Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: wfVr+my4H9D43ewpEi/iD9on75m1sdgLrJ2Vb7ZEm5o=
Subject key identifier: E4:0E:A2:CD:07:4E:4A:29:6D:69:24:43:B7:04:AF:F7:C9:CB:4C:C9
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 0197CD5F7C4B589426BAEFC67473AA696A9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 02DA
Signing time: Wed 02 Jul 2025 23:01:16 +0000
Manifest this update: Wed 02 Jul 2025 23:01:16 +0000
Manifest next update: Thu 03 Jul 2025 23:01:16 +0000
Files and hashes: 1: j5QtHlhxEZZOM5CvXJMLssoxGGc.roa (hash: 8L3ZEU7bcEWssZWSFVojRb4D5wALELFNA26f5J8ZxnI=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: uUdhzTJ6jIh2uz5zSly4Ugu0acBOn8+mRl9NkL0g79A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cd:5f:7c:4b:58:94:26:ba:ef:c6:74:73:aa:69:6a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Jul 2 23:01:16 2025 GMT
Not After : Jul 3 23:01:16 2025 GMT
Subject: CN=e40ea2cd074e4a296d692443b704aff7c9cb4cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:ae:ad:bb:f4:e5:3a:bf:9a:da:7e:35:7b:
92:bf:38:d1:bc:b2:99:4b:86:e5:5d:06:18:8a:23:
ff:24:f5:80:ea:fa:9c:48:e7:7f:74:99:b4:39:df:
cf:cf:2e:74:63:c2:00:15:dd:bf:9f:fa:a8:80:5c:
80:bc:32:78:a1:3e:3a:d6:9e:02:32:95:66:ae:26:
8b:4e:8f:78:a9:97:ce:3e:c2:79:50:0a:34:17:8c:
6d:98:c1:3f:f3:ea:bd:73:03:9a:9f:5b:f7:c0:89:
f1:e8:5d:e5:50:42:0d:37:94:65:f6:e9:a9:26:90:
ae:7f:5c:0e:3b:93:01:18:78:77:e5:54:06:20:73:
73:8e:05:c1:06:04:4f:a5:f2:0f:e6:01:25:bb:0a:
d6:f9:12:a6:69:95:ef:04:5e:72:76:c1:14:6e:e3:
66:81:5c:46:6f:f7:12:42:bb:1d:64:e6:82:23:6a:
1e:5e:a2:93:11:ce:ec:e0:39:40:04:4d:1a:1e:57:
fd:89:08:6c:c1:dd:2d:a9:5f:04:50:33:93:97:04:
7a:71:b3:86:b9:37:fe:0c:91:cc:4e:d2:62:ba:40:
16:86:11:da:ea:96:86:c7:6a:e9:77:b4:79:c7:4e:
25:50:06:3a:6d:06:7b:1f:60:cc:b1:46:0a:9d:b8:
44:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0E:A2:CD:07:4E:4A:29:6D:69:24:43:B7:04:AF:F7:C9:CB:4C:C9
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:6b:f2:e4:d7:5b:b3:14:43:77:b6:e5:55:37:fa:af:85:2e:
ae:85:92:dc:d2:40:ef:43:b2:9b:e9:f5:ce:c4:f8:bf:92:81:
02:0b:98:08:fc:ad:20:ff:00:7e:03:9f:a8:43:a7:36:27:88:
9c:b1:b8:e2:ee:c9:bd:23:3c:b9:ff:dc:5c:29:09:80:75:db:
05:4e:0b:25:35:4e:53:4a:c8:ed:5c:8a:57:33:e9:db:99:b3:
0f:ea:e6:91:42:de:ba:cc:78:51:4b:99:33:ef:3d:97:7d:46:
52:3a:31:8a:59:7a:5c:30:f1:12:bb:48:3f:8d:f7:95:44:51:
d5:56:a8:ec:64:3a:d4:16:ba:54:01:c2:b3:00:c4:e4:10:7d:
1d:7a:89:e6:08:bd:c1:5a:de:88:fc:19:92:95:0a:63:c1:de:
02:63:e7:dd:82:f3:1e:79:63:52:e1:f6:6d:d6:17:41:30:90:
d4:2b:3d:1c:c5:40:97:a7:a1:a5:81:24:c6:a9:65:6e:c1:a0:
36:95:85:9b:af:5b:4e:d6:82:ea:1c:a1:cd:a7:f3:1a:38:41:
6a:4a:3d:65:a9:bf:c2:55:99:d0:04:f6:82:1d:8a:90:20:93:
57:61:60:75:98:0c:e3:f6:62:10:0b:5b:67:be:6b:be:25:ef:
10:49:c2:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfNX3xLWJQmuu/GdHOqaWqbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNjAzNDZkMDgxYjFjNWM4MTBiMzk0YzY2ZTEwNTEyYmJm
NGQ4YzkwHhcNMjUwNzAyMjMwMTE2WhcNMjUwNzAzMjMwMTE2WjAzMTEwLwYDVQQD
EyhlNDBlYTJjZDA3NGU0YTI5NmQ2OTI0NDNiNzA0YWZmN2M5Y2I0Y2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAua2urbv05Tq/mtp+NXuSvzjRvLKZ
S4blXQYYiiP/JPWA6vqcSOd/dJm0Od/Pzy50Y8IAFd2/n/qogFyAvDJ4oT461p4C
MpVmriaLTo94qZfOPsJ5UAo0F4xtmME/8+q9cwOan1v3wInx6F3lUEINN5Rl9ump
JpCuf1wOO5MBGHh35VQGIHNzjgXBBgRPpfIP5gEluwrW+RKmaZXvBF5ydsEUbuNm
gVxGb/cSQrsdZOaCI2oeXqKTEc7s4DlABE0aHlf9iQhswd0tqV8EUDOTlwR6cbOG
uTf+DJHMTtJiukAWhhHa6paGx2rpd7R5x04lUAY6bQZ7H2DMsUYKnbhE/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOQOos0HTkopbWkkQ7cEr/fJy0zJMB8GA1UdIwQY
MBaAFK9gNG0IGxxcgQs5TGbhBRK79NjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEt
MjYzOTgzOWY4MjhkLzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEtMjYzOTgzOWY4Mjhk
LzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz2vy5Ndb
sxRDd7blVTf6r4UuroWS3NJA70Oym+n1zsT4v5KBAguYCPytIP8AfgOfqEOnNieI
nLG44u7JvSM8uf/cXCkJgHXbBU4LJTVOU0rI7VyKVzPp25mzD+rmkULeusx4UUuZ
M+89l31GUjoxill6XDDxErtIP433lURR1Vao7GQ61Ba6VAHCswDE5BB9HXqJ5gi9
wVreiPwZkpUKY8HeAmPn3YLzHnljUuH2bdYXQTCQ1Cs9HMVAl6ehpYEkxqllbsGg
NpWFm69bTtaC6hyhzafzGjhBako9Zam/wlWZ0AT2gh2KkCCTV2FgdZgM4/ZiEAtb
Z75rviXvEEnCNQ==
-----END CERTIFICATE-----
Generated at Thu Jul 3 03:52:14 2025 by rpki-client