Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
File: AC428C8EED241857F73D0F3D483ABECB240519D0.mft (raw, json)
Hash identifier: S204caq9fu/qKqFwkNKuRRf717TtStdu8e4TznbP9Xk=
Subject key identifier: 84:CE:9A:C4:A1:6F:98:5B:D9:40:9B:DB:B5:39:9B:B4:49:CC:0A:03
Authority key identifier: AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
Certificate issuer: /CN=ac428c8eed241857f73d0f3d483abecb240519d0
Certificate serial: 56AF51F30E6A9F4563611E37F7D82605A682FC40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
Manifest number: 030D
Signing time: Sat 14 Jun 2025 00:32:50 +0000
Manifest this update: Sat 14 Jun 2025 00:27:50 +0000
Manifest next update: Sun 15 Jun 2025 04:31:50 +0000
Files and hashes: 1: AC428C8EED241857F73D0F3D483ABECB240519D0.crl (hash: 37DgDMghGOupUhQMULwhK1whsCI6uAk2Yd1dFE3UPHA=)
2: 3139352e3139312e34392e302f32342d3234203d3e20383334.roa (hash: tAX3Go3Y1oszntsjkGYjvxyMi+6BW1lc0B/JhqET5Wk=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:af:51:f3:0e:6a:9f:45:63:61:1e:37:f7:d8:26:05:a6:82:fc:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac428c8eed241857f73d0f3d483abecb240519d0
Validity
Not Before: Jun 14 00:27:50 2025 GMT
Not After : Jun 15 04:31:50 2025 GMT
Subject: CN=84CE9AC4A16F985BD9409BDBB5399BB449CC0A03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:42:49:ba:02:fc:b4:80:11:a9:15:62:21:4e:
4d:e5:5d:44:1c:87:70:ad:44:53:61:23:d1:a1:21:
4a:eb:90:a0:7d:d5:cd:03:6d:29:9a:c3:5a:3f:fe:
b5:10:4d:ae:d8:a2:db:0d:1a:ff:f4:5a:e0:4e:0b:
ec:0b:d1:57:84:e8:af:b0:fb:06:fe:de:6a:21:a3:
fa:28:1f:7f:49:cc:3f:9a:6a:cd:22:fa:13:75:66:
37:82:07:f2:b2:bc:21:15:73:48:a2:e3:ea:b8:8a:
e3:8e:62:31:e0:9b:ca:8e:9d:f8:a7:46:cb:7a:1d:
bc:28:9c:c1:2a:a9:47:e0:f7:e1:53:07:53:9c:08:
d5:3e:33:00:33:36:9d:4c:3a:aa:5a:44:68:d3:76:
ff:d9:f2:2c:78:77:3b:d6:f3:12:6d:fb:56:06:e3:
8b:12:1f:a4:07:fe:22:17:cd:96:6a:8c:c3:64:80:
4d:fb:1f:ed:31:d9:1f:70:fe:b9:a8:c7:b8:24:8b:
1a:99:b6:89:a9:7e:e8:5f:d5:29:5c:4c:74:52:01:
0b:03:6a:7c:b0:df:e0:3a:60:bc:96:0c:e7:e1:f7:
82:a6:14:01:00:0c:88:af:2c:c0:7b:ee:c2:76:fd:
b5:6d:f1:7f:d3:c7:f4:7c:62:b6:d0:01:4a:ba:09:
fb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CE:9A:C4:A1:6F:98:5B:D9:40:9B:DB:B5:39:9B:B4:49:CC:0A:03
X509v3 Authority Key Identifier:
keyid:AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:7e:c4:82:e9:49:2e:40:e1:53:3b:34:45:13:28:74:f1:5d:
f6:a9:0b:ab:32:23:ef:a8:40:3b:90:26:2a:86:2a:16:83:5d:
