Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
File: C3A70AD7F32685733597C663E02CE28A3306F923.mft (raw, json)
Hash identifier: NjB4andcoPACKM9ooAVbqzBkGWSmRcUiZurmMFeus8E=
Subject key identifier: A8:F7:C8:CB:19:97:80:55:0E:8B:46:5A:AD:64:CE:3E:82:81:02:0D
Authority key identifier: C3:A7:0A:D7:F3:26:85:73:35:97:C6:63:E0:2C:E2:8A:33:06:F9:23
Certificate issuer: /CN=c3a70ad7f32685733597c663e02ce28a3306f923
Certificate serial: 5321673FBF5354A1D2049B7E7C7723940C50AFB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6cK1_MmhXM1l8Zj4CziijMG-SM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
Manifest number: B0
Signing time: Fri 04 Jul 2025 03:33:17 +0000
Manifest this update: Fri 04 Jul 2025 03:28:17 +0000
Manifest next update: Sat 05 Jul 2025 04:14:17 +0000
Files and hashes: 1: C3A70AD7F32685733597C663E02CE28A3306F923.crl (hash: mca81Ho/ZjcBe3/yAMwm2ni69t/4TyAE0yOJzGDKmAA=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:21:67:3f:bf:53:54:a1:d2:04:9b:7e:7c:77:23:94:0c:50:af:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a70ad7f32685733597c663e02ce28a3306f923
Validity
Not Before: Jul 4 03:28:17 2025 GMT
Not After : Jul 5 04:14:17 2025 GMT
Subject: CN=A8F7C8CB199780550E8B465AAD64CE3E8281020D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:36:b5:a5:27:e6:78:b8:a6:4b:c3:d9:62:16:
e1:c0:74:b9:91:b2:43:6e:b9:f7:d0:b8:7d:b4:4b:
d6:df:3e:1b:ad:95:33:6a:67:1b:dc:24:6e:94:85:
89:2d:37:6a:ba:b5:fe:e1:3c:03:66:5c:ae:38:f4:
34:66:1e:e6:15:9f:c9:f9:4f:0f:bb:03:74:25:00:
05:43:0e:90:fc:40:1f:ca:69:b0:6b:6b:67:81:b7:
42:5f:ea:fe:fd:c4:a1:c4:4c:65:b2:34:5e:81:df:
57:35:4e:27:67:9b:33:0e:9f:ca:f5:77:3a:cb:aa:
72:cd:91:da:99:82:c9:8b:68:79:ee:7b:e8:80:57:
74:ce:2e:5b:f2:f4:77:02:bc:0c:21:a6:50:8b:b8:
24:41:ee:aa:f3:15:63:32:c1:6f:03:26:12:f6:74:
39:a6:73:5e:14:8c:9d:8c:26:d2:88:79:6b:e4:eb:
b8:10:f2:4a:a2:3a:2d:d4:42:6a:d0:ee:8d:3f:88:
85:d0:31:57:fe:f3:db:81:92:ff:0e:9b:1d:1b:61:
83:84:96:b6:94:c9:9d:5e:be:a8:c0:ed:43:24:d6:
9a:3e:ef:d8:9f:72:c0:82:46:39:82:a8:62:7b:e2:
d7:33:8e:59:47:f3:bf:30:0d:1b:49:2f:e6:cf:87:
34:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F7:C8:CB:19:97:80:55:0E:8B:46:5A:AD:64:CE:3E:82:81:02:0D
X509v3 Authority Key Identifier:
keyid:C3:A7:0A:D7:F3:26:85:73:35:97:C6:63:E0:2C:E2:8A:33:06:F9:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6cK1_MmhXM1l8Zj4CziijMG-SM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:d2:fc:0d:28:41:ba:21:af:07:e3:11:c6:d9:8e:a9:7e:91:
97:35:a3:0c:c4:7e:e3:ee:e1:49:89:50:5b:67:92:4d:4c:3e:
d6:c5:29:38:93:0c:15:f7:91:42:36:94:dc:c8:a9:c6:62:32:
a7:8f:8f:14:83:48:7b:01:8a:29:47:f2:62:91:fc:38:1a:5c:
26:18:de:47:b5:72:8a:12:36:23:a0:c3:d6:fe:34:e3:0b:56:
a8:27:4c:c2:87:46:5f:60:0c:8d:c9:5a:c1:81:3b:ad:1e:fa:
0a:75:18:c9:35:e8:84:11:1e:f0:c3:62:57:e3:28:de:32:6a:
05:04:d4:84:84:56:ef:ee:a5:18:2e:2b:9e:47:cb:f8:af:57:
a3:95:a9:87:1c:51:bd:1a:58:d9:0b:2e:95:b0:ea:14:37:fc:
b8:1a:de:9b:f2:b3:6f:83:24:e8:bc:fe:4c:cb:da:f0:f5:f6:
1c:23:7f:92:ea:f1:ee:ac:2a:bf:62:0d:9d:77:ac:e4:e2:a8:
51:f7:c3:26:d5:6a:31:a2:cc:87:84:2a:20:f3:f1:d0:75:2b:
00:83:72:7d:b4:a8:3e:bc:6d:30:a8:4a:e2:e9:f6:9f:24:79:
1d:6a:d5:ae:8e:92:da:0e:42:79:78:32:02:16:e7:e4:a6:1a:
0b:6e:93:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:40:49 2025 by rpki-client