Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: yCTRiMm2eEHEN8LdyW1VbpFmCe26rr5xTMxf+VPEjos=
Subject key identifier: 48:7D:2A:90:8F:5C:7D:F0:99:66:7C:B1:C9:DD:02:83:55:F2:9C:4C
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 7F9792D6436359826F2FA7AB5048D954DE99EC71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 0370
Signing time: Tue 04 Nov 2025 03:57:06 +0000
Manifest this update: Tue 04 Nov 2025 03:52:06 +0000
Manifest next update: Wed 05 Nov 2025 04:27:06 +0000
Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=)
2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: 4XoEBd56zzYi85gfNy5js4BnR958xYL3luDOiyoVXdw=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:27:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:97:92:d6:43:63:59:82:6f:2f:a7:ab:50:48:d9:54:de:99:ec:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Nov 4 03:52:06 2025 GMT
Not After : Nov 5 04:27:06 2025 GMT
Subject: CN=487D2A908F5C7DF099667CB1C9DD028355F29C4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:42:67:80:2d:8a:38:cd:20:45:57:99:ae:10:
7d:08:f4:8f:6a:17:73:03:d3:39:06:41:b8:32:32:
28:23:99:6d:c2:02:80:a5:0a:76:1b:20:40:15:5a:
39:40:74:c9:de:0f:71:f4:b8:df:35:38:e3:0c:f5:
7b:3c:69:a7:e4:82:06:fc:cf:63:07:6f:1f:7b:32:
8f:f0:9f:4b:49:33:8a:37:eb:31:b0:ec:92:7c:fa:
14:ec:ca:de:7b:e2:63:dd:9b:d8:6e:0b:54:bd:29:
73:13:c7:48:ee:13:b6:e6:86:11:04:6f:b0:09:0e:
c9:cf:47:c0:83:97:9e:55:c9:42:6c:94:6d:b4:63:
48:41:96:ac:44:ec:73:cd:1a:72:db:92:c6:07:74:
3e:85:7c:ad:bb:ff:b6:25:c4:50:26:fc:79:b6:4f:
2f:10:cc:62:83:62:37:f9:68:1e:74:da:0f:29:1e:
d5:0c:ee:c3:c5:eb:81:92:2b:ff:12:c0:c4:a7:fc:
ad:51:53:f8:70:2b:6c:01:38:f1:83:6f:19:ba:9c:
c8:84:35:34:4c:62:3a:47:5c:a7:52:56:a5:b0:8a:
79:a0:3c:cc:65:53:65:80:ad:8c:6d:51:34:85:74:
08:18:95:6d:54:13:32:80:41:19:52:19:7d:a8:1c:
d5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7D:2A:90:8F:5C:7D:F0:99:66:7C:B1:C9:DD:02:83:55:F2:9C:4C
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:57:2c:60:f5:e2:8b:e4:2c:3f:d4:d8:cb:1c:98:87:a6:60:
60:31:fa:eb:5d:a1:07:c0:4f:fe:ac:69:f3:df:aa:ad:c5:39:
ab:53:58:96:69:a6:27:00:10:7b:80:82:02:34:d9:10:1a:dc:
2b:af:77:20:5b:06:24:dd:c3:57:23:83:b5:5e:76:c3:5d:74:
1b:3e:a8:2a:f2:1a:c2:a2:52:91:f3:f0:f0:ca:ad:13:65:3c:
0d:69:f9:4b:98:49:b4:6b:46:a8:d6:64:ad:63:50:c8:9e:ed:
54:ef:cb:b2:09:1c:60:46:4c:e0:69:5f:d1:4c:8e:b3:4b:a1:
5e:7e:30:4b:88:bf:59:65:0d:2d:24:67:f8:80:b6:6e:65:e1:
8c:3f:62:9d:3d:a5:c9:3b:28:2a:c1:83:34:95:fd:cd:f1:73:
77:2e:3f:62:d2:33:18:da:c1:ef:02:1a:31:2c:df:9f:de:47:
83:e4:46:24:d9:9e:69:b7:b1:a8:1b:6b:80:51:bf:e1:2e:62:
36:82:6d:a6:7e:57:0e:9b:e4:bc:c5:b0:59:bc:6e:48:a4:53:
c2:41:87:55:06:62:5e:18:6c:d4:ee:fa:89:db:84:50:4c:f3:
26:f5:36:d1:15:9f:f2:e5:7d:82:a9:24:bd:fa:d6:c0:90:b1:
20:12:73:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:50:59 2025 by rpki-client