Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: fXIVVQpaNAxGFkXm4cw+IZshNakpwsXL8hwBqURiwvc=
Subject key identifier: 34:7E:8D:FB:A6:1A:BB:4C:4F:33:1E:F7:BC:9F:CA:69:1E:77:37:19
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 79CCE2BED9CC237811FD9E70087DFDA4EAFE0A67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 035A
Signing time: Sun 19 Oct 2025 01:11:33 +0000
Manifest this update: Sun 19 Oct 2025 01:06:33 +0000
Manifest next update: Mon 20 Oct 2025 01:26:33 +0000
Files and hashes: 1: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: Z6U1aPwKKVYoOsljJYegYRcVhtaTUiIP8YS4tH304nM=)
2: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 01:26:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:cc:e2:be:d9:cc:23:78:11:fd:9e:70:08:7d:fd:a4:ea:fe:0a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Oct 19 01:06:33 2025 GMT
Not After : Oct 20 01:26:33 2025 GMT
Subject: CN=347E8DFBA61ABB4C4F331EF7BC9FCA691E773719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:42:6e:5d:8f:45:86:38:54:19:65:e2:1f:1a:
42:b6:b5:f9:64:91:b5:76:5e:90:38:9e:58:33:a5:
14:98:b9:cd:da:42:af:6f:ce:16:cd:2a:91:28:b0:
74:3a:56:ae:4d:9f:3c:6c:d3:34:e7:58:07:f4:29:
4c:50:1e:eb:f3:7c:34:6a:7d:5e:0b:a2:66:fb:50:
27:4e:04:0c:5b:38:7f:bd:ea:6b:0c:d5:9d:1e:7c:
53:c8:c2:b0:42:a8:f3:24:8d:73:42:18:ec:81:68:
41:4d:6a:fa:b9:0b:77:15:82:d2:05:64:08:ba:eb:
42:fe:64:f5:4f:b4:2f:60:c2:cb:c3:18:f2:9c:a5:
e5:9f:37:83:6e:98:5f:1a:8c:8b:37:d8:53:4b:d0:
18:6e:97:77:65:9f:78:d8:72:d2:28:95:36:f3:3d:
8f:73:d8:8b:b2:a6:90:83:14:ac:a2:43:15:72:a7:
a7:64:c4:35:48:1c:00:ce:ef:fc:ec:e4:a7:fe:a2:
8c:f3:bc:8a:41:7b:63:aa:83:b1:4e:a4:2f:19:f4:
70:7c:bb:f3:63:8a:0f:5f:78:7c:09:5a:e4:f6:20:
19:33:dd:17:02:38:c1:ac:ad:77:e3:e0:ba:2d:3a:
93:68:4c:81:c9:71:2d:bd:bd:67:7d:8e:9a:28:9d:
dd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7E:8D:FB:A6:1A:BB:4C:4F:33:1E:F7:BC:9F:CA:69:1E:77:37:19
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:e9:a6:d0:f2:09:0c:a8:e7:f4:be:39:06:8f:50:84:04:93:
30:a7:dd:e8:84:83:32:e5:9a:81:17:82:33:c6:35:96:27:e9:
ce:97:3b:b6:33:35:2e:67:f5:7b:af:80:13:0c:a1:fe:6c:fa:
4d:cc:7b:fd:53:27:d9:c1:0f:c2:b1:d6:5c:e8:29:cb:bc:26:
d7:b1:69:5b:f3:fb:99:25:65:de:c9:cb:cb:10:00:6a:66:b6:
b4:3b:74:b5:ff:2e:8d:a9:f4:59:ee:a5:98:2d:cb:e3:86:9f:
63:ef:79:c5:81:ac:b8:09:40:c7:75:d4:14:55:84:a1:6d:7e:
fc:a2:0b:0f:95:69:12:3a:7e:9a:2d:37:e3:8c:ea:83:56:2a:
21:c6:c1:6b:b4:eb:c4:61:ed:63:e4:fd:54:2c:d6:2e:4c:63:
6a:fe:f6:bb:9b:2d:5a:5e:d0:f2:30:26:69:f8:71:e9:f8:d9:
0f:ee:5a:44:5a:8b:09:9f:50:e2:5d:49:77:35:48:56:6a:a6:
79:3d:dc:d0:97:0d:49:7e:fd:ae:e6:1e:c4:28:2e:08:14:c3:
58:60:b7:b9:27:ff:16:c1:6a:9f:38:75:fa:cb:4f:7a:5d:cd:
be:7b:9a:f7:28:cb:f9:b8:2f:29:11:57:16:b5:d0:80:b6:89:
06:bb:d8:21
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUeczivtnMI3gR/Z5wCH39pOr+CmcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjhkMDk3YWZkODhhZWYzZjEwMjgyZjMyMThmYzEzZjAx
YTBkZTQ4NjAeFw0yNTEwMTkwMTA2MzNaFw0yNTEwMjAwMTI2MzNaMDMxMTAvBgNV
BAMTKDM0N0U4REZCQTYxQUJCNEM0RjMzMUVGN0JDOUZDQTY5MUU3NzM3MTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8Qm5dj0WGOFQZZeIfGkK2tflk
kbV2XpA4nlgzpRSYuc3aQq9vzhbNKpEosHQ6Vq5Nnzxs0zTnWAf0KUxQHuvzfDRq
fV4Lomb7UCdOBAxbOH+96msM1Z0efFPIwrBCqPMkjXNCGOyBaEFNavq5C3cVgtIF
ZAi660L+ZPVPtC9gwsvDGPKcpeWfN4NumF8ajIs32FNL0Bhul3dln3jYctIolTbz
PY9z2IuyppCDFKyiQxVyp6dkxDVIHADO7/zs5Kf+oozzvIpBe2Oqg7FOpC8Z9HB8
u/Njig9feHwJWuT2IBkz3RcCOMGsrXfj4LotOpNoTIHJcS29vWd9jpoond23AgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUNH6N+6Yau0xPMx73vJ/KaR53NxkwHwYDVR0j
BBgwFoAUaNCXr9iK7z8QKC8yGPwT8BoN5IYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2MxMWI4MTktZDQ1OS00MTM2LTk5ODctZjAyOTJhODdl
NjQwLzAvNjhEMDk3QUZEODhBRUYzRjEwMjgyRjMyMThGQzEzRjAxQTBERTQ4Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FOQ1hyOWlLN3o4UUtDOHlHUHdUOEJv
TjVJWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83YzExYjgxOS1k
NDU5LTQxMzYtOTk4Ny1mMDI5MmE4N2U2NDAvMC82OEQwOTdBRkQ4OEFFRjNGMTAy
ODJGMzIxOEZDMTNGMDFBMERFNDg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjemm0PIJDKjn9L45Bo9Q
hASTMKfd6ISDMuWagReCM8Y1lifpzpc7tjM1Lmf1e6+AEwyh/mz6Tcx7/VMn2cEP
wrHWXOgpy7wm17FpW/P7mSVl3snLyxAAama2tDt0tf8ujan0We6lmC3L44afY+95
xYGsuAlAx3XUFFWEoW1+/KILD5VpEjp+mi0344zqg1YqIcbBa7TrxGHtY+T9VCzW
Lkxjav72u5stWl7Q8jAmafhx6fjZD+5aRFqLCZ9Q4l1JdzVIVmqmeT3c0JcNSX79
ruYexCguCBTDWGC3uSf/FsFqnzh1+stPel3Nvnua9yjL+bgvKRFXFrXQgLaJBrvY
IQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:27 2025 by rpki-client