Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/1/3A3BE14D0868E39E43E27B585676DF5B82A122E3.mft
File: 3A3BE14D0868E39E43E27B585676DF5B82A122E3.mft (raw, json)
Hash identifier: hXZyu5BNqn7jl/JCM/aYrHqfYgoVhPn2MQUZ8RDi+cE=
Subject key identifier: 70:10:AE:52:A2:76:DF:F6:CB:A4:89:89:53:59:B0:CE:F5:EF:56:99
Authority key identifier: 3A:3B:E1:4D:08:68:E3:9E:43:E2:7B:58:56:76:DF:5B:82:A1:22:E3
Certificate issuer: /CN=3A3BE14D0868E39E43E27B585676DF5B82A122E3
Certificate serial: 3AD4F878CAF5D834BDB2E6DE73B60F14BC966EE2
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/3A3BE14D0868E39E43E27B585676DF5B82A122E3.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/1/3A3BE14D0868E39E43E27B585676DF5B82A122E3.mft
Manifest number: CD
Signing time: Thu 08 May 2025 21:27:47 +0000
Manifest this update: Thu 08 May 2025 21:22:47 +0000
Manifest next update: Sat 10 May 2025 00:54:47 +0000
Files and hashes: 1: 326131343a373538343a343130303a3a2f34302d3438203d3e20323136333039.roa (hash: o0e/YZFYgXWaWgJ9eaHmXBCXoGTSBaeTvlCQTDkm3+c=)
2: 3A3BE14D0868E39E43E27B585676DF5B82A122E3.crl (hash: S2jl4xKtbeUDHfeSG2OAtDX860rOs9bCejudooCT3x4=)
3: 326131343a373538343a346662653a3a2f34382d3438203d3e2036353137.roa (hash: xptTc8UfiLJf//oV4oJOzWfdwqREpi/ly50X2yQ1eVw=)
4: 326131343a373538343a343030303a3a2f33362d3438203d3e2036353137.roa (hash: nIC6lswk91hjl6KPMQ+RZfHgO+0KGr/fDFoPo3gap1k=)
5: 326131343a373538343a343830303a3a2f34382d3438203d3e20323131333538.roa (hash: 5+vQb6lOPVb905YmSSgsG+hU/u4KZQA5Mhi2G2NVX+8=)
6: 326131343a373538343a346630303a3a2f34302d3430203d3e20323132353136.roa (hash: 2LuyqKKWcdoqL1q9FKGl+zX6qwvAs9rBA48b+Sgpn8w=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:d4:f8:78:ca:f5:d8:34:bd:b2:e6:de:73:b6:0f:14:bc:96:6e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A3BE14D0868E39E43E27B585676DF5B82A122E3
Validity
Not Before: May 8 21:22:47 2025 GMT
Not After : May 10 00:54:47 2025 GMT
Subject: CN=7010AE52A276DFF6CBA489895359B0CEF5EF5699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:7b:42:c6:7c:f4:bc:27:24:f9:45:f2:6c:
a7:ae:a6:e7:2a:17:18:80:0f:be:da:fc:0f:3c:93:
23:2e:31:f6:f8:87:bc:8b:07:0e:5d:6e:3d:49:9e:
f4:14:dc:f7:62:90:6c:0a:12:c1:19:8c:51:c8:e6:
d9:a1:43:e4:b0:2a:48:19:c3:54:e1:f7:9b:5e:f1:
18:1b:31:12:9e:ff:67:61:b5:0c:4c:fd:14:7a:64:
0c:84:fb:16:a1:e9:d8:c8:da:ad:b7:9d:10:5d:14:
fb:cb:f9:9b:fd:fc:4a:de:2b:ac:f7:b4:d8:35:a5:
ef:07:3e:43:8b:9d:a2:af:bd:93:81:dd:a2:53:fe:
5b:90:ff:5b:54:94:ba:e8:9d:46:c5:53:d3:d1:a7:
39:4d:d8:b4:6b:75:64:65:60:ed:81:18:98:5b:e4:
14:eb:e1:a5:39:f7:90:35:9f:28:ad:0e:52:73:f9:
ec:15:0c:e2:22:4d:42:5f:06:a1:ae:d7:5d:8e:a1:
8b:0a:45:b7:7e:e9:cb:9b:55:90:70:af:da:27:32:
22:c2:f3:59:6e:cc:f5:25:a9:30:80:e7:56:f1:87:
ea:0e:dc:70:c0:2e:fc:78:65:10:d8:90:41:47:a5:
f1:6b:b4:1d:3f:a6:0f:84:d6:01:88:dc:ea:7b:b3:
75:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:10:AE:52:A2:76:DF:F6:CB:A4:89:89:53:59:B0:CE:F5:EF:56:99
X509v3 Authority Key Identifier:
