Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: 4EJy1MR/Lnj1FIzHqMY+Sl8SJs0eZvvQ3X1AEe0vpHU=
Subject key identifier: 2F:3D:5C:BE:23:2A:72:2A:A5:DF:A7:AA:3F:73:2F:AB:F1:69:74:69
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019EC0DB3E15337ADD4CDD8469C8CB87C638
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 0674
Signing time: Sat 13 Jun 2026 12:00:54 +0000
Manifest this update: Sat 13 Jun 2026 12:00:54 +0000
Manifest next update: Sun 14 Jun 2026 12:00:54 +0000
Files and hashes: 1: MmHcaoSID19FRmGF5kFPH25PR2Q.roa (hash: Pv88TmQb3cGeVyGfPSrdF1R8Obs/Bo3T58FvtRvVnRM=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: ciRo7QTVf/jSHGjdIl6LC+PpTvp0HgJjC/H/LN5PizE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:3e:15:33:7a:dd:4c:dd:84:69:c8:cb:87:c6:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Jun 13 12:00:54 2026 GMT
Not After : Jun 14 12:00:54 2026 GMT
Subject: CN=2f3d5cbe232a722aa5dfa7aa3f732fabf1697469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b0:b1:a4:f6:03:af:94:3a:f6:81:6c:c0:af:
0f:30:f1:ac:4b:39:69:21:59:1c:75:24:92:22:c3:
65:64:a2:19:ea:13:e5:9b:37:c1:2b:20:3e:79:78:
ba:93:7e:f1:c0:d9:22:a6:b2:ba:34:2e:88:8b:fd:
5e:9f:bf:78:31:b9:69:ef:27:99:1a:e3:ee:c6:e6:
16:49:b5:76:e8:8f:46:e0:9d:1a:ce:92:42:bb:c5:
eb:0e:4a:6c:eb:0f:4c:dc:7b:23:5d:b6:f4:63:1d:
80:94:7d:43:04:78:d9:f4:68:9f:59:46:98:50:0d:
63:ca:e3:0f:c1:7e:4e:a9:5d:e0:20:1d:fa:0b:2d:
70:2a:ee:f7:9c:cf:be:39:91:6e:98:ba:0e:20:3b:
02:cc:18:d0:fe:f5:6a:3b:c3:76:5f:9f:d6:71:2c:
6e:e6:eb:64:46:cc:a9:86:16:32:bc:74:38:e4:28:
78:b5:0f:45:a7:6f:a1:c8:f1:ac:46:b1:e6:33:eb:
b3:e8:27:a2:c2:13:d5:20:b6:9c:0c:37:12:ab:9b:
66:e6:31:88:a9:74:12:04:1b:da:b8:d9:9b:d0:59:
af:3e:69:63:2c:44:63:83:56:70:03:8d:b6:d4:4f:
3e:50:24:ef:1f:0a:46:05:5d:2d:b4:e1:49:af:6a:
34:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:3D:5C:BE:23:2A:72:2A:A5:DF:A7:AA:3F:73:2F:AB:F1:69:74:69
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:6d:02:6d:79:f7:b3:c7:59:de:2f:ac:d3:8a:e0:61:23:64:
a3:c4:43:7c:b8:a5:50:93:8c:bf:66:f4:37:d4:c5:67:05:45:
40:3f:3c:a6:ab:29:9b:da:38:fb:f0:96:c1:6d:74:29:61:cf:
e4:33:36:da:4e:1d:ce:17:eb:26:fa:71:d5:f8:e6:53:d7:b1:
c3:0b:1c:8a:3b:76:41:9f:45:30:4a:ca:58:da:06:c5:a4:ea:
1a:3a:6c:f8:77:6a:d4:b2:e5:03:04:30:42:23:e8:2c:ee:8c:
97:e9:fc:1b:92:3f:b0:8c:38:ab:f9:95:df:9b:4a:cc:86:f9:
22:fe:5e:55:f6:5a:27:48:31:76:68:c0:b1:13:72:bb:52:3e:
6d:c0:2a:42:43:f6:4a:ea:5c:5b:5d:05:c7:dd:96:89:5b:31:
b4:dc:79:b7:24:e3:ac:e8:2a:b7:71:cb:2a:89:a7:38:5b:bd:
9b:a3:6e:a5:fb:60:0f:e0:6b:53:41:5e:4a:b2:48:c7:ec:9c:
55:6c:8a:42:5b:90:4b:ea:02:81:cb:c9:c8:85:6e:81:aa:30:
70:3f:dd:90:f8:fb:b9:a9:73:9f:71:5e:2f:f9:3e:ee:9d:2e:
12:63:91:0b:e8:c1:a8:88:d5:eb:4c:19:cd:46:65:3d:d2:b8:
83:5e:2b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:11:39 2026 by rpki-client