Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: rVmLXw6Ne3xXxkS1Hvd1TzTfUlkpWP25gOw5EJKKjM0=
Subject key identifier: 91:66:18:91:3B:E6:2D:CA:96:0C:E6:59:8F:0F:94:91:B6:4F:89:87
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 2AF1CFA5E3421CDFAFF52A12D1C94AC897B20C76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 03EF
Signing time: Fri 13 Jun 2025 23:16:06 +0000
Manifest this update: Fri 13 Jun 2025 23:11:06 +0000
Manifest next update: Sun 15 Jun 2025 02:13:06 +0000
Files and hashes: 1: AS51019.asa (hash: RqQYQxP2LlV4zO7/d8ske+S6p2B1SREg+ga188kx8/8=)
2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: PeKrYlxO9aJzSjjq2GCsehA7RgIXos16I20n9tzXipg=)
3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: FUhTt1njMGLlwCEulMp4NeuQvTRHBl4468phKot5dfg=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 02:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:f1:cf:a5:e3:42:1c:df:af:f5:2a:12:d1:c9:4a:c8:97:b2:0c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Jun 13 23:11:06 2025 GMT
Not After : Jun 15 02:13:06 2025 GMT
Subject: CN=916618913BE62DCA960CE6598F0F9491B64F8987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:69:31:98:a8:10:b3:c2:23:43:ad:69:c1:ef:
5e:2c:82:0c:3c:33:48:1e:33:70:24:5a:8c:d6:cf:
bf:37:62:a0:2b:3f:7f:22:de:36:40:fa:43:d7:c0:
58:21:b2:0e:53:5b:75:76:20:ac:68:d3:70:24:f0:
42:7f:0f:00:16:90:3a:56:43:2e:ce:bb:40:a9:91:
03:7f:b5:38:56:d2:70:82:c7:28:fc:c3:4f:cf:70:
61:91:ab:cc:ec:84:4b:63:1a:bd:eb:d8:bd:8e:02:
79:d2:ba:58:61:3b:08:49:9a:33:72:03:8e:c8:4f:
5a:3c:7a:c5:b5:37:33:8d:2c:fe:54:72:a4:f5:70:
04:14:78:5f:bc:27:d2:9b:5e:ba:b8:fb:8a:9d:28:
88:4d:7c:63:b0:ea:e4:93:07:04:5d:43:81:cd:e2:
29:83:c1:0c:03:a3:40:39:19:fc:32:41:2c:80:dd:
2c:53:a2:9a:76:f4:ce:26:05:6d:c9:46:c8:af:6c:
8a:fe:6f:57:37:04:82:7e:e5:b9:ee:1c:5b:e3:e8:
26:b9:04:5c:0b:06:59:c3:cc:90:27:af:60:df:4b:
88:75:3e:66:18:b8:79:74:23:ea:de:97:18:81:6f:
32:72:6a:08:6c:4b:f8:27:c9:94:01:c8:9e:52:8c:
27:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:66:18:91:3B:E6:2D:CA:96:0C:E6:59:8F:0F:94:91:B6:4F:89:87
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:9c:66:25:30:57:91:15:2f:04:c9:18:0f:57:ba:69:ed:70:
01:ef:eb:f7:45:f8:fa:72:30:76:86:ab:71:9d:f2:5a:e8:fe:
f9:50:13:a9:6d:55:83:54:b4:40:db:99:08:19:33:11:8c:1b:
09:e3:af:e2:5a:70:bb:6c:1c:71:ff:07:2b:36:42:e3:76:c3:
fe:42:80:c9:83:24:d7:bb:c6:e5:fb:31:99:fd:fc:2e:ff:50:
a6:b2:5e:1b:99:c0:57:a7:d1:ea:2c:35:40:f2:9d:26:7d:71:
2d:df:00:88:2b:45:c5:db:67:39:e7:fa:14:a4:43:fb:09:b0:
0c:b5:d5:07:d4:6d:64:3c:3d:c2:a2:37:aa:56:ee:96:bf:7c:
ec:b0:c7:55:a4:79:7d:7d:27:ff:cc:22:d7:a7:db:6e:b6:51:
32:f1:c6:00:15:19:3a:30:31:c7:4a:69:c5:05:14:fd:64:48:
97:f4:1d:6b:0a:d3:e3:c5:90:a3:b3:68:89:67:50:52:62:44:
65:91:b1:e4:50:11:3b:4f:bc:30:5b:dd:f5:ab:f2:d2:a6:05:
38:36:21:5d:8a:ee:10:af:26:5f:ea:a3:2e:83:c0:a8:ea:1e:
9f:25:2c:ea:20:6c:d7:ee:da:fa:18:69:bd:27:79:27:68:17:
46:86:d7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:00:10 2025 by rpki-client