Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft
File: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft (raw, json)
Hash identifier: wg9lzOeLgDnDn5/wOB7Q+w81azaOLEWKpYpBppPjYY8=
Subject key identifier: AA:23:85:A3:B4:18:1B:A0:7B:48:AE:01:D2:53:0A:05:4E:B4:09:47
Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5
Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5
Certificate serial: 3045762CD180D3FB17C73CE7B8D5AB707768AB40
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft
Manifest number: 0153
Signing time: Tue 29 Apr 2025 08:22:54 +0000
Manifest this update: Tue 29 Apr 2025 08:17:54 +0000
Manifest next update: Wed 30 Apr 2025 09:06:54 +0000
Files and hashes: 1: AS153176.asa (hash: nTAPGafaR0TwBdv5jCAijmg7tuOn6F8lJBqMjy7Nxfk=)
2: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (hash: Hm6Zisp9rtO1MRy4fuc8qXTfS/nQ+EU71DsoKF+5F24=)
3: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl (hash: 1hIm2xG2IerYEQcIkCt8xDxZ2QL9P1ER2elLcOIECFk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:45:76:2c:d1:80:d3:fb:17:c7:3c:e7:b8:d5:ab:70:77:68:ab:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5
Validity
Not Before: Apr 29 08:17:54 2025 GMT
Not After : Apr 30 09:06:54 2025 GMT
Subject: CN=AA2385A3B4181BA07B48AE01D2530A054EB40947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f2:41:9d:83:88:0d:31:da:c6:c3:f2:a1:92:
b7:61:4d:7e:49:a7:da:1c:f0:a2:43:cb:4a:2a:6b:
73:f1:db:21:c0:ce:50:66:32:ba:e3:d9:84:50:65:
dd:d3:16:e4:05:4c:bd:37:5f:69:71:9f:02:4d:8a:
9c:bd:ee:e4:2d:19:3f:72:96:c9:e4:1d:4b:84:3e:
da:25:e9:d7:b1:79:a6:f4:08:30:e9:b2:72:77:e5:
74:8a:7a:cb:af:1c:2e:b9:22:9f:04:f9:bd:5e:35:
17:4d:4a:0a:4e:18:7a:1f:ef:7e:ac:51:58:0f:44:
e2:0e:da:ab:5f:7b:a4:8d:d5:e3:62:80:bf:48:e8:
d0:a5:2e:2b:8c:f1:93:1e:f0:85:ad:20:cb:80:8f:
8b:69:23:be:48:05:f4:4e:67:5e:7f:0e:9f:bc:99:
83:78:3f:cd:f8:0b:c1:e7:8b:4b:9f:42:0d:7e:e3:
e2:04:9b:ad:23:3d:16:62:75:0a:69:08:f2:93:7a:
12:82:aa:ec:df:40:6f:b2:00:e7:6a:7a:82:6c:64:
6e:dd:46:e0:e5:ca:e7:50:0e:d5:fd:25:de:8a:29:
2b:fa:fd:d8:0f:85:df:63:0e:92:80:02:29:72:ec:
a0:34:1e:47:ea:af:d9:52:e0:e2:55:04:78:c9:25:
b7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:23:85:A3:B4:18:1B:A0:7B:48:AE:01:D2:53:0A:05:4E:B4:09:47
X509v3 Authority Key Identifier:
keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:88:33:a1:2e:df:cb:4c:cd:6c:5a:a6:53:32:22:3b:48:94:
7e:73:6c:0a:11:c6:f6:3b:c4:f4:f3:19:0c:1c:d2:6d:1f:28:
8c:89:57:ab:e2:02:49:2e:fa:f2:f4:95:69:3b:ac:97:d5:a1:
cd:2e:4b:48:4b:c7:f6:9c:85:2f:83:fd:fe:5f:25:0e:a2:ec:
d2:ee:47:d2:04:f3:8f:d0:c8:18:b2:02:7c:0a:0d:99:6d:32:
ba:75:dd:99:35:0d:68:86:0e:9d:20:e2:02:8f:b6:93:81:7e:
79:8e:38:1d:6a:16:62:6a:ef:73:90:bd:b2:39:43:ba:ea:64:
bb:b9:8e:26:7c:ce:46:aa:48:e9:63:f5:ff:7d:c9:ad:6d:d6:
f0:73:db:60:89:c2:b2:ed:ec:f5:91:52:06:9d:90:24:33:93:
21:9e:15:15:1d:51:47:e2:26:1f:0e:81:68:e0:b9:63:1b:87:
33:23:d5:be:ae:c0:01:c7:9a:e2:bc:05:be:90:bd:30:58:65:
6c:b1:a8:39:9a:e2:8a:86:6c:7d:99:86:b0:0c:cb:53:e6:64:
19:5a:5b:47:37:8c:bd:40:95:4f:4a:05:71:62:2f:e9:2f:db:
61:31:94:fd:71:0a:b8:18:01:2d:f8:42:1a:d6:9d:55:0a:19:
9c:05:47:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 08:43:46 2025 by rpki-client