Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: I9XEeH4XnJYXd1fWBPnt8c2UnRhViuUNme7LQwPuqt8=
Subject key identifier: BF:AC:96:29:98:C6:B9:06:27:CF:B0:06:4A:35:3A:1D:75:17:50:DB
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 2D4D6CC132E1B725CB3E9BD7FD265FF9BD019570
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 043F
Signing time: Sun 03 Aug 2025 19:18:22 +0000
Manifest this update: Sun 03 Aug 2025 19:13:22 +0000
Manifest next update: Mon 04 Aug 2025 20:06:22 +0000
Files and hashes: 1: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=)
2: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: B6ZNRHY/zq0n2OoVq40hqAuJPNl6LoXN+u77ctU3ACY=)
3: AS51019.asa (hash: RqQYQxP2LlV4zO7/d8ske+S6p2B1SREg+ga188kx8/8=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 Aug 2025 20:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:4d:6c:c1:32:e1:b7:25:cb:3e:9b:d7:fd:26:5f:f9:bd:01:95:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Aug 3 19:13:22 2025 GMT
Not After : Aug 4 20:06:22 2025 GMT
Subject: CN=BFAC962998C6B90627CFB0064A353A1D751750DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5f:89:73:fe:12:51:bd:be:f0:4e:4f:a1:e5:
da:82:e9:d8:0b:c5:f1:fa:be:91:6d:71:1a:21:86:
81:b9:b5:98:d5:49:c4:c3:d8:4c:be:27:fa:24:59:
c9:11:0d:2e:9e:9e:ea:b7:8d:82:07:a0:83:c9:df:
c9:1a:7d:0f:7c:69:06:33:13:1a:69:92:bd:e1:65:
f4:da:a5:ae:d0:d8:5e:c1:69:9a:6f:dc:7f:4b:c7:
3b:c0:c8:55:54:0f:f7:09:a4:9e:fa:f2:7f:da:ee:
93:2d:ca:4b:cd:dc:37:b8:eb:3f:c1:c6:42:ff:12:
9e:a0:44:fb:a0:15:2a:6a:ed:34:bc:26:5e:c5:f8:
cf:23:e0:0b:dc:cc:64:af:46:fa:b5:39:53:88:57:
3e:12:a0:b6:5e:84:29:cb:8e:0d:93:e3:39:df:e6:
ff:63:e3:b5:73:59:77:70:23:57:dd:55:69:c6:3a:
d5:bc:cd:2c:ce:ba:e2:c2:24:11:95:b2:f0:07:70:
0d:bb:59:0d:3d:9b:bd:eb:9e:05:d5:58:b5:ca:75:
73:29:77:e5:55:44:79:65:4c:18:eb:5a:65:89:c2:
73:d3:60:dc:91:dd:05:f7:9a:93:ee:e2:90:bf:f5:
5a:d7:51:55:89:15:eb:e3:f7:06:0d:2f:5a:60:09:
62:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AC:96:29:98:C6:B9:06:27:CF:B0:06:4A:35:3A:1D:75:17:50:DB
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:b4:56:ed:75:3f:90:0e:3b:54:a3:cf:fc:3f:22:f1:ed:f9:
2c:e6:1a:e9:eb:5f:cc:e9:cc:73:43:21:e4:5f:28:c8:86:6d:
bf:c0:11:d9:5a:3b:f1:23:7e:4d:9a:0a:98:3b:b1:1c:e3:19:
71:70:4c:90:46:9e:f0:6e:0a:c9:fd:9d:e7:56:3e:73:7b:38:
d4:82:cc:2c:11:e1:17:e5:54:0c:7d:b5:3c:64:fb:07:c0:59:
cb:2b:e8:bc:9c:9b:19:34:eb:33:b6:c3:40:46:41:a0:c1:4b:
ca:d0:f4:ef:ee:77:f1:6e:2b:76:f3:78:57:c0:88:05:6f:45:
3d:fa:c1:03:fb:21:89:9a:08:3e:80:39:3b:a7:02:48:08:6e:
97:bd:b5:f8:25:22:db:e7:01:12:39:25:90:68:41:d0:55:2b:
68:31:24:a5:cc:f8:a3:6d:3f:c9:77:ad:6f:2a:d3:4a:28:c5:
ca:95:2f:69:25:c7:d8:c8:90:8c:27:80:fc:7a:5f:60:60:f1:
68:78:70:97:81:06:a7:2b:74:43:ae:61:42:3f:3a:ae:86:ba:
cc:2c:63:0c:2e:03:56:48:f9:f1:34:6d:dc:2d:39:dd:1f:f8:
58:a9:43:b1:b6:58:2f:86:70:d6:03:31:81:f1:1e:62:1f:cd:
83:b5:47:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:48 2025 by rpki-client