keyid:3A:3B:E1:4D:08:68:E3:9E:43:E2:7B:58:56:76:DF:5B:82:A1:22:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/1/3A3BE14D0868E39E43E27B585676DF5B82A122E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/3A3BE14D0868E39E43E27B585676DF5B82A122E3.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/1/3A3BE14D0868E39E43E27B585676DF5B82A122E3.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:b6:02:f3:f6:50:60:39:62:0e:b4:4d:3c:78:a6:db:b2:25:
35:ae:c6:ae:2e:c3:2a:3a:bb:b5:fc:71:0e:07:de:3f:6e:d0:
51:46:47:8b:15:ac:52:e6:5b:c7:04:7a:d1:67:08:9d:12:1b:
ce:2e:c6:8b:c0:4b:7b:9c:3c:48:17:18:22:a4:6d:ec:da:8d:
84:d5:d8:6f:34:2c:2a:db:24:11:be:39:20:6e:d1:d4:04:54:
c8:d4:ba:58:98:73:42:30:85:ea:de:41:04:e1:3c:50:2f:db:
ab:2b:d9:48:b3:bf:9a:a4:12:e1:f4:63:8b:2e:5b:d7:22:2b:
e6:d6:d4:e5:86:66:6a:2a:8a:6f:57:fb:ae:49:99:74:58:0d:
32:c8:d7:a9:00:ac:1c:2e:67:3a:6b:aa:79:7f:c0:77:63:4f:
9d:71:40:c5:08:89:04:62:94:5e:35:98:08:1b:b7:cf:99:9a:
e2:0b:a1:65:f7:ca:5a:ea:6a:e2:35:30:fd:58:e8:35:6e:7a:
ed:2e:a9:92:95:fe:93:cb:51:c5:dc:10:00:59:ea:b4:9b:d9:
73:eb:e0:d2:4e:9c:ff:2b:59:46:9d:db:76:19:9e:b5:f0:69:
a6:41:bf:29:75:bc:36:74:00:4e:79:3e:6f:6a:9a:c6:d6:4d:
8e:c9:f5:8c
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIUOtT4eMr12DS9subec7YPFLyWbuIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0EzQkUxNEQwODY4RTM5RTQzRTI3QjU4NTY3NkRGNUI4
MkExMjJFMzAeFw0yNTA1MDgyMTIyNDdaFw0yNTA1MTAwMDU0NDdaMDMxMTAvBgNV
BAMTKDcwMTBBRTUyQTI3NkRGRjZDQkE0ODk4OTUzNTlCMENFRjVFRjU2OTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmn3tCxnz0vCck+UXybKeupucq
FxiAD77a/A88kyMuMfb4h7yLBw5dbj1JnvQU3PdikGwKEsEZjFHI5tmhQ+SwKkgZ
w1Th95te8RgbMRKe/2dhtQxM/RR6ZAyE+xah6djI2q23nRBdFPvL+Zv9/EreK6z3
tNg1pe8HPkOLnaKvvZOB3aJT/luQ/1tUlLronUbFU9PRpzlN2LRrdWRlYO2BGJhb
5BTr4aU595A1nyitDlJz+ewVDOIiTUJfBqGu112OoYsKRbd+6cubVZBwr9onMiLC
81luzPUlqTCA51bxh+oO3HDALvx4ZRDYkEFHpfFrtB0/pg+E1gGI3Op7s3WHAgMB
AAGjggKCMIICfjAdBgNVHQ4EFgQUcBCuUqJ23/bLpImJU1mwzvXvVpkwHwYDVR0j
BBgwFoAUOjvhTQho455D4ntYVnbfW4KhIuMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTljODNlNWMtNGI1NS00YTFhLTgwMDMtMWI3ZWNjNTFk
NDdhLzEvM0EzQkUxNEQwODY4RTM5RTQzRTI3QjU4NTY3NkRGNUI4MkExMjJFMy5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zQTNCRTE0RDA4NjhFMzlFNDNFMjdCNTg1
Njc2REY1QjgyQTEyMkUzLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF
BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
LzU5YzgzZTVjLTRiNTUtNGExYS04MDAzLTFiN2VjYzUxZDQ3YS8xLzNBM0JFMTRE
MDg2OEUzOUU0M0UyN0I1ODU2NzZERjVCODJBMTIyRTMubWZ0MBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF
ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCxtgLz
9lBgOWIOtE08eKbbsiU1rsauLsMqOru1/HEOB94/btBRRkeLFaxS5lvHBHrRZwid
EhvOLsaLwEt7nDxIFxgipG3s2o2E1dhvNCwq2yQRvjkgbtHUBFTI1LpYmHNCMIXq
3kEE4TxQL9urK9lIs7+apBLh9GOLLlvXIivm1tTlhmZqKopvV/uuSZl0WA0yyNep
AKwcLmc6a6p5f8B3Y0+dcUDFCIkEYpReNZgIG7fPmZriC6Fl98pa6mriNTD9WOg1
bnrtLqmSlf6Ty1HF3BAAWeq0m9lz6+DSTpz/K1lGndt2GZ618GmmQb8pdbw2dABO
eT5vaprG1k2OyfWM
-----END CERTIFICATE-----
Generated at Sun May 11 02:34:08 2025 by rpki-client