Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: FsTLkCcpRPD3IiWMsUE8L2eXvC/TSI8VPX6mn/QiL0M=
Subject key identifier: 07:6A:CC:29:A2:01:D7:1A:8E:AD:C5:88:7C:43:C3:5A:FB:2D:54:58
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 01992331028C696045E9280F5A2B600EA690
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 038B
Signing time: Sun 07 Sep 2025 08:00:38 +0000
Manifest this update: Sun 07 Sep 2025 08:00:38 +0000
Manifest next update: Mon 08 Sep 2025 08:00:38 +0000
Files and hashes: 1: j5QtHlhxEZZOM5CvXJMLssoxGGc.roa (hash: 8L3ZEU7bcEWssZWSFVojRb4D5wALELFNA26f5J8ZxnI=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: jPQHFYHYNisS2waYu7I56sS+AGX+Fw0NnzUTDPQ6mJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:02:8c:69:60:45:e9:28:0f:5a:2b:60:0e:a6:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Sep 7 08:00:38 2025 GMT
Not After : Sep 8 08:00:38 2025 GMT
Subject: CN=076acc29a201d71a8eadc5887c43c35afb2d5458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:2c:53:b3:b7:1b:49:a5:c8:4c:87:d7:80:
9c:2a:fe:e2:55:7b:48:1d:1e:9a:97:55:3c:5d:81:
6a:25:8b:93:36:d8:21:f0:25:03:2d:57:7b:b7:3e:
1d:05:13:b7:24:0d:c2:a0:31:64:9b:3e:de:b0:e8:
98:28:3b:e1:7e:eb:22:d0:ac:af:95:86:e6:bc:82:
a0:ca:eb:3d:f0:2d:dc:32:0f:d3:78:5f:aa:74:0c:
e7:95:03:6b:f8:99:66:50:85:d8:9d:52:74:a6:d8:
d2:53:09:36:ae:39:f7:ea:8a:9e:bd:f4:98:71:fc:
c3:56:eb:ca:a5:37:2d:a7:3c:37:c7:61:be:80:2c:
96:ad:c0:c1:4b:d3:9b:0f:51:62:66:49:d9:dd:05:
ba:0c:e8:23:42:6b:25:f0:34:d3:7b:06:6b:43:7a:
13:63:c8:e3:95:ec:25:29:d3:03:2a:6b:11:b8:48:
c3:2c:67:0f:93:9f:91:43:80:11:38:b0:09:73:8c:
6d:5b:1d:8a:ad:91:b7:28:39:07:d9:a1:18:5e:f9:
53:e9:12:79:43:2b:33:53:cf:84:dd:48:91:48:af:
f2:55:03:57:5b:85:76:a7:af:26:8a:bf:28:92:ad:
b0:8c:60:d6:08:33:19:71:be:2a:db:0c:04:fa:31:
5e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6A:CC:29:A2:01:D7:1A:8E:AD:C5:88:7C:43:C3:5A:FB:2D:54:58
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:40:f5:84:c2:bc:36:36:03:ec:22:ae:a6:5f:86:08:98:77:
ce:1c:5d:b0:d3:b5:5f:c6:f2:29:f8:26:f4:2a:ac:97:04:a1:
4d:02:61:12:d3:7d:84:88:53:ac:89:c1:b6:d6:07:fb:3e:a0:
c9:33:a8:45:ae:e6:a9:68:84:d8:5b:a2:4c:29:1a:2c:94:17:
f2:6f:9a:56:51:5b:c7:0f:c6:b2:74:29:06:00:d7:4d:ba:4a:
ed:d5:c4:c1:98:e1:93:bf:9b:20:a4:e9:a9:15:0f:58:0c:0f:
01:8b:e6:5a:85:e4:a7:b7:67:ca:02:b2:93:a6:38:84:4b:fa:
93:a9:2c:5a:e9:be:96:5c:af:ad:80:66:02:ee:8c:d9:72:0e:
0c:8c:30:b4:45:3e:c1:4b:48:8d:6b:0f:24:fb:45:8f:47:5c:
c5:f9:49:37:c3:83:1e:81:7e:b0:a9:f3:39:31:94:28:61:e8:
18:a3:a4:8e:56:40:e6:a7:96:3d:83:ed:b9:80:cb:8a:6d:de:
db:3f:39:17:4a:ff:ab:a6:41:a4:51:ad:48:8b:5e:9f:74:ef:
db:54:ec:30:c7:ab:4e:7f:5f:f0:44:b6:42:c6:ab:b5:17:dc:
94:0f:bd:64:5d:65:29:1b:c4:ba:52:ba:39:0d:29:34:4a:32:
28:e4:82:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMQKMaWBF6SgPWitgDqaQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNjAzNDZkMDgxYjFjNWM4MTBiMzk0YzY2ZTEwNTEyYmJm
NGQ4YzkwHhcNMjUwOTA3MDgwMDM4WhcNMjUwOTA4MDgwMDM4WjAzMTEwLwYDVQQD
EygwNzZhY2MyOWEyMDFkNzFhOGVhZGM1ODg3YzQzYzM1YWZiMmQ1NDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBAsU7O3G0mlyEyH14CcKv7iVXtI
HR6al1U8XYFqJYuTNtgh8CUDLVd7tz4dBRO3JA3CoDFkmz7esOiYKDvhfusi0Kyv
lYbmvIKgyus98C3cMg/TeF+qdAznlQNr+JlmUIXYnVJ0ptjSUwk2rjn36oqevfSY
cfzDVuvKpTctpzw3x2G+gCyWrcDBS9ObD1FiZknZ3QW6DOgjQmsl8DTTewZrQ3oT
Y8jjlewlKdMDKmsRuEjDLGcPk5+RQ4AROLAJc4xtWx2KrZG3KDkH2aEYXvlT6RJ5
QyszU8+E3UiRSK/yVQNXW4V2p68mir8okq2wjGDWCDMZcb4q2wwE+jFefwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAdqzCmiAdcajq3FiHxDw1r7LVRYMB8GA1UdIwQY
MBaAFK9gNG0IGxxcgQs5TGbhBRK79NjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEt
MjYzOTgzOWY4MjhkLzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEtMjYzOTgzOWY4Mjhk
LzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWkD1hMK8
NjYD7CKupl+GCJh3zhxdsNO1X8byKfgm9CqslwShTQJhEtN9hIhTrInBttYH+z6g
yTOoRa7mqWiE2FuiTCkaLJQX8m+aVlFbxw/GsnQpBgDXTbpK7dXEwZjhk7+bIKTp
qRUPWAwPAYvmWoXkp7dnygKyk6Y4hEv6k6ksWum+llyvrYBmAu6M2XIODIwwtEU+
wUtIjWsPJPtFj0dcxflJN8ODHoF+sKnzOTGUKGHoGKOkjlZA5qeWPYPtuYDLim3e
2z85F0r/q6ZBpFGtSIten3Tv21TsMMerTn9f8ES2QsartRfclA+9ZF1lKRvEulK6
OQ0pNEoyKOSCkg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:44 2025 by rpki-client