Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: nTru1WAn2fEQVSNe8Ah6vHHNyP7SyG1smebOJymbGEk=
Subject key identifier: CD:FB:B3:02:62:80:EB:81:F9:E0:74:86:44:B8:8C:C5:A2:D6:1D:7D
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 044692E5F64C8227143F6476DAE254636C55CAB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 030D
Signing time: Fri 22 Aug 2025 21:52:33 +0000
Manifest this update: Fri 22 Aug 2025 21:47:33 +0000
Manifest next update: Sun 24 Aug 2025 00:16:33 +0000
Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: AMOOReO25pB/UyWle0jkXv+B6m1MTNWZ4+1w+73+7MY=)
2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: i4Pc2xx+cpGbyfOpV5J+4UqF443Yz+UKd5mbD5I/F3U=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:16:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:46:92:e5:f6:4c:82:27:14:3f:64:76:da:e2:54:63:6c:55:ca:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Aug 22 21:47:33 2025 GMT
Not After : Aug 24 00:16:33 2025 GMT
Subject: CN=CDFBB3026280EB81F9E0748644B88CC5A2D61D7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:57:4c:a5:d6:28:74:94:16:72:47:71:62:8f:
d0:50:2c:68:9f:41:10:34:b7:53:24:f4:90:24:bb:
aa:7f:18:91:b4:7b:4b:8d:fe:9b:67:e4:64:f5:7b:
82:01:85:61:0b:55:ea:80:37:4f:59:9d:61:d9:33:
2f:0c:69:3a:0f:bd:db:2c:c1:ff:fb:b4:41:35:c1:
ce:ad:0f:43:d9:86:5a:20:5f:56:1f:f3:7a:b5:da:
92:ca:12:65:fb:b7:50:5e:22:01:71:95:46:68:c5:
c3:d7:e9:47:fc:07:f7:12:e1:d8:de:85:4a:54:9b:
a0:64:c3:9e:89:23:f6:02:b4:38:33:3d:95:40:51:
77:61:0f:b6:11:70:20:56:bb:8f:29:65:52:28:e2:
04:55:ec:04:7e:29:6d:fb:a5:59:f1:3a:84:8a:09:
48:44:36:61:46:6a:78:be:61:3a:7f:37:f7:60:17:
bf:00:99:8d:c8:ce:d9:58:3a:87:6f:21:c2:4a:b9:
01:5e:48:0a:51:08:bc:f0:82:38:b2:b7:a3:73:40:
8b:b0:01:a9:8b:3f:eb:ed:71:33:9b:a7:18:25:d1:
2e:66:4f:1c:8e:04:1a:e8:77:12:51:af:ed:59:b2:
8e:b2:7f:b5:3b:bf:c1:b1:54:6c:6c:9d:4e:a3:62:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:FB:B3:02:62:80:EB:81:F9:E0:74:86:44:B8:8C:C5:A2:D6:1D:7D
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:d9:91:05:1e:0d:f6:9c:f5:5b:c3:0a:b3:e4:61:25:a0:e1:
ba:1d:77:37:b5:44:74:ef:9c:a2:fd:8e:eb:d0:63:2c:0e:95:
88:a1:e6:ed:48:a4:6e:93:94:b1:c9:e7:5e:e2:b3:61:ec:bb:
59:e5:43:8c:cd:52:44:f2:e7:df:9c:dd:a3:b5:84:f9:a9:27:
d4:6a:2d:de:3f:07:f6:9c:5a:b1:cb:55:69:f5:59:25:89:47:
6d:ca:9b:e0:2b:69:62:c3:62:ec:6e:52:42:2f:41:64:7b:33:
9d:95:11:19:21:9d:d0:05:2c:a2:12:a2:9d:92:3d:14:e9:76:
19:2b:ab:9a:6d:14:30:f1:7e:75:8d:73:2a:53:1f:f4:9b:17:
20:91:95:31:7a:3a:4b:47:17:a1:23:d5:b8:45:da:f6:7d:9a:
af:04:15:8e:81:2e:49:66:bc:d9:99:6e:70:84:ef:67:33:d9:
0b:b4:17:56:8c:ce:43:92:3d:f3:25:d2:72:53:f1:11:2d:63:
29:26:90:9e:92:a3:50:17:35:a9:a6:a4:0f:5b:41:30:c7:e1:
c3:1c:f4:fb:83:d6:31:76:f2:d2:d5:67:34:f1:84:e4:3f:dc:
3e:ac:7a:bd:b0:9b:ba:58:55:d2:7b:5b:40:e0:f7:b3:33:d0:
ad:35:c9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:22:48 2025 by rpki-client