Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: LUDWiin+ZiSo3pkyi5qNhMkQijCgRy1nNsjQaeSfzJI=
Subject key identifier: 63:BE:20:34:D0:92:FE:BF:6D:B0:73:54:E3:25:CB:89:6D:73:78:F5
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 5A05048744E1663C49DE224195271A6FDADD7DB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 03AB
Signing time: Sat 26 Apr 2025 23:51:51 +0000
Manifest this update: Sat 26 Apr 2025 23:46:51 +0000
Manifest next update: Mon 28 Apr 2025 00:50:51 +0000
Files and hashes: 1: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: PeKrYlxO9aJzSjjq2GCsehA7RgIXos16I20n9tzXipg=)
2: AS51019.asa (hash: RqQYQxP2LlV4zO7/d8ske+S6p2B1SREg+ga188kx8/8=)
3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: HDEYceZ0n99IMw3OmUfUoiuABVghSkp9ZKBpfThMS6w=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 00:50:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:05:04:87:44:e1:66:3c:49:de:22:41:95:27:1a:6f:da:dd:7d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Apr 26 23:46:51 2025 GMT
Not After : Apr 28 00:50:51 2025 GMT
Subject: CN=63BE2034D092FEBF6DB07354E325CB896D7378F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c6:23:86:4f:8c:82:52:e1:63:52:b7:32:54:
3c:85:e0:6a:aa:9f:1d:72:d8:2e:84:f1:f2:2d:7f:
3b:f6:45:fb:7a:b9:3f:a1:9c:2a:0d:63:72:9a:c7:
e8:b2:fb:6d:76:f6:cd:50:17:90:83:5f:19:6b:ee:
cb:1a:cf:e5:42:22:3d:f7:90:df:23:01:59:02:87:
ea:ab:4b:1a:70:bf:34:a8:fd:7f:92:11:42:11:b8:
bb:79:f6:61:e9:60:5d:d0:d6:3c:26:77:56:16:4f:
ef:f4:91:86:b2:89:66:56:57:1d:62:20:ad:a4:49:
8f:7a:a9:19:5f:da:c3:73:d6:59:3c:99:e5:13:9b:
8b:a0:50:f6:eb:c0:03:51:8f:11:5b:ca:22:d6:3f:
56:7f:30:60:c3:44:16:0d:45:98:dd:da:f7:2b:c3:
72:6c:f8:fa:60:e9:6b:90:f5:fd:0e:ae:38:10:d3:
aa:8f:2f:6d:9e:39:37:4b:83:9d:ab:70:05:ab:00:
71:73:a7:2c:1a:71:d2:3c:1b:a9:10:c2:37:a0:8e:
cb:60:86:21:fe:32:39:9f:d1:ba:bf:d6:0f:d7:dc:
76:8c:7f:fd:3c:0e:ab:2b:53:08:6c:52:d4:63:20:
d9:f0:5f:e8:24:1f:be:e5:f0:9d:fb:9f:2b:b1:2b:
81:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BE:20:34:D0:92:FE:BF:6D:B0:73:54:E3:25:CB:89:6D:73:78:F5
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:73:7b:d2:3c:cb:13:0a:b1:a9:47:be:31:f8:79:24:d5:a0:
01:15:0e:f8:e3:37:56:7e:b0:b1:d0:4a:03:df:fe:5f:9c:f3:
47:ce:87:7d:83:1e:02:35:13:11:73:48:03:e1:8c:4c:9a:ff:
59:7d:61:4f:37:3d:76:1c:39:a2:87:25:d2:fd:d2:2b:3e:99:
d7:1a:0b:ef:eb:15:e5:eb:ef:08:ad:c6:e4:47:90:13:eb:eb:
8e:b2:dc:7e:d6:04:85:83:fc:56:65:fc:9f:e1:bc:85:23:05:
54:32:df:59:9d:23:b1:8b:51:b6:9b:1f:84:e5:af:ae:2c:05:
fd:49:80:85:cf:c3:b1:ab:8e:a1:10:0f:35:43:22:4b:d0:ff:
18:4b:e5:72:41:d6:7a:05:e7:1f:c4:e4:e8:2e:e5:3a:56:ba:
48:68:4a:a8:4e:7f:b2:40:67:59:70:8a:10:0b:60:ed:d1:f1:
5a:90:1a:16:ab:a5:61:c0:a9:72:0a:3f:c3:66:17:92:41:63:
9b:2b:69:2f:3c:1f:8c:84:0b:f2:84:77:2d:6f:f0:f1:81:c9:
6c:db:4c:8c:9f:b0:61:fc:d9:23:3c:eb:ed:23:35:4f:2d:d5:
b1:ff:ff:a9:3f:65:db:41:f2:d8:21:b2:27:7b:da:ed:8f:12:
5c:71:c3:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:12:13 2025 by rpki-client