Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: PWVPcD2dCdoCUoebOXngtg8uydSdblVRr3Fl0Tq8RmY=
Subject key identifier: 6F:B5:83:86:D1:BF:E3:D9:F9:79:D8:58:D0:11:65:E2:2E:CE:2B:B2
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019F19B2166AB857255FED480C8A06E767D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 06A2
Signing time: Tue 30 Jun 2026 18:02:09 +0000
Manifest this update: Tue 30 Jun 2026 18:02:09 +0000
Manifest next update: Wed 01 Jul 2026 18:02:09 +0000
Files and hashes: 1: MmHcaoSID19FRmGF5kFPH25PR2Q.roa (hash: Pv88TmQb3cGeVyGfPSrdF1R8Obs/Bo3T58FvtRvVnRM=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: U054lLOSilMedBRT4jts3hyUntXI6PP/M5rZL1FCGwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b2:16:6a:b8:57:25:5f:ed:48:0c:8a:06:e7:67:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Jun 30 18:02:09 2026 GMT
Not After : Jul 1 18:02:09 2026 GMT
Subject: CN=6fb58386d1bfe3d9f979d858d01165e22ece2bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:33:49:7b:a8:2a:f8:cd:13:55:53:2e:4d:b9:
e9:d9:33:b3:fa:13:c1:9f:fe:32:01:fe:12:d9:6d:
82:b4:ad:bc:69:ec:b5:3e:03:40:15:07:28:50:3e:
a9:70:89:7e:87:d6:49:41:33:3c:c3:8b:d4:89:c0:
c6:69:ef:bd:86:94:6d:d3:c8:39:51:ae:9c:ab:9b:
26:29:35:db:a9:99:71:23:d0:bb:52:b7:fe:ed:88:
a4:24:0b:12:31:67:51:a7:ac:ac:e8:bc:1b:fc:70:
4a:83:6d:bb:56:f6:5b:61:e2:e3:9e:4b:5f:26:6b:
7e:db:86:eb:f6:f9:1d:eb:c3:e1:5a:1e:5e:1f:31:
70:63:58:70:a8:c5:6c:9e:de:9c:f2:d7:a3:71:b9:
a1:87:1b:79:90:93:ed:67:4e:d2:52:6e:fc:a1:a6:
15:2c:8f:f6:5f:71:48:78:5a:ab:c8:f3:73:6c:70:
9b:02:ad:08:4e:f3:54:fb:e6:79:d0:8d:3f:55:73:
c0:a4:ee:4c:2e:7c:b5:c2:0b:e1:5f:28:0a:a8:89:
94:20:a4:12:83:05:a1:51:9a:21:b2:91:a9:4f:b0:
2f:60:44:67:72:c2:ab:64:68:55:a8:b0:8d:d9:cb:
83:9e:f8:2f:ad:9b:d9:35:57:d5:39:25:a1:b1:55:
70:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B5:83:86:D1:BF:E3:D9:F9:79:D8:58:D0:11:65:E2:2E:CE:2B:B2
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:62:85:51:13:aa:66:1f:c4:31:7c:7c:85:bb:e7:f6:d1:f6:
ac:94:a7:7a:c9:b5:f8:20:f3:83:06:9d:d0:81:d8:d6:49:60:
87:ad:51:76:fe:e3:72:96:c7:b4:c6:9c:37:1d:b8:18:5e:19:
a8:27:2e:c8:fe:3f:a1:99:1e:4d:1c:77:9f:9c:bc:0a:34:a1:
11:17:5b:c8:56:48:da:89:60:32:52:ba:fe:f8:a5:b1:65:e6:
8a:80:50:80:95:c4:39:9f:cd:cb:2f:15:bd:df:d6:01:82:ff:
b7:d7:6b:b1:3e:8d:32:30:02:dd:27:28:33:67:5a:f9:59:c1:
41:34:b5:34:e4:01:6f:68:7a:b0:5c:2d:94:23:4a:d1:16:e8:
80:34:ad:f2:2e:db:13:04:6b:3e:e9:c6:0c:f7:80:46:ce:3e:
b6:e7:db:0f:be:5b:2e:b4:66:25:3a:c9:4b:80:24:49:39:f2:
03:02:84:b9:69:7d:90:5a:64:62:b0:22:9b:ed:d5:27:97:9b:
59:c5:b4:d2:89:aa:ff:c8:e1:df:15:d4:b7:35:cd:61:bd:c6:
cc:a2:29:92:21:e5:49:f9:11:ea:08:79:64:17:42:16:dd:1e:
6b:a3:5e:4a:2f:99:33:a8:f7:74:7d:d0:b3:6c:ed:e9:fd:a2:
a7:7f:20:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:44:19 2026 by rpki-client