Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: MMFk0v1c/YqoBg/5h9M2p0ye7FcMUpW2vkCp904ZlmI=
Subject key identifier: 74:CC:63:C1:27:BA:CD:D5:26:40:18:11:B9:89:EC:FE:BA:59:0A:41
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019EC2C9B5D41378C7E5E98D6619A151CF40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 0675
Signing time: Sat 13 Jun 2026 21:00:59 +0000
Manifest this update: Sat 13 Jun 2026 21:00:59 +0000
Manifest next update: Sun 14 Jun 2026 21:00:59 +0000
Files and hashes: 1: MmHcaoSID19FRmGF5kFPH25PR2Q.roa (hash: Pv88TmQb3cGeVyGfPSrdF1R8Obs/Bo3T58FvtRvVnRM=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: vKu3XpE/SLMiKcPyqguIzvMpUXGoDtACXBoeGzx8Qx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:b5:d4:13:78:c7:e5:e9:8d:66:19:a1:51:cf:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Jun 13 21:00:59 2026 GMT
Not After : Jun 14 21:00:59 2026 GMT
Subject: CN=74cc63c127bacdd526401811b989ecfeba590a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:88:68:c8:75:cb:83:09:0f:a7:59:67:69:6c:
bc:49:17:3b:aa:2c:f6:0d:42:0c:9e:dc:e1:a1:65:
af:f3:9e:a2:ca:f2:d3:0d:ed:ed:02:18:17:99:80:
00:fe:a4:7f:86:6d:4c:e9:f9:5b:9d:3e:66:d4:96:
fb:1a:af:58:2f:dc:c2:fa:8c:37:6f:23:84:ca:0d:
b3:7c:ef:68:c2:37:14:26:ec:fa:de:c0:1d:89:4f:
cb:57:5b:11:04:d7:54:d2:37:c5:8c:83:56:34:b1:
e9:52:b7:c1:e2:22:d4:d5:1d:82:4d:70:a7:67:96:
c2:85:9c:69:87:b6:ea:cc:67:af:f1:72:43:9a:60:
46:98:00:6a:6d:c6:af:df:a6:f4:60:f0:50:f7:e0:
2f:b7:6a:82:81:cc:95:14:72:ec:4d:bb:20:8f:81:
32:7c:8d:c4:a8:56:af:35:44:62:e7:fc:06:ca:88:
61:19:58:b1:52:a8:8c:2c:22:99:50:64:aa:59:ad:
a0:35:ce:03:2a:9e:cc:c4:e8:d4:f5:32:e9:8d:93:
19:f3:23:20:48:40:e0:92:58:8a:2e:e3:9b:a7:c9:
d4:fe:16:e2:4f:e1:be:dc:7a:84:76:27:da:48:8f:
c9:64:9c:f2:70:5f:62:5a:f6:f5:58:bb:aa:38:43:
24:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CC:63:C1:27:BA:CD:D5:26:40:18:11:B9:89:EC:FE:BA:59:0A:41
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ae:5e:d3:3d:d6:6b:47:5d:dd:d4:a5:4f:6a:25:5a:5f:6a:
e8:f8:c0:87:70:3d:ed:f5:46:2e:d9:7d:ad:5e:3b:44:12:ac:
a1:da:b2:a6:79:bd:03:be:57:23:96:f5:71:da:0b:f9:34:b4:
e5:c8:c0:c4:9b:70:6a:c8:22:db:0d:4d:d9:67:37:f5:b0:30:
4e:23:8d:e0:61:3d:23:01:54:30:15:d9:89:03:62:52:26:a7:
98:ca:c7:cd:ff:a0:70:87:bc:97:5f:50:04:8e:24:18:67:19:
a6:87:77:63:d7:bf:2e:d2:67:59:cd:fd:9d:a7:6c:aa:c4:32:
e3:27:8a:cb:70:87:61:79:a7:f1:d5:5e:48:3d:62:6e:46:56:
04:af:91:31:e5:36:c0:fd:43:85:02:3a:e3:12:71:8c:c1:35:
ea:d1:7e:8a:eb:98:b2:24:75:b2:9d:0c:8d:c6:26:e2:1f:e6:
f9:fd:8c:1b:d8:b5:ca:96:ce:2f:13:56:84:08:a8:e9:92:b4:
f7:de:8c:2e:8f:b7:c2:44:4a:9a:fa:4b:ef:fd:ff:1d:ea:e5:
b4:35:48:b2:0b:4d:89:9f:ac:67:f7:49:6a:fb:4d:9d:41:7c:
51:68:75:65:52:fb:e2:43:fe:91:35:5a:d9:15:65:7f:a2:16:
b4:37:e9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:00:20 2026 by rpki-client