Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: fwXqQLsiU5G5v6WHB0mfPh/vrXJwFHRUi1qR3txp/JA=
Subject key identifier: 07:52:54:B2:AD:29:7C:4C:F4:42:45:53:BF:E2:99:37:AF:E6:BA:79
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019D38D316EEB9EC5F9DFB0B4A9B3CC6C5E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 05A9
Signing time: Sun 29 Mar 2026 09:00:51 +0000
Manifest this update: Sun 29 Mar 2026 09:00:51 +0000
Manifest next update: Mon 30 Mar 2026 09:00:51 +0000
Files and hashes: 1: MmHcaoSID19FRmGF5kFPH25PR2Q.roa (hash: Pv88TmQb3cGeVyGfPSrdF1R8Obs/Bo3T58FvtRvVnRM=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: ghWdqvF0/JKR+Cmwo6TK9UGAGEEK1HP5wbauTtnLiIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:16:ee:b9:ec:5f:9d:fb:0b:4a:9b:3c:c6:c5:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Mar 29 09:00:51 2026 GMT
Not After : Mar 30 09:00:51 2026 GMT
Subject: CN=075254b2ad297c4cf4424553bfe29937afe6ba79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:39:ae:8b:62:04:53:00:4e:d3:80:bb:58:93:
4b:95:92:6b:ff:cc:7d:5f:30:fb:9a:ab:d1:b1:55:
52:93:02:b4:73:67:91:67:27:7e:0e:4e:75:02:06:
47:52:7c:e8:61:5c:ee:11:21:5e:36:53:4e:1e:49:
02:99:63:0f:22:cc:ab:ad:14:76:a0:e6:bc:4d:f9:
0b:1c:ac:4e:e0:35:25:2a:64:e2:c4:f4:7f:ea:cc:
80:d6:dd:ae:7f:d0:a5:1b:90:1c:65:fb:42:96:e7:
15:5c:cf:b4:20:85:8d:cc:4d:16:51:cf:54:66:93:
b2:0e:e2:5d:bb:6d:46:60:8d:ba:b8:5a:37:be:81:
46:a9:10:cf:90:ec:35:a1:9a:3a:8b:ff:43:db:f1:
49:99:35:80:a3:76:f3:35:b8:1a:0f:5b:71:bb:54:
fa:11:b3:a4:5d:6e:53:69:b9:be:27:e0:59:a4:53:
18:21:f2:2a:20:8a:14:a6:11:2a:1a:f8:8e:1e:94:
af:b4:a2:ef:37:2c:17:0f:d9:cf:52:63:38:4f:1e:
b1:77:8f:76:98:18:46:ae:ca:53:4b:5e:37:14:f6:
93:30:59:d6:01:1d:26:21:e0:93:ec:df:2f:d2:c1:
d0:16:54:74:2f:bd:88:65:4e:76:04:3e:1b:df:dd:
3f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:52:54:B2:AD:29:7C:4C:F4:42:45:53:BF:E2:99:37:AF:E6:BA:79
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:a1:ce:b3:3e:1e:6a:d7:bb:75:d0:a6:30:e3:95:1a:ce:e9:
05:04:24:a4:88:26:6b:c2:68:54:1c:4a:0e:37:ea:8c:90:7a:
36:ba:0e:13:9f:20:8d:6c:4f:06:cf:70:5b:d4:3a:01:3f:ed:
9d:66:fa:c8:ad:9e:b6:e0:f4:a0:51:5c:c7:ed:7f:cd:10:fa:
bf:36:8f:58:22:31:af:3d:af:e8:c4:b7:01:d1:3c:95:b7:88:
54:6f:a7:89:3e:c9:43:d5:9b:95:58:cb:77:bf:ea:35:b9:5c:
48:55:34:5e:ee:ff:f2:48:a5:d1:f3:af:6f:98:61:e1:64:c1:
e3:3f:77:e0:71:60:7d:a7:f6:d0:9a:11:86:db:a5:eb:b5:4a:
9e:bf:6a:9d:d0:da:ce:4c:b5:52:52:98:6d:b9:c0:27:c4:1b:
45:c8:94:8d:5f:ea:46:93:22:11:c2:30:84:5d:8a:2b:f6:3b:
03:34:a0:52:f8:7b:bf:5e:3f:e7:97:77:1d:42:59:4d:ad:7a:
bc:26:cf:69:e3:35:6d:15:66:c7:89:7e:24:c6:69:f7:b5:44:
ac:ae:4e:ae:f1:e1:ea:dd:7c:5a:91:ff:a3:fd:86:b8:6b:18:
55:b5:d9:f8:3b:e5:86:40:1a:25:ec:9d:12:68:9f:e7:00:4e:
1d:2c:c4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:40:58 2026 by rpki-client