Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
File: AC428C8EED241857F73D0F3D483ABECB240519D0.mft (raw, json)
Hash identifier: yxyn1YLyf9dkHZIHGQSVD0r4j3R9KgAeupCxMZDWwHg=
Subject key identifier: 53:2A:CF:D9:D0:3D:71:2F:B6:C5:60:04:88:23:28:A4:F0:27:0D:FD
Authority key identifier: AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
Certificate issuer: /CN=ac428c8eed241857f73d0f3d483abecb240519d0
Certificate serial: 28E6AD4F2D0415C32695B3B393FEF9C7955B333E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
Manifest number: 0352
Signing time: Mon 04 Aug 2025 15:57:19 +0000
Manifest this update: Mon 04 Aug 2025 15:52:19 +0000
Manifest next update: Tue 05 Aug 2025 16:19:19 +0000
Files and hashes: 1: 3139352e3139312e34392e302f32342d3234203d3e20383334.roa (hash: tAX3Go3Y1oszntsjkGYjvxyMi+6BW1lc0B/JhqET5Wk=)
2: AC428C8EED241857F73D0F3D483ABECB240519D0.crl (hash: QHojrJX90AWtxbWo6KyXRonWAMctQVw8sKYd7MkBcVs=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:e6:ad:4f:2d:04:15:c3:26:95:b3:b3:93:fe:f9:c7:95:5b:33:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac428c8eed241857f73d0f3d483abecb240519d0
Validity
Not Before: Aug 4 15:52:19 2025 GMT
Not After : Aug 5 16:19:19 2025 GMT
Subject: CN=532ACFD9D03D712FB6C56004882328A4F0270DFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:50:4a:e6:31:d0:fb:ba:16:87:f3:e8:2b:
af:7c:40:2d:7c:5b:23:0a:25:e0:c8:85:1f:49:ab:
ae:f0:60:24:60:bf:c4:f5:5c:67:38:77:97:f5:2a:
bd:38:57:df:53:38:87:96:80:5d:a6:e8:e5:b9:32:
35:0e:d6:de:ac:e3:08:7b:74:8e:ae:e5:c8:4e:97:
0b:d6:44:9d:fd:c5:c3:fc:84:c4:29:8f:37:d0:92:
c0:40:28:41:cb:4a:62:3f:37:36:b0:f8:4a:74:a5:
bb:c9:1c:ae:38:d7:17:37:b6:08:1e:fd:a9:47:42:
c0:22:da:0c:b9:8d:21:09:ce:2b:d1:44:8b:38:79:
58:54:ea:a9:24:5b:17:77:9b:85:82:12:51:52:87:
64:6d:f2:1e:65:58:d0:4a:0d:43:a4:60:a6:00:83:
b0:20:28:62:b6:b2:c3:4f:72:56:82:a0:a0:4d:30:
73:bb:5f:ab:76:6b:84:00:29:c9:5e:7f:16:6c:0a:
06:eb:5d:61:10:e3:66:ba:81:45:2d:4c:43:5a:cd:
5f:82:54:dd:b4:8f:28:74:d2:e6:73:db:bd:fd:b9:
15:34:bb:37:b5:2b:50:d1:c4:9a:7f:ea:a9:37:65:
e6:f4:54:da:45:82:6a:e2:73:1b:ed:42:7d:c0:81:
8e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:2A:CF:D9:D0:3D:71:2F:B6:C5:60:04:88:23:28:A4:F0:27:0D:FD
X509v3 Authority Key Identifier:
keyid:AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:01:d1:1e:64:8e:ef:fc:3d:6b:dd:7f:82:ea:f3:fc:58:62:
5f:5b:6c:53:b1:95:79:0d:29:f5:ba:2c:59:94:db:38:c1:2a:
a1:f6:d0:da:12:15:e6:0f:dd:22:cd:2a:26:c4:8f:4c:36:13:
14:a4:97:6d:a6:cf:c9:36:45:f8:0d:6a:71:21:36:6e:23:d0:
0f:ec:dc:c5:c7:0f:ae:09:77:fb:7d:44:10:d8:97:9f:49:72:
46:7b:26:28:96:63:62:29:2a:b2:ee:cf:a3:85:29:68:ec:36:
34:df:3e:0b:13:d1:18:ed:85:e4:9e:0e:b9:c3:f5:17:e5:e6:
c2:3a:08:0a:b4:47:bc:36:c4:1a:cd:91:b4:4e:28:a0:5d:19:
2a:eb:62:5e:2f:d2:df:d8:a9:44:97:a0:20:eb:85:9e:01:6f:
b4:c1:41:02:4a:14:6c:56:16:10:35:3f:b4:30:51:1b:50:c1:
9a:58:0b:0e:70:86:89:1c:31:f1:08:bd:7e:e3:9e:e5:05:59:
dd:db:e0:a3:06:12:49:0f:fe:5f:32:8f:ff:8e:e1:7d:ec:55:
dd:79:1d:79:b9:6b:79:b7:50:d5:81:66:fa:97:dc:b9:fe:5a:
02:71:7b:e7:af:f6:c0:75:c6:21:64:46:d8:cb:81:fd:a9:de:
67:5e:83:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:23:11 2025 by rpki-client