Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: jXa1uDmtWUeT2mSjmrIuEjzxoyUt1mkPfaOVTX6rAOU=
Subject key identifier: 92:F0:05:E2:9F:D0:49:FD:D5:B0:16:94:81:C1:52:2C:14:1A:42:85
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 59B4AE77080FAF4870A8CF59779B89B9CBC139CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 04BE
Signing time: Tue 04 Nov 2025 16:53:00 +0000
Manifest this update: Tue 04 Nov 2025 16:48:00 +0000
Manifest next update: Wed 05 Nov 2025 17:36:00 +0000
Files and hashes: 1: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=)
2: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: l/lycQ4KzqtGJWnfQwy80s1L2O+dgpcbo4hhcJ3DUAo=)
3: AS51019.asa (hash: WryIkbk/NUiWkCGjmvwR10LorzE/G+iVXJIWS/l2CjI=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:b4:ae:77:08:0f:af:48:70:a8:cf:59:77:9b:89:b9:cb:c1:39:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Nov 4 16:48:00 2025 GMT
Not After : Nov 5 17:36:00 2025 GMT
Subject: CN=92F005E29FD049FDD5B0169481C1522C141A4285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:39:88:4d:20:f8:6d:ac:e5:c1:ad:dc:91:
ee:c8:99:77:e4:f1:69:20:fe:59:8f:d1:73:7a:b5:
15:27:2f:70:9b:77:2d:e6:df:0f:1e:ec:91:82:d7:
32:3a:42:af:41:76:fd:63:67:ee:fe:75:8a:82:e3:
80:50:f0:9f:1d:32:3a:22:b9:7c:af:fd:63:aa:c2:
f5:6d:8e:71:36:8e:45:49:c7:fc:a4:7e:a6:0f:4b:
cf:fc:59:14:ac:95:04:b9:ab:1c:53:a2:1e:36:78:
da:ed:00:95:12:f8:2e:b7:55:6d:9a:db:3a:6b:22:
6c:78:cc:0d:4b:44:c2:88:1e:72:86:67:a1:5a:3b:
34:97:5f:ab:f7:d9:fe:aa:11:e8:68:fe:75:47:aa:
d7:8f:c1:bb:3c:a4:ec:bd:41:fe:10:53:22:5e:8b:
2a:c7:bd:96:88:85:7c:cd:c0:05:bd:e4:bc:4a:00:
16:ac:87:ee:fb:ec:2d:cf:12:ee:e4:fa:be:ac:e4:
c6:60:ab:20:02:8f:00:69:9d:b8:fc:fa:83:38:80:
27:5c:cb:58:10:91:06:27:c4:3a:7e:15:72:c2:28:
4e:54:39:c9:62:3b:47:29:ed:7c:87:46:70:e2:bf:
8e:1d:f5:14:c8:13:17:3c:da:f5:73:1c:0b:af:65:
03:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F0:05:E2:9F:D0:49:FD:D5:B0:16:94:81:C1:52:2C:14:1A:42:85
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:4f:5f:86:f3:80:4a:90:65:f2:43:56:b1:84:04:db:0b:99:
f2:de:c9:bd:2d:7f:1a:b0:5c:5d:0d:8b:b2:8e:cd:bd:1e:e6:
61:37:64:b1:1e:28:c4:c9:e2:84:f0:61:e8:c1:9f:54:ca:03:
24:81:15:38:40:d6:cb:c7:e3:6b:d0:b1:75:1c:c6:a1:ec:db:
70:2f:dd:0e:0d:52:49:e7:51:42:4e:19:6e:58:be:da:37:fe:
4c:fa:05:43:66:e9:15:87:48:b4:43:93:d4:10:0c:e3:cc:1c:
f5:d9:c0:67:74:5d:03:d3:5e:f1:f4:5e:00:62:b7:94:a0:66:
96:9f:01:5a:5b:f6:e3:a1:16:8d:36:6a:14:52:97:55:64:da:
c9:73:1a:a0:dd:90:46:19:2a:6a:68:b9:81:d0:c5:ab:34:6c:
f4:1d:85:b1:31:41:75:b4:60:5e:2d:7f:75:fd:0d:e7:76:44:
a5:84:07:93:8d:5b:41:7f:14:79:bd:c8:c8:48:46:bb:97:9a:
6e:8d:0a:06:be:fc:97:0d:90:f2:67:6f:99:8e:18:f8:70:d0:
22:ba:bf:77:40:41:06:c8:10:d9:09:e8:36:a9:10:04:35:bb:
0a:c5:c0:2c:54:50:1b:32:c0:22:e6:84:1c:3a:9d:92:a9:69:
da:62:bb:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:21:56 2025 by rpki-client