Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: npQzhrauSDIMHtucytwTg8epshz2StDJ6+eHqg7kuFQ=
Subject key identifier: A1:D3:FF:1F:B7:CB:28:F8:7C:76:02:B0:FC:62:C7:6C:33:BE:A0:B8
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 5591E4394C5C475BE28B7CCEF1877B683730CF63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 0403
Signing time: Sat 28 Jun 2025 14:36:54 +0000
Manifest this update: Sat 28 Jun 2025 14:31:54 +0000
Manifest next update: Sun 29 Jun 2025 17:07:54 +0000
Files and hashes: 1: AS51019.asa (hash: RqQYQxP2LlV4zO7/d8ske+S6p2B1SREg+ga188kx8/8=)
2: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: lVoWViXdKT5gsLG8BnKwLD428C1TQeVXH4LFJQ1LjE4=)
3: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: PeKrYlxO9aJzSjjq2GCsehA7RgIXos16I20n9tzXipg=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:91:e4:39:4c:5c:47:5b:e2:8b:7c:ce:f1:87:7b:68:37:30:cf:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Jun 28 14:31:54 2025 GMT
Not After : Jun 29 17:07:54 2025 GMT
Subject: CN=A1D3FF1FB7CB28F87C7602B0FC62C76C33BEA0B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e4:9f:cf:57:30:ef:56:fe:91:9e:41:d2:80:
7f:d0:0b:20:ea:55:83:d3:24:76:9b:31:ec:60:93:
86:89:b9:57:bb:89:48:9a:9d:2e:08:0e:5b:f8:1f:
ca:29:3b:83:64:e7:f7:39:d5:c7:4d:9a:db:7e:dc:
a6:93:0d:e8:7b:f7:a6:66:f9:4a:96:d0:06:2b:ad:
be:96:b7:02:c4:2f:36:c5:82:ea:15:66:e2:33:ca:
44:0b:a1:9a:74:96:f5:63:a3:4a:db:72:cd:be:bd:
f4:9f:8f:5f:23:7a:36:b6:ed:ec:dd:11:12:21:ef:
ba:03:48:d1:55:15:89:ed:e4:b7:57:0f:a8:62:13:
02:ab:56:89:8b:32:24:55:f2:5f:f0:19:85:4d:fb:
1f:af:0d:7e:af:7f:f5:43:83:34:c1:ba:3a:b4:57:
08:8f:f2:6f:06:4c:c0:d8:bf:98:30:a8:97:00:d0:
c6:2f:db:fc:a9:58:cc:93:65:ba:68:4f:45:cf:b9:
82:4c:a3:47:03:2a:b7:c5:5f:dc:58:b7:0e:4b:7e:
90:79:31:a3:60:3f:f5:e5:9b:49:96:f9:80:ef:58:
d6:da:bb:6f:df:2e:6e:e7:4f:f2:04:35:d7:3c:05:
1e:36:a3:e5:d6:77:a7:1e:12:8f:24:4d:0e:eb:59:
2a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D3:FF:1F:B7:CB:28:F8:7C:76:02:B0:FC:62:C7:6C:33:BE:A0:B8
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:da:d8:14:f9:1c:ad:e7:f7:74:e3:2e:2e:9c:7a:0e:b1:20:
c8:5b:d3:59:24:b3:38:d4:dd:ac:26:69:d8:80:a9:bc:27:e4:
80:7f:15:8b:20:28:6c:4b:52:6a:7c:c4:16:19:6a:3b:35:5e:
92:9a:9c:5b:6f:15:72:75:1f:43:80:b5:a6:13:02:3c:3c:99:
c1:a4:7d:7f:f4:f3:9e:8c:9f:c4:81:5b:32:e0:de:83:10:6c:
c7:9d:f6:fa:c1:00:51:cc:b7:b2:e4:71:69:82:95:4d:75:66:
3c:ae:6e:68:5e:1e:14:bf:d0:37:49:c7:2c:08:ca:f9:cd:c3:
b5:8a:fa:79:d7:31:c0:78:e8:39:d7:c7:bf:2f:a6:88:6e:1c:
57:b8:b4:17:6e:1a:c8:68:ee:25:17:ec:c7:54:a6:21:07:04:
83:0e:0b:cb:af:14:62:f0:46:95:75:12:05:24:34:8a:3c:d1:
8d:44:6e:83:1a:07:05:fc:d5:1c:71:42:16:18:7e:bb:7e:a0:
c8:f8:2a:c6:60:cd:38:87:21:92:0c:a2:cb:a7:ac:4c:f4:b2:
25:21:e5:d2:b8:66:dc:86:21:91:77:b2:b8:5f:28:14:38:84:
ac:45:ff:69:75:6f:de:dc:d7:8a:98:c5:5d:9d:72:8c:29:61:
28:72:cb:d4
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUVZHkOUxcR1vii3zO8Yd7aDcwz2MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz
M2UwMmVhZDAeFw0yNTA2MjgxNDMxNTRaFw0yNTA2MjkxNzA3NTRaMDMxMTAvBgNV
BAMTKEExRDNGRjFGQjdDQjI4Rjg3Qzc2MDJCMEZDNjJDNzZDMzNCRUEwQjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn5J/PVzDvVv6RnkHSgH/QCyDq
VYPTJHabMexgk4aJuVe7iUianS4IDlv4H8opO4Nk5/c51cdNmtt+3KaTDeh796Zm
+UqW0AYrrb6WtwLELzbFguoVZuIzykQLoZp0lvVjo0rbcs2+vfSfj18jeja27ezd
ERIh77oDSNFVFYnt5LdXD6hiEwKrVomLMiRV8l/wGYVN+x+vDX6vf/VDgzTBujq0
VwiP8m8GTMDYv5gwqJcA0MYv2/ypWMyTZbpoT0XPuYJMo0cDKrfFX9xYtw5LfpB5
MaNgP/Xlm0mW+YDvWNbau2/fLm7nT/IENdc8BR42o+XWd6ceEo8kTQ7rWSrXAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUodP/H7fLKPh8dgKw/GLHbDO+oLgwHwYDVR0j
BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh
ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ
Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00
MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2
NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZtrYFPkcref3dOMuLpx6
DrEgyFvTWSSzONTdrCZp2ICpvCfkgH8ViyAobEtSanzEFhlqOzVekpqcW28VcnUf
Q4C1phMCPDyZwaR9f/TznoyfxIFbMuDegxBsx532+sEAUcy3suRxaYKVTXVmPK5u
aF4eFL/QN0nHLAjK+c3DtYr6edcxwHjoOdfHvy+miG4cV7i0F24ayGjuJRfsx1Sm
IQcEgw4Ly68UYvBGlXUSBSQ0ijzRjURugxoHBfzVHHFCFhh+u36gyPgqxmDNOIch
kgyiy6esTPSyJSHl0rhm3IYhkXeyuF8oFDiErEX/aXVv3tzXipjFXZ1yjClhKHLL
1A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:20:16 2025 by rpki-client