
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: sFsh1OJqzZd3CcxmnzorlL/kpFZI4nl1H1dUPafBAfQ=
Subject key identifier: C3:53:D5:A6:36:AC:45:85:02:CB:D9:CA:87:90:2D:54:51:BE:1C:B6
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019884D59A8E618E5BE648EBE9E4AFEB4929
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 0339
Signing time: Thu 07 Aug 2025 14:00:47 +0000
Manifest this update: Thu 07 Aug 2025 14:00:47 +0000
Manifest next update: Fri 08 Aug 2025 14:00:47 +0000
Files and hashes: 1: j5QtHlhxEZZOM5CvXJMLssoxGGc.roa (hash: 8L3ZEU7bcEWssZWSFVojRb4D5wALELFNA26f5J8ZxnI=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: BPStVYtN0ibb+qiwS1EUEa5yy3Bf1YwxjnJLAw0Gt2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:84:d5:9a:8e:61:8e:5b:e6:48:eb:e9:e4:af:eb:49:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Aug 7 14:00:47 2025 GMT
Not After : Aug 8 14:00:47 2025 GMT
Subject: CN=c353d5a636ac458502cbd9ca87902d5451be1cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:df:de:fa:19:5c:85:7a:f1:58:be:7a:a7:3e:
c7:ee:46:56:6f:a6:20:08:64:81:0d:a9:7c:9a:54:
0c:3e:db:74:3a:7f:0c:9b:3e:12:4c:9e:59:2f:46:
7a:b2:13:7b:fa:24:b4:40:02:0d:78:0e:e6:e9:35:
3c:78:09:08:db:35:df:64:c6:37:2b:c8:bf:40:23:
20:7e:de:0f:93:33:9d:76:1b:de:5c:0e:44:c5:4f:
1d:cc:15:46:86:65:2f:82:ba:98:bb:b1:ac:e5:0d:
de:c4:2e:75:09:13:a3:15:e6:ea:41:6f:2b:8b:f1:
0b:4e:8a:67:62:2e:88:c9:88:b5:a0:ad:80:e8:7b:
7b:fd:af:3d:2b:b2:a1:bf:ed:99:5d:75:60:5b:30:
eb:0b:ad:da:35:38:8b:0a:78:2f:69:67:fa:57:71:
46:55:98:64:35:94:ae:42:f3:7f:3f:8c:51:d9:95:
64:0a:1d:a1:43:cb:6e:5f:8b:61:4b:97:0f:0b:96:
1f:af:f0:59:3c:56:cc:e6:4d:37:8b:2c:a0:b6:a8:
3c:f2:8e:b0:d1:65:e5:f6:0a:27:3f:14:b5:76:a5:
41:7a:0d:fc:2e:91:02:d3:9a:90:06:91:6e:f0:4e:
a2:f8:f1:a5:ed:93:bb:9f:24:9b:13:e9:bd:5b:0d:
b7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:53:D5:A6:36:AC:45:85:02:CB:D9:CA:87:90:2D:54:51:BE:1C:B6
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:a0:33:ae:ba:16:7b:4e:43:25:db:b8:90:dc:5f:b8:75:5a:
ee:ef:99:78:0f:15:f5:0c:1d:f0:06:a9:0c:34:66:b8:48:bd:
9a:8d:08:37:e9:37:9a:a0:f6:cb:1f:bc:33:8f:89:8c:cb:0b:
62:a4:8a:3a:98:de:00:20:d4:7f:0d:08:e4:f3:d8:05:c6:2a:
71:60:1f:eb:a0:93:87:b7:49:81:00:6c:fb:bf:ac:ca:65:10:
fe:a8:9c:b8:e3:d0:3f:cd:30:ec:1d:f3:c1:cf:f7:41:73:7d:
35:8e:5c:97:f6:a1:8a:1f:8f:95:84:59:43:87:34:b1:32:d5:
25:e6:78:36:88:17:03:bf:ad:42:9e:67:f1:50:0e:f6:91:ae:
4d:ad:21:41:6f:4e:de:4f:3f:98:f8:50:82:0e:2c:f2:1b:9e:
02:49:39:24:cd:9d:46:ce:ba:9a:ca:ed:0a:62:be:53:68:3f:
54:05:97:c0:a1:53:6e:8b:fc:89:69:ea:5b:2b:00:d9:65:49:
8a:0e:21:4f:8c:bf:f0:59:31:25:41:33:c1:6a:71:2a:5a:8d:
ab:c8:f2:0a:94:1a:4f:50:46:56:7e:da:4f:10:8b:13:40:72:
1c:a5:ad:9e:e4:3f:84:53:81:d6:34:89:8c:5a:9c:6c:4e:5f:
f1:3f:33:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 20:17:27 2025 by rpki-client