80:bc:12:01:49:39:33:40:6f:74:9d:52:f4:d8:73:
35:63:62:e8:d9:78:6d:e8:8c:29:eb:37:d4:69:fd:
7d:dc:06:a0:80:51:86:20:8e:a2:2f:ac:6e:f7:87:
fb:53:85:0c:7e:21:7c:7a:35:ea:52:ef:73:fb:ab:
75:8f:e2:48:ca:32:dc:9c:01:50:96:a3:32:ff:ff:
01:cd:2c:a2:df:86:c0:a4:b2:3b:fa:fb:13:16:0f:
cd:fb:05:0d:b7:14:3f:e1:37:08:cb:1f:c5:c8:a6:
5d:3d:57:26:1b:0a:34:3b:76:38:1c:d1:84:eb:7c:
e1:4c:56:0a:99:c1:8f:bc:51:f8:ab:73:20:61:64:
f0:fe:5e:60:0d:d0:fa:a7:fb:fd:48:3c:4e:52:39:
4d:11:61:ba:78:55:c2:c8:80:70:b6:4e:0e:5c:9d:
00:2a:0e:ed:0a:a6:f0:11:65:1d:63:28:8a:7d:9d:
b1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:08:9E:A9:35:BE:BF:91:EA:B8:97:28:99:66:8D:B7:DD:16:79:23
X509v3 Authority Key Identifier:
keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:b1:07:f7:8b:39:e8:54:c9:14:df:98:60:36:44:c1:a1:fe:
b0:da:92:e7:0c:bf:27:69:fb:7e:43:26:4b:a9:30:a6:49:60:
b3:23:b6:3d:d1:c3:d1:5d:1c:57:ef:2b:2b:03:c1:16:f9:8f:
21:8d:b5:6f:b2:56:45:94:47:31:c0:f6:36:f8:82:ce:00:96:
79:d9:05:70:a2:58:e5:65:38:5a:ec:13:22:22:9a:b8:92:db:
9e:43:13:7a:e8:a4:ac:a6:ec:17:63:f7:18:ce:96:d5:ce:53:
72:f2:39:b6:86:33:e2:2c:e6:a2:c0:66:f1:63:db:27:85:ee:
dc:dd:ea:21:bf:4e:80:e8:a7:e6:30:e4:f3:01:e0:5a:b5:6b:
ec:4b:be:62:4d:54:97:7e:aa:f0:9a:31:12:a8:c9:66:f3:43:
be:48:4a:e0:cd:e1:7a:99:e1:b1:7c:39:f8:43:56:c8:1c:0d:
53:f4:d5:5f:6e:00:a8:6e:45:4a:13:2a:96:67:a3:4c:d1:15:
89:04:95:20:9c:db:0f:f4:f0:b3:0e:bb:ac:30:73:9f:00:4c:
10:df:cc:23:15:fc:31:cf:d7:82:bf:92:90:4b:fb:36:1e:46:
a9:6a:65:aa:2c:0b:5c:e1:a8:3a:00:60:0c:5a:e1:55:a9:88:
ba:5e:41:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:32:09 2026 by rpki-client