Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: kcSkGBgQObuFLhpoPTr7L314bMxjmtYU3eRIZs+rwws=
Subject key identifier: 0C:8D:D6:92:B7:3C:82:91:54:49:73:E8:54:35:AD:1A:79:21:9B:0D
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 371E79BEF22E742E8F4455F421C7C62F9462199E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 0458
Signing time: Fri 22 Aug 2025 22:41:13 +0000
Manifest this update: Fri 22 Aug 2025 22:36:13 +0000
Manifest next update: Sat 23 Aug 2025 23:57:13 +0000
Files and hashes: 1: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: hL1VOAQM4YSdM2+XLGocRDy0lTIZcWcmm3oVH3TNrYY=)
2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=)
3: AS51019.asa (hash: RqQYQxP2LlV4zO7/d8ske+S6p2B1SREg+ga188kx8/8=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:57:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:1e:79:be:f2:2e:74:2e:8f:44:55:f4:21:c7:c6:2f:94:62:19:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Aug 22 22:36:13 2025 GMT
Not After : Aug 23 23:57:13 2025 GMT
Subject: CN=0C8DD692B73C8291544973E85435AD1A79219B0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ca:97:97:7f:73:e8:40:d4:84:b9:70:2a:40:
a8:13:07:1d:28:f6:9f:56:f1:5f:70:96:f1:38:61:
52:67:29:7e:fc:9b:4b:3f:2a:ec:cd:35:54:55:21:
59:bd:a1:5c:fc:cd:f8:ef:2c:a7:b8:19:09:17:ac:
9f:a4:29:79:13:20:f3:77:2c:37:5c:56:b4:72:39:
66:2d:a8:a7:0e:33:cb:ca:44:4c:ec:09:d5:d4:7d:
30:2d:23:28:e7:35:c1:a8:c0:e6:7b:98:21:b2:f8:
6b:2d:a1:27:35:93:f4:54:43:71:53:ff:fa:c7:05:
57:c1:47:40:81:e8:f3:9a:78:8f:e3:15:8d:a3:47:
43:75:e5:e8:f8:68:85:fd:a8:8b:a3:6b:38:88:f1:
71:c6:86:ad:3a:a9:1d:8a:70:56:bd:ff:fa:6a:89:
b8:61:b8:0b:4d:97:be:d4:a4:89:bc:a6:f2:1c:2c:
75:eb:06:a5:7f:6f:3a:b2:e7:56:8f:4f:f9:74:68:
cb:90:98:bb:3f:d0:fc:af:18:73:49:54:6c:39:d4:
28:69:23:85:71:9a:ca:f2:98:d2:37:93:03:3a:ab:
6c:0f:2e:c8:03:1f:bf:b0:2d:bf:46:84:93:69:20:
8c:b8:fc:4e:d2:f7:8b:47:1d:3b:75:0a:a7:cf:c0:
d4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:8D:D6:92:B7:3C:82:91:54:49:73:E8:54:35:AD:1A:79:21:9B:0D
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:11:b7:f1:82:8a:22:f7:71:65:49:d5:85:07:43:35:8e:f0:
65:37:f8:d0:5d:65:35:a9:90:c6:14:1f:2a:72:9d:45:ac:ec:
b9:a2:5d:48:5e:ea:f2:71:bc:92:90:6f:b5:aa:d9:48:e8:68:
ee:3e:85:50:8a:27:85:ca:e4:ab:72:2f:a1:4c:90:65:99:51:
be:aa:86:bf:bc:45:ca:84:a8:5a:a0:53:3b:92:a8:72:f1:1f:
17:6d:c0:bd:2e:33:c3:be:06:b4:61:db:a8:9c:57:6e:66:2f:
46:d1:a7:22:b8:9d:27:79:1e:01:8f:f5:4d:14:37:48:e4:c2:
08:03:54:0b:6e:5d:95:87:7b:8e:83:90:1c:29:1b:5e:7b:26:
f6:95:9c:69:af:75:de:5a:5c:ea:a9:7f:5d:7f:ef:59:77:bf:
ea:1d:e3:19:22:b5:52:c6:8e:23:50:4f:db:5a:b9:1a:47:fe:
0a:b4:37:a0:d0:2d:ab:19:75:7a:a1:14:4a:0a:90:6e:88:17:
2d:56:0c:c6:6e:70:55:6d:de:5e:d8:73:b5:76:6b:fd:d2:6b:
66:2f:46:b2:22:a8:24:64:a3:12:3a:31:c4:7b:ae:d8:07:c7:
14:45:3a:6c:d9:f7:d9:9b:7b:96:e7:aa:3c:dd:b3:7c:fb:86:
0a:b9:c0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:27 2025 by rpki-client