Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: uNCFejhLdqBPxuW0dfpi9lSQOutRklj+aq9uq6Zc8M8=
Subject key identifier: 06:52:43:2A:02:49:E4:12:A5:08:78:D8:70:C2:E5:C3:DB:2A:41:A1
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 3A4AFEF85938550D84C3BC0040267CF1631082E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 039D
Signing time: Sun 27 Apr 2025 08:44:59 +0000
Manifest this update: Sun 27 Apr 2025 08:39:59 +0000
Manifest next update: Mon 28 Apr 2025 12:43:59 +0000
Files and hashes: 1: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: +bVqrEMFd6OlmJt6OXUAm36lf7U27Wity5s8ggfbbQs=)
2: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: yqXrXyhGNQO9avO+YF9JjxgJ4b/2V3WyHt9k6HGx6zg=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:4a:fe:f8:59:38:55:0d:84:c3:bc:00:40:26:7c:f1:63:10:82:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Apr 27 08:39:59 2025 GMT
Not After : Apr 28 12:43:59 2025 GMT
Subject: CN=0652432A0249E412A50878D870C2E5C3DB2A41A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5d:fc:8b:9c:04:80:60:85:74:bc:92:82:79:
78:84:12:30:70:a6:80:71:e6:e6:a0:99:26:ce:b2:
cf:f0:d3:ed:b9:0d:b5:4d:71:79:43:65:90:4f:87:
75:d4:07:26:bc:f4:b7:26:8c:d8:ea:18:e5:f3:f2:
7f:a0:d3:09:fd:6c:ce:ef:db:94:ad:43:76:28:bd:
e7:6b:71:ea:5c:99:c7:cb:50:c5:cd:13:66:f5:63:
32:0c:3b:ce:3d:53:94:c0:cd:e4:00:c1:9d:c5:78:
5e:65:2d:db:3c:df:1e:81:e0:c8:0a:10:f4:6e:ed:
29:65:f7:09:4c:e7:42:ff:fa:bf:b2:e9:a8:97:a9:
6e:97:f9:05:e2:2c:82:55:6f:a6:0f:9e:b8:1b:95:
b4:09:96:40:3c:e0:d1:ac:3b:78:ed:4a:55:e5:57:
45:4e:aa:c5:cb:f8:de:84:60:5d:e8:a7:07:a9:d8:
91:c1:80:0b:c1:41:e3:24:01:60:f2:0f:9f:2f:33:
32:81:5c:35:cf:b1:07:e0:13:b8:92:b9:52:32:f1:
df:a1:44:c0:41:18:97:48:47:d4:c1:22:07:90:df:
98:8d:4a:d6:cb:1b:a4:eb:9d:e4:f0:1b:4d:0f:70:
79:6f:aa:54:78:03:81:e9:e3:cd:ef:db:d7:ed:9f:
f6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:52:43:2A:02:49:E4:12:A5:08:78:D8:70:C2:E5:C3:DB:2A:41:A1
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:b4:2c:bd:20:35:2d:ce:4b:43:57:60:75:fc:7c:d8:1c:30:
19:da:6e:79:26:96:f6:e6:b2:99:1e:93:e2:03:3d:f1:87:e0:
20:a3:ef:e0:8f:13:a5:f5:19:db:e5:d8:ee:69:a9:90:95:25:
27:5d:01:d2:c4:d4:a1:0d:06:c8:f0:04:91:89:ab:8d:66:7b:
6c:36:e0:0e:b9:8e:c2:42:2f:e3:d5:29:95:83:b4:1a:72:05:
88:50:a4:6f:06:02:78:4a:76:09:fa:79:dd:e1:e0:d7:4d:a8:
a0:a7:df:28:5f:8b:54:39:7c:a5:f7:c5:c7:0d:e8:9a:29:4d:
50:36:4f:15:61:a5:6f:0d:ef:dc:46:b1:0e:eb:ce:da:50:78:
3e:2a:cc:ba:6f:6c:35:23:a2:e8:34:71:be:cd:1a:ed:c7:d5:
5d:45:01:2b:0c:cb:4a:39:e2:1c:9f:fb:b5:84:c7:90:35:32:
0c:e0:9d:81:89:cb:2f:63:9d:78:f3:30:df:ae:ce:98:88:9f:
83:d6:af:08:fd:5a:30:62:03:c9:81:5b:fe:4d:a6:54:ec:dd:
82:94:bb:dc:1a:f6:b5:2b:53:66:24:4b:e5:8b:85:23:9e:99:
bd:f3:ba:8e:8c:20:14:e0:95:77:21:88:f2:1c:d5:cb:0c:5a:
db:f3:0f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:10:03 2025 by rpki-client