Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: 2XNU7svz8Q2eAFwYXyQ0SZBvV7oNUQAVRotw0i9Bq04=
Subject key identifier: E5:19:D3:89:C0:09:13:63:C8:77:C8:6D:A4:3D:ED:6B:B1:E2:5E:7D
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 33E02EB963DA6C23679708759B60C57F2E35EC1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 0282
Signing time: Sat 10 May 2025 02:00:31 +0000
Manifest this update: Sat 10 May 2025 01:55:31 +0000
Manifest next update: Sun 11 May 2025 04:30:31 +0000
Files and hashes: 1: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: 4A7gZLscuPsgKOpU/+qiNMZC6PmXf1y7KfNGj7ssAdc=)
2: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: AMOOReO25pB/UyWle0jkXv+B6m1MTNWZ4+1w+73+7MY=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e0:2e:b9:63:da:6c:23:67:97:08:75:9b:60:c5:7f:2e:35:ec:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: May 10 01:55:31 2025 GMT
Not After : May 11 04:30:31 2025 GMT
Subject: CN=E519D389C0091363C877C86DA43DED6BB1E25E7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:db:e2:b2:4f:74:e2:32:b5:9a:53:e5:73:0f:
fa:eb:2f:39:16:1d:cb:06:dd:e4:81:6d:2a:16:54:
df:13:eb:30:fe:e0:a5:4f:5b:a0:22:76:55:91:b1:
20:42:20:06:48:6f:07:31:03:3c:e9:09:d1:19:6a:
80:1a:2e:bf:20:bb:0c:98:5a:9d:c6:95:93:c2:97:
99:55:3b:c5:72:1e:2e:7e:de:f8:77:46:be:ba:5e:
2d:e2:0d:25:03:a0:72:ea:e9:84:82:d4:1c:5b:c5:
62:89:df:e7:52:ce:1b:f4:9c:7c:02:20:fb:fb:67:
06:2e:2c:cc:66:cb:be:39:07:96:4a:2e:b6:0c:ae:
5e:c0:18:a9:31:f2:e7:d1:93:44:41:a5:fc:2a:75:
af:36:b8:3f:c4:bb:e9:9b:92:fb:ed:0c:5c:2e:c5:
31:3a:e7:ee:43:64:0c:7b:11:0f:85:a6:a1:58:dc:
5e:fc:12:35:49:2d:56:0b:dd:3a:fc:71:bd:8b:ee:
0a:99:77:17:86:6e:0a:ef:c9:13:b3:48:44:8d:35:
fd:65:c4:cd:cc:47:5f:f3:61:66:71:e8:d1:72:a4:
d5:6e:a2:c5:0e:75:20:bc:a2:17:8f:ab:9d:20:1d:
c9:42:6f:f1:82:2d:4a:ce:36:b7:b6:20:30:73:fa:
fd:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:19:D3:89:C0:09:13:63:C8:77:C8:6D:A4:3D:ED:6B:B1:E2:5E:7D
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:70:f9:c2:a8:c8:06:82:55:26:84:6c:72:e9:57:ee:21:51:
1b:be:88:5c:2e:04:03:47:c1:19:d6:91:ea:1e:49:e0:5a:c4:
a8:7f:3f:51:be:10:d2:dc:51:c9:bc:91:a6:74:64:fd:8c:a7:
3d:ad:a0:5f:e2:18:65:ec:c1:41:d1:7b:67:80:39:b7:23:a0:
0d:a8:d7:82:04:99:c3:ad:b5:60:d5:7b:ee:c9:e3:af:f3:6a:
