Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: XQIMXmPYhEW561/lJo/Di4Y8gz8QdthXwQ6mCEOQsyg=
Subject key identifier: 6B:B3:FF:AE:E9:55:6A:84:D8:50:AE:06:AC:01:F6:F9:6A:C1:9B:94
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 1A515AF7832CB76B55113490D2DFFC0320CC59D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 0421
Signing time: Mon 04 Aug 2025 12:22:19 +0000
Manifest this update: Mon 04 Aug 2025 12:17:19 +0000
Manifest next update: Tue 05 Aug 2025 13:14:19 +0000
Files and hashes: 1: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: S/LCg+29AOIqVzP8j0Y/IacbUg/td5tEkC1RBzydKFk=)
2: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: +bVqrEMFd6OlmJt6OXUAm36lf7U27Wity5s8ggfbbQs=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:51:5a:f7:83:2c:b7:6b:55:11:34:90:d2:df:fc:03:20:cc:59:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Aug 4 12:17:19 2025 GMT
Not After : Aug 5 13:14:19 2025 GMT
Subject: CN=6BB3FFAEE9556A84D850AE06AC01F6F96AC19B94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:22:df:f0:09:a6:51:d9:51:8f:21:41:68:ce:
d1:51:b1:d2:c8:b0:25:76:f1:53:f0:36:09:92:a8:
12:89:9d:3a:6c:c7:63:33:77:44:8e:84:dc:64:43:
a1:5d:1b:ce:c2:77:01:2d:91:ae:83:a6:a2:f7:ce:
cd:a4:e6:0e:29:68:d0:9a:3f:ea:ff:0b:c5:00:55:
ca:95:ff:a3:49:be:0d:93:7f:40:fb:a4:29:9f:6e:
7d:7a:02:7a:a5:3a:bc:0a:b8:7a:99:5e:25:35:5c:
47:69:0a:dc:d4:61:1e:8f:35:a3:14:d1:b7:48:2e:
7f:6c:0d:59:b5:0b:10:1e:10:8b:b6:85:88:e3:34:
38:60:30:3e:c3:f8:37:e1:bc:af:0e:ab:2b:f0:ab:
67:37:d6:f2:3a:30:f1:70:fb:21:67:d4:66:91:e4:
52:7a:9a:06:d2:a6:fd:d1:f2:53:90:ff:73:03:22:
a3:6f:5d:3b:28:cf:58:6c:75:82:da:58:2a:32:09:
e4:45:40:01:0f:8c:85:0d:a2:67:9b:57:59:be:0b:
60:24:3b:18:cf:1d:eb:23:ee:57:db:fe:4a:16:54:
5c:ff:8f:6b:e4:dc:a9:6c:6b:fd:d4:96:5c:1c:62:
cd:60:9b:0a:8f:89:58:45:a6:18:c2:be:95:31:be:
b6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B3:FF:AE:E9:55:6A:84:D8:50:AE:06:AC:01:F6:F9:6A:C1:9B:94
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:59:7f:bb:b9:13:fc:9e:a1:b5:98:6e:b2:19:26:50:b9:6b:
2a:5f:83:59:e5:ab:03:73:04:c2:74:f3:72:44:76:75:fa:2a:
15:15:c9:b8:9f:68:d3:63:bb:a7:92:e1:9e:61:a8:5f:a3:94:
89:8a:47:27:0c:5d:02:a1:ae:73:bd:fb:46:69:7c:65:32:75:
e3:c6:26:3b:3c:59:fc:5d:04:00:fb:80:be:f3:84:d1:cb:e4:
7b:18:19:2f:e0:e0:32:4e:55:9a:27:09:c8:6e:8e:3d:e8:1e:
92:fc:d2:54:97:dc:2e:75:bf:4a:70:17:3b:e7:5d:2a:bd:e9:
15:25:96:d1:d1:fc:10:32:5d:cf:11:04:09:9c:08:29:83:60:
d3:01:e1:01:79:0f:37:98:15:c7:06:db:39:7f:1c:03:36:f5:
08:ec:a5:27:4b:db:74:7d:40:ff:b5:75:4f:f8:71:54:63:0f:
1f:c7:e4:47:6c:ca:43:41:05:89:f6:33:0b:15:3c:b2:17:04:
df:42:a2:8d:13:39:ac:22:2f:8d:3d:90:8d:ee:59:1b:b4:84:
eb:da:bb:d5:91:2a:89:a1:f9:2d:fd:2a:5a:1f:55:71:55:90:
6c:c3:dc:d7:58:cd:15:ef:67:b8:3b:7c:b6:8a:81:65:08:82:
11:4f:ba:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:22:35 2025 by rpki-client