91:9a:a6:66:e4:3c:46:10:b4:b6:51:45:61:d4:20:65:fa:bc:
f1:e1:30:ba:71:97:c1:dc:ed:17:ba:f0:cf:b1:cf:be:34:46:
70:c1:14:d0:f0:f5:f0:9d:30:c9:7b:29:2f:df:2c:10:4f:28:
15:5f:c9:88:d7:a6:0d:66:18:c0:ce:02:38:fa:c1:1e:9c:24:
6b:1d:c0:c7:7b:2a:20:ef:cb:ee:2c:58:80:ff:91:8e:ba:2d:
a0:7f:aa:3f:0f:26:4b:45:f9:bc:42:aa:d0:de:f0:15:40:92:
09:95:b5:61:2f:17:24:3d:01:89:e1:5a:01:e5:cc:7f:fb:70:
54:43:73:b8:e8:6c:0c:4f:38:25:15:a3:f0:94:27:28:9b:bd:
83:8c:14:39:b1:59:95:cf:ac:37:78:bc:8a:41:a7:b7:34:32:
9e:38:27:cc:38:8f:ee:62:33:ef:10:f3:11:a6:ec:4f:9c:3a:
6c:ab:f4:84:33:0a:c5:8a:26:87:c9:c8:84:64:09:2b:79:1f:
d8:99:8d:18:e2:ec:de:a5:31:a3:e7:5a:41:ff:54:44:23:be:
3f:4f:60:7a
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUVq9R8w5qn0VjYR4399gmBaaC/EAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWM0MjhjOGVlZDI0MTg1N2Y3M2QwZjNkNDgzYWJlY2Iy
NDA1MTlkMDAeFw0yNTA2MTQwMDI3NTBaFw0yNTA2MTUwNDMxNTBaMDMxMTAvBgNV
BAMTKDg0Q0U5QUM0QTE2Rjk4NUJEOTQwOUJEQkI1Mzk5QkI0NDlDQzBBMDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Qkm6Avy0gBGpFWIhTk3lXUQc
h3CtRFNhI9GhIUrrkKB91c0DbSmaw1o//rUQTa7YotsNGv/0WuBOC+wL0VeE6K+w
+wb+3moho/ooH39JzD+aas0i+hN1ZjeCB/KyvCEVc0ii4+q4iuOOYjHgm8qOnfin
Rst6HbwonMEqqUfg9+FTB1OcCNU+MwAzNp1MOqpaRGjTdv/Z8ix4dzvW8xJt+1YG
44sSH6QH/iIXzZZqjMNkgE37H+0x2R9w/rmox7gkixqZtompfuhf1SlcTHRSAQsD
anyw3+A6YLyWDOfh94KmFAEADIivLMB77sJ2/bVt8X/Tx/R8YrbQAUq6CftZAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUhM6axKFvmFvZQJvbtTmbtEnMCgMwHwYDVR0j
BBgwFoAUrEKMju0kGFf3PQ89SDq+yyQFGdAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTMwOWJkY2UtNzBlMy00NmFlLThmMDUtMGMzYWRhOGY4
YTQyLzAvQUM0MjhDOEVFRDI0MTg1N0Y3M0QwRjNENDgzQUJFQ0IyNDA1MTlEMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3JFS01qdTBrR0ZmM1BRODlTRHEteXlR
RkdkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xMzA5YmRjZS03
MGUzLTQ2YWUtOGYwNS0wYzNhZGE4ZjhhNDIvMC9BQzQyOEM4RUVEMjQxODU3Rjcz
RDBGM0Q0ODNBQkVDQjI0MDUxOUQwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM37EgulJLkDhUzs0RRMo
dPFd9qkLqzIj76hAO5AmKoYqFoNdkZqmZuQ8RhC0tlFFYdQgZfq88eEwunGXwdzt
F7rwz7HPvjRGcMEU0PD18J0wyXspL98sEE8oFV/JiNemDWYYwM4COPrBHpwkax3A
x3sqIO/L7ixYgP+RjrotoH+qPw8mS0X5vEKq0N7wFUCSCZW1YS8XJD0BieFaAeXM
f/twVENzuOhsDE84JRWj8JQnKJu9g4wUObFZlc+sN3i8ikGntzQynjgnzDiP7mIz
7xDzEabsT5w6bKv0hDMKxYomh8nIhGQJK3kf2JmNGOLs3qUxo+daQf9URCO+P09g
eg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:16:36 2025 by rpki-client