Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
File: AC428C8EED241857F73D0F3D483ABECB240519D0.mft (raw, json)
Hash identifier: UuPa1+6x3ah6nWPRgVAGe6P2VSlImbm8g50ibeF/GMU=
Subject key identifier: 53:51:84:42:05:98:24:10:8C:53:FC:4C:5B:2B:0E:6A:6C:D2:F9:0F
Authority key identifier: AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
Certificate issuer: /CN=ac428c8eed241857f73d0f3d483abecb240519d0
Certificate serial: 6D3DF5B5F1364C12A47C1CF8423A8C5165353BE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
Manifest number: 02CD
Signing time: Sun 27 Apr 2025 01:14:59 +0000
Manifest this update: Sun 27 Apr 2025 01:09:59 +0000
Manifest next update: Mon 28 Apr 2025 05:13:59 +0000
Files and hashes: 1: 3139352e3139312e34392e302f32342d3234203d3e20383334.roa (hash: tAX3Go3Y1oszntsjkGYjvxyMi+6BW1lc0B/JhqET5Wk=)
2: AC428C8EED241857F73D0F3D483ABECB240519D0.crl (hash: U/kkqq6fmi39AbdnsJGBwq21CEMSMOQhz8zdLjejOj0=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:3d:f5:b5:f1:36:4c:12:a4:7c:1c:f8:42:3a:8c:51:65:35:3b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac428c8eed241857f73d0f3d483abecb240519d0
Validity
Not Before: Apr 27 01:09:59 2025 GMT
Not After : Apr 28 05:13:59 2025 GMT
Subject: CN=53518442059824108C53FC4C5B2B0E6A6CD2F90F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:72:7f:64:b1:57:d6:1b:64:3a:0b:43:c5:b1:
34:93:6b:c9:2c:7e:5f:db:2b:8b:14:f2:9b:e8:79:
ed:fb:b3:0b:da:1e:93:fa:db:30:94:bc:f5:6b:17:
5e:ae:c0:4c:5f:27:9b:fe:c4:e2:cb:aa:74:5c:ef:
fb:ac:e7:c3:5d:db:d8:26:e2:74:c3:9b:31:6e:8c:
fa:0b:11:5f:59:7d:3f:63:8d:69:ab:cf:dc:59:ea:
f0:f8:a2:45:a9:e6:06:30:e7:22:3e:a9:9d:ed:eb:
6d:dc:7a:db:b1:51:81:ba:9a:4c:d9:4f:ed:bd:18:
54:1c:58:14:7c:9f:b6:a6:88:d7:a6:be:c7:89:f7:
d4:29:75:b9:f7:b5:01:c8:65:79:1c:25:5f:1e:77:
06:f1:61:13:f6:67:a1:31:65:e6:22:e9:ca:34:a3:
c5:8f:3d:c2:84:4c:8a:ba:f6:9e:b1:3f:7c:b8:c9:
a7:c8:05:06:a9:de:38:64:9d:16:d0:3e:2b:fd:e9:
4c:03:1e:b8:88:8d:15:9f:7f:4c:f4:8e:aa:fd:64:
9d:93:20:8a:98:f8:60:47:fd:c6:9b:b3:6b:5c:6c:
dc:b2:02:be:37:a3:87:a4:8a:a3:db:74:d6:f4:74:
8f:50:4a:a7:31:42:e4:73:40:65:c1:1e:b6:60:83:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:51:84:42:05:98:24:10:8C:53:FC:4C:5B:2B:0E:6A:6C:D2:F9:0F
X509v3 Authority Key Identifier:
keyid:AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:75:58:35:1b:85:b4:d6:6d:ce:e6:a9:4f:61:5a:84:45:55:
9e:92:27:6c:fa:d7:ec:78:db:e1:22:92:1c:b7:54:b7:49:b3:
95:00:64:74:7c:df:77:2c:06:db:4c:78:b2:0e:6c:9b:f0:54:
f8:b8:ae:59:d5:1f:eb:be:5e:74:3e:2f:6e:96:19:39:77:81:
bd:33:5a:5b:8d:c1:41:6c:6a:86:8d:cd:47:b0:1d:4c:d0:9c:
7e:55:27:5f:33:ab:07:ca:f8:57:52:1c:ee:02:f3:b6:6d:0b:
06:81:e4:0f:0c:1c:e5:da:b1:79:ec:60:e0:65:44:65:c9:09:
c8:06:d4:4a:1b:da:6e:9f:51:4b:45:31:06:8c:af:fe:ae:48:
ca:f5:35:5c:5e:e6:ab:4a:d4:0a:5d:70:9a:22:da:c6:d9:2f:
ea:dd:3c:f0:d7:99:45:fb:e2:06:b6:26:9d:8b:81:62:13:8f:
a6:9e:10:cc:4b:f9:46:e9:29:9b:8a:40:ac:7f:a7:72:39:eb:
ef:92:1e:0b:c0:21:71:ed:14:76:c7:fb:c5:e2:67:c7:22:15:
25:11:51:e7:2b:35:8e:b2:ea:c4:0f:34:14:10:40:35:2e:78:
4e:48:ef:f3:31:5e:2a:87:6c:04:a2:24:e9:25:2c:10:ce:e6:
8e:cb:ce:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:12:21 2025 by rpki-client