Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: JncNZqtEnnkm0ZLEWogPG9YjbGL0aEzyLm2wDUvc8TQ=
Subject key identifier: 23:12:20:E6:A3:71:12:CE:01:F6:83:62:BB:CB:07:52:DA:08:B4:46
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 1DFF0F086B8BD334772F41E4AAE50394A3473FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 03DE
Signing time: Sun 15 Jun 2025 10:57:58 +0000
Manifest this update: Sun 15 Jun 2025 10:52:58 +0000
Manifest next update: Mon 16 Jun 2025 13:39:58 +0000
Files and hashes: 1: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: /8X88/zTFonsb0eU9Rae9bL+pO03Mo2KnSc3ub2kB3s=)
2: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: +bVqrEMFd6OlmJt6OXUAm36lf7U27Wity5s8ggfbbQs=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:39:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:ff:0f:08:6b:8b:d3:34:77:2f:41:e4:aa:e5:03:94:a3:47:3f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Jun 15 10:52:58 2025 GMT
Not After : Jun 16 13:39:58 2025 GMT
Subject: CN=231220E6A37112CE01F68362BBCB0752DA08B446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d4:37:5f:d1:f5:4b:14:c7:b5:c7:c8:f7:3c:
82:b2:cc:61:3d:6a:04:65:40:65:4f:65:86:19:75:
55:52:39:c5:64:e5:6d:08:d2:b1:e1:ef:bc:66:15:
d6:fe:f6:c4:c3:5c:aa:a8:b8:35:4e:d0:b6:ab:2c:
33:58:1d:b7:81:4d:3c:f4:fd:0d:33:09:c5:4c:5d:
87:22:90:7a:bc:49:c4:c8:af:99:9c:d7:99:0b:00:
d9:9a:b3:9d:cd:72:75:88:dc:08:28:57:78:6c:93:
63:31:07:c7:26:52:27:97:9d:87:cb:23:5e:a6:16:
96:f4:9e:8c:1f:b4:96:6b:ba:a9:6a:0d:52:9f:5b:
b9:de:a5:26:3d:82:4a:d5:31:63:c0:dd:fa:5c:f3:
25:a8:5c:27:e4:fc:1d:ad:14:50:c5:4e:f5:69:03:
61:a0:7a:a4:5c:10:21:da:77:e5:c4:02:af:41:97:
69:71:34:e1:30:89:39:79:af:b0:f0:1a:d2:55:7f:
4d:60:56:9d:45:ce:1d:70:ca:7e:04:a9:24:76:0e:
14:3b:09:69:18:b6:47:09:21:87:cd:2b:7a:40:75:
38:bd:90:a4:b5:12:66:25:83:fc:c4:c3:af:6c:c6:
08:58:db:8f:71:a5:61:f3:c1:a3:4d:8f:b1:d3:57:
d5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:12:20:E6:A3:71:12:CE:01:F6:83:62:BB:CB:07:52:DA:08:B4:46
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:4c:c2:53:d3:0b:32:53:41:73:03:6e:e6:26:b2:9c:08:96:
a8:c9:31:08:c5:5e:bc:14:d8:8b:3b:54:49:8c:10:2b:e9:6a:
c3:5a:7c:bd:8b:a1:b7:55:8b:54:d7:6d:61:7d:98:fb:98:01:
6a:08:2f:c2:03:c5:de:ea:87:0b:07:7a:d5:45:27:51:07:f7:
f4:85:2d:7f:0e:4d:f4:fa:b1:8f:ef:24:f8:8e:93:9d:1d:23:
a9:c2:b5:3b:d0:e7:43:1d:2d:e5:a1:dc:e6:db:a1:48:42:58:
61:cd:01:0c:17:09:a4:d0:f6:b5:eb:44:78:97:cd:17:9f:e6:
1b:02:39:79:78:f3:00:4b:86:f9:2d:2c:39:4c:15:9a:f3:83:
37:23:56:e4:85:a2:fa:62:2f:7d:04:c3:b3:2e:b0:68:09:6f:
11:ae:40:ee:6b:ce:b1:65:04:0d:90:80:70:f1:c8:ec:5e:60:
fb:ac:79:9c:04:77:73:de:bb:2d:70:f8:d9:e7:bc:d5:83:43:
69:58:cd:69:66:ba:1b:e0:fb:67:e8:67:a4:06:b9:f7:22:c6:
20:00:4b:88:48:c5:bf:26:99:3a:57:40:6d:33:f6:10:9b:21:
ee:74:ad:ea:ce:16:cb:13:92:b7:c3:62:e6:b1:c9:91:e8:73:
93:65:b4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 01:31:20 2025 by rpki-client