Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft
File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json)
Hash identifier: stTHqB+o3IwHR0QWJWHfv/0jmHXLZQFNLB9c1oRQyuo=
Subject key identifier: 38:1C:4E:A9:81:12:80:92:9B:AB:57:06:03:33:F2:C4:91:94:94:A8
Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4
Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4
Certificate serial: 0ACB7896892CC177B0D0A9561C4C2AF540D9C19F
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft
Manifest number: D6
Signing time: Mon 28 Apr 2025 21:37:59 +0000
Manifest this update: Mon 28 Apr 2025 21:32:59 +0000
Manifest next update: Tue 29 Apr 2025 22:00:59 +0000
Files and hashes: 1: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=)
2: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: k5HndDJhBAyE4sahkFdktwsYuMOwBSJBax/aIsFuo3k=)
3: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=)
4: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: ibb68AQAVWJMES3NYRBIOdUeHnGKp+tFUocAxCKgPEU=)
5: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=)
6: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=)
7: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=)
8: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: 7Ht9ysaUQlknniITxiGGZVb7FReUYStDZL1yen2prNE=)
9: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: GyqnDZwlRU44RSAJS6AmGof5uxXXmzhkRtpFSrxG7Nw=)
10: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: E8taggS6sI4q0LKjH6/GmLcIK3Cj0Fw4lwLi8ILdzT4=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:cb:78:96:89:2c:c1:77:b0:d0:a9:56:1c:4c:2a:f5:40:d9:c1:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4
Validity
Not Before: Apr 28 21:32:59 2025 GMT
Not After : Apr 29 22:00:59 2025 GMT
Subject: CN=381C4EA9811280929BAB57060333F2C4919494A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:50:90:ba:56:a5:39:a5:f5:a7:54:7a:19:f7:
97:a5:cd:96:26:35:83:ab:14:dc:9a:0f:8c:94:a0:
60:b5:24:09:a9:7b:75:f6:2a:b3:19:5e:85:5b:fb:
7e:a2:2f:33:d2:63:d2:3d:9d:b0:02:9a:ac:c5:ac:
02:0f:60:09:2c:75:b7:fb:b7:4f:65:fe:ff:3f:dd:
3b:e6:60:81:3a:bb:11:a3:d5:44:7a:8f:23:74:eb:
b3:e5:fe:52:88:4d:c5:76:6b:11:08:1e:92:8d:db:
98:a2:14:83:66:cb:b6:5b:01:0e:ce:76:c3:29:50:
f8:ae:03:02:56:54:4e:1e:af:3f:cd:bf:75:51:7b:
3c:bd:b3:2f:a0:ad:c8:f3:64:2a:d1:39:1f:e5:5d:
60:78:42:99:dd:0e:91:3a:91:e1:7e:7e:ea:a1:c1:
12:41:9f:81:12:51:2a:84:e0:55:21:b8:ae:70:cd:
d9:ab:b7:22:e0:04:66:80:a4:fe:a8:d5:f1:d1:6c:
93:f3:d5:cb:96:7a:61:f5:4f:06:11:e4:59:9c:79:
73:50:b2:c5:c6:b2:92:c4:6c:22:4e:e3:0c:7e:9c:
9b:7d:83:57:eb:bd:20:b7:f1:03:f2:b5:73:0c:52:
a1:6e:37:fa:5c:3f:4d:23:ad:87:43:0f:6c:19:f4:
a5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:1C:4E:A9:81:12:80:92:9B:AB:57:06:03:33:F2:C4:91:94:94:A8
X509v3 Authority Key Identifier:
keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:81:33:fc:46:10:aa:9d:c2:6d:fe:72:26:a1:64:2b:b2:72:
52:96:24:91:27:70:44:41:c8:be:7a:a4:d5:86:00:ad:e0:42:
8c:e4:9d:07:05:da:e1:19:d9:89:b5:dd:86:0f:ce:8a:26:8f:
25:89:af:f8:1c:d7:dd:e3:2e:17:17:70:07:dc:38:d2:f5:35:
2c:4b:41:4b:c1:a1:29:cf:e3:d2:56:51:46:c5:01:0e:c0:ff:
e0:41:3d:e9:d7:ba:08:dd:07:72:47:e1:2f:8e:70:6c:8e:59:
8b:17:58:c5:55:64:c2:0a:e8:ae:86:23:74:73:9c:00:9b:75:
f6:e0:25:85:87:36:3b:64:a7:0a:60:85:fe:88:1e:1c:87:a3:
ed:aa:45:c1:87:57:b1:45:de:2b:27:14:9b:e2:14:25:29:98:
b8:b1:2a:b1:9d:9a:16:69:54:72:2e:25:a4:8a:a7:5f:5f:b0:
c4:44:a4:4c:f2:ce:fa:08:d0:fc:e7:4f:58:c5:19:53:3d:c1:
9a:24:96:c6:ff:dc:a3:c0:42:09:85:91:eb:96:07:4e:86:3d:
4f:dc:f0:ed:d9:37:fa:e9:94:6c:ff:ff:d3:9d:9f:1b:b4:d5:
13:f5:77:bb:d9:65:54:78:0c:fb:d1:57:93:03:9e:85:52:14:
17:bd:9d:ec
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIUCst4lokswXew0KlWHEwq9UDZwZ8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG
OTM5RjRGNDAeFw0yNTA0MjgyMTMyNTlaFw0yNTA0MjkyMjAwNTlaMDMxMTAvBgNV
BAMTKDM4MUM0RUE5ODExMjgwOTI5QkFCNTcwNjAzMzNGMkM0OTE5NDk0QTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkUJC6VqU5pfWnVHoZ95elzZYm
NYOrFNyaD4yUoGC1JAmpe3X2KrMZXoVb+36iLzPSY9I9nbACmqzFrAIPYAksdbf7
t09l/v8/3TvmYIE6uxGj1UR6jyN067Pl/lKITcV2axEIHpKN25iiFINmy7ZbAQ7O
dsMpUPiuAwJWVE4erz/Nv3VRezy9sy+grcjzZCrROR/lXWB4QpndDpE6keF+fuqh
wRJBn4ESUSqE4FUhuK5wzdmrtyLgBGaApP6o1fHRbJPz1cuWemH1TwYR5FmceXNQ
ssXGspLEbCJO4wx+nJt9g1frvSC38QPytXMMUqFuN/pcP00jrYdDD2wZ9KV7AgMB
AAGjggKCMIICfjAdBgNVHQ4EFgQUOBxOqYESgJKbq1cGAzPyxJGUlKgwHwYDVR0j
BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4
Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5
QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF
BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG
REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF
ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCJgTP8
RhCqncJt/nImoWQrsnJSliSRJ3BEQci+eqTVhgCt4EKM5J0HBdrhGdmJtd2GD86K
Jo8lia/4HNfd4y4XF3AH3DjS9TUsS0FLwaEpz+PSVlFGxQEOwP/gQT3p17oI3Qdy
R+EvjnBsjlmLF1jFVWTCCuiuhiN0c5wAm3X24CWFhzY7ZKcKYIX+iB4ch6PtqkXB
h1exRd4rJxSb4hQlKZi4sSqxnZoWaVRyLiWkiqdfX7DERKRM8s76CND8509YxRlT
PcGaJJbG/9yjwEIJhZHrlgdOhj1P3PDt2Tf66ZRs///TnZ8btNUT9Xe72WVUeAz7
0VeTA56FUhQXvZ3s
-----END CERTIFICATE-----
Generated at Sun May 11 02:30:57 2025 by rpki-client