Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: IhpLD/4kA3r6nWZAF084nZREYp6+2Fg3NiTIEeDXBr4=
Subject key identifier: 15:75:B0:6B:48:C9:17:D4:FA:91:8A:9B:13:7C:C6:E4:CF:E0:8C:D0
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019E31F29D41D9185F3CBD80395EBF6C223D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 062A
Signing time: Sat 16 May 2026 18:00:43 +0000
Manifest this update: Sat 16 May 2026 18:00:43 +0000
Manifest next update: Sun 17 May 2026 18:00:43 +0000
Files and hashes: 1: MmHcaoSID19FRmGF5kFPH25PR2Q.roa (hash: Pv88TmQb3cGeVyGfPSrdF1R8Obs/Bo3T58FvtRvVnRM=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: tW4cZyBdw8MhqzmvQ3vm8NumuitkgPEV3oKeC06MCMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f2:9d:41:d9:18:5f:3c:bd:80:39:5e:bf:6c:22:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: May 16 18:00:43 2026 GMT
Not After : May 17 18:00:43 2026 GMT
Subject: CN=1575b06b48c917d4fa918a9b137cc6e4cfe08cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f1:eb:1b:77:f9:58:f2:59:fc:25:8f:99:c7:
8c:ce:b9:3d:90:dc:08:3c:2b:c4:9a:43:fb:23:34:
dd:a3:9c:7e:34:a4:93:dd:cd:f0:98:e1:29:5b:d7:
8c:d9:00:02:15:71:ba:6f:7c:96:d2:94:2d:a7:9e:
48:a4:17:f8:e5:03:4a:e7:20:58:e9:55:e9:7b:e7:
6e:8e:41:e4:b0:b7:e8:c8:48:4c:50:5a:97:8b:2d:
12:ca:bf:22:2b:de:10:75:48:e0:5a:2a:92:6a:9b:
0d:2c:f5:6f:e2:99:65:07:91:6b:db:67:1e:b1:eb:
07:b1:e7:d3:02:c1:4d:3d:3e:d5:34:2e:c9:de:8f:
13:2e:81:eb:46:a4:c3:52:28:e0:83:ff:27:19:eb:
82:b6:58:35:d7:f1:5c:20:8d:a6:02:9f:35:e1:4d:
01:1f:14:db:ac:b3:a1:11:29:8e:bf:7a:73:90:79:
ee:73:ec:b3:5f:13:2e:4a:96:b7:10:36:3d:bf:e1:
7d:c1:ca:f7:5e:8d:aa:f7:ef:89:fa:0a:58:31:fd:
a4:7a:14:35:67:c6:7f:6c:2c:0a:8d:60:5b:89:2c:
52:32:4b:5b:40:91:3d:8b:e4:24:a7:00:bd:32:47:
3f:61:63:57:b1:93:a6:64:aa:ed:3a:6d:f4:c2:c1:
d6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:75:B0:6B:48:C9:17:D4:FA:91:8A:9B:13:7C:C6:E4:CF:E0:8C:D0
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:47:8f:e5:1d:76:5d:22:98:f9:87:8e:b4:e6:2a:ee:88:b1:
ed:8d:79:4f:fa:31:ae:89:aa:e4:e3:a2:a7:1d:84:0f:04:1e:
ed:18:6e:38:59:d3:6a:8e:08:a2:e6:e1:80:6c:31:08:84:aa:
f4:07:a7:41:cd:1a:42:2b:08:72:3c:a6:b5:eb:77:36:44:59:
95:2f:02:44:ee:68:f1:62:77:94:fc:c2:f0:c7:fd:29:85:74:
ff:78:65:3d:5f:88:48:63:6f:a7:07:54:99:d4:f1:16:06:17:
86:6d:70:3a:38:f1:bb:72:5d:76:8f:74:70:53:97:56:6a:49:
f0:7d:2b:75:4f:df:de:5f:37:5d:c2:aa:a7:f5:86:73:14:0b:
93:6e:9e:f2:28:3a:16:0a:cf:64:4c:fb:1f:78:60:7f:69:da:
4d:cc:18:98:a0:1e:bf:b3:c6:16:3e:c7:5b:ad:9e:18:5a:d3:
57:6a:f5:da:28:a1:30:96:bd:dd:bd:28:ff:25:a5:4e:91:9d:
14:e3:27:25:9a:5d:c0:ff:38:ca:fd:6e:6b:f6:83:08:3e:38:
dd:47:2d:f3:e0:d2:47:a3:b8:43:25:41:ff:ef:75:e3:6f:a4:
1b:6c:0c:f1:d1:85:af:52:72:27:c7:8a:a4:0a:7f:87:61:0a:
71:d2:60:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4x8p1B2RhfPL2AOV6/bCI9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNjAzNDZkMDgxYjFjNWM4MTBiMzk0YzY2ZTEwNTEyYmJm
NGQ4YzkwHhcNMjYwNTE2MTgwMDQzWhcNMjYwNTE3MTgwMDQzWjAzMTEwLwYDVQQD
EygxNTc1YjA2YjQ4YzkxN2Q0ZmE5MThhOWIxMzdjYzZlNGNmZTA4Y2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPHrG3f5WPJZ/CWPmceMzrk9kNwI
PCvEmkP7IzTdo5x+NKST3c3wmOEpW9eM2QACFXG6b3yW0pQtp55IpBf45QNK5yBY
6VXpe+dujkHksLfoyEhMUFqXiy0Syr8iK94QdUjgWiqSapsNLPVv4pllB5Fr22ce
sesHsefTAsFNPT7VNC7J3o8TLoHrRqTDUijgg/8nGeuCtlg11/FcII2mAp814U0B
HxTbrLOhESmOv3pzkHnuc+yzXxMuSpa3EDY9v+F9wcr3Xo2q9++J+gpYMf2kehQ1
Z8Z/bCwKjWBbiSxSMktbQJE9i+QkpwC9Mkc/YWNXsZOmZKrtOm30wsHW+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBV1sGtIyRfU+pGKmxN8xuTP4IzQMB8GA1UdIwQY
MBaAFK9gNG0IGxxcgQs5TGbhBRK79NjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEt
MjYzOTgzOWY4MjhkLzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEtMjYzOTgzOWY4Mjhk
LzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhUeP5R12
XSKY+YeOtOYq7oix7Y15T/oxromq5OOipx2EDwQe7RhuOFnTao4IoubhgGwxCISq
9AenQc0aQisIcjymtet3NkRZlS8CRO5o8WJ3lPzC8Mf9KYV0/3hlPV+ISGNvpwdU
mdTxFgYXhm1wOjjxu3Jddo90cFOXVmpJ8H0rdU/f3l83XcKqp/WGcxQLk26e8ig6
FgrPZEz7H3hgf2naTcwYmKAev7PGFj7HW62eGFrTV2r12iihMJa93b0o/yWlTpGd
FOMnJZpdwP84yv1ua/aDCD443Uct8+DSR6O4QyVB/+9142+kG2wM8dGFr1JyJ8eK
pAp/h2EKcdJgPA==
-----END CERTIFICATE-----
Generated at Sat May 16 21:14:17 2026 by rpki-client