1f:06:cb:fe:4f:ec:14:65:11:08:78:27:d9:3b:50:21:8e:46:
02:3b:b9:65:af:dc:e7:c7:da:34:8e:90:fe:8f:2b:1a:3a:dd:
5b:26:d0:5a:dc:4d:d9:74:d9:cd:a2:c5:66:51:8d:0d:19:b9:
25:07:fa:0f:01:fb:aa:70:1a:2f:fb:26:0f:1a:38:e0:ea:ba:
fe:b9:f6:c8:04:95:2a:21:7c:a3:53:b2:bd:97:39:a1:f7:3c:
30:48:96:ba:f2:d5:8c:35:3c:dc:df:b2:5f:4f:33:cf:b9:61:
e4:9b:cb:8a:b3:e6:b0:1f:35:b3:51:de:4d:44:b2:c7:c4:13:
84:64:9f:7c:c1:3b:09:39:3a:ed:90:97:b1:59:0d:a7:21:f1:
32:b5:f2:cb:67:ed:b6:10:ab:67:40:67:8d:3d:b4:7c:0c:76:
87:f4:40:d7
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUM+AuuWPabCNnlwh1m2DFfy417B4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjhkMDk3YWZkODhhZWYzZjEwMjgyZjMyMThmYzEzZjAx
YTBkZTQ4NjAeFw0yNTA1MTAwMTU1MzFaFw0yNTA1MTEwNDMwMzFaMDMxMTAvBgNV
BAMTKEU1MTlEMzg5QzAwOTEzNjNDODc3Qzg2REE0M0RFRDZCQjFFMjVFN0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2+KyT3TiMrWaU+VzD/rrLzkW
HcsG3eSBbSoWVN8T6zD+4KVPW6AidlWRsSBCIAZIbwcxAzzpCdEZaoAaLr8guwyY
Wp3GlZPCl5lVO8VyHi5+3vh3Rr66Xi3iDSUDoHLq6YSC1BxbxWKJ3+dSzhv0nHwC
IPv7ZwYuLMxmy745B5ZKLrYMrl7AGKkx8ufRk0RBpfwqda82uD/Eu+mbkvvtDFwu
xTE65+5DZAx7EQ+FpqFY3F78EjVJLVYL3Tr8cb2L7gqZdxeGbgrvyROzSESNNf1l
xM3MR1/zYWZx6NFypNVuosUOdSC8ohePq50gHclCb/GCLUrONre2IDBz+v3rAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQU5RnTicAJE2PId8htpD3ta7HiXn0wHwYDVR0j
BBgwFoAUaNCXr9iK7z8QKC8yGPwT8BoN5IYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2MxMWI4MTktZDQ1OS00MTM2LTk5ODctZjAyOTJhODdl
NjQwLzAvNjhEMDk3QUZEODhBRUYzRjEwMjgyRjMyMThGQzEzRjAxQTBERTQ4Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FOQ1hyOWlLN3o4UUtDOHlHUHdUOEJv
TjVJWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83YzExYjgxOS1k
NDU5LTQxMzYtOTk4Ny1mMDI5MmE4N2U2NDAvMC82OEQwOTdBRkQ4OEFFRjNGMTAy
ODJGMzIxOEZDMTNGMDFBMERFNDg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHD5wqjIBoJVJoRsculX
7iFRG76IXC4EA0fBGdaR6h5J4FrEqH8/Ub4Q0txRybyRpnRk/YynPa2gX+IYZezB
QdF7Z4A5tyOgDajXggSZw621YNV77snjr/NqHwbL/k/sFGURCHgn2TtQIY5GAju5
Za/c58faNI6Q/o8rGjrdWybQWtxN2XTZzaLFZlGNDRm5JQf6DwH7qnAaL/smDxo4
4Oq6/rn2yASVKiF8o1OyvZc5ofc8MEiWuvLVjDU83N+yX08zz7lh5JvLirPmsB81
s1HeTUSyx8QThGSffME7CTk67ZCXsVkNpyHxMrXyy2ftthCrZ0BnjT20fAx2h/RA
1w==
-----END CERTIFICATE-----
Generated at Sat May 10 07:26:35 2025 by rpki-client