Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: yKHnU0PBKH9o1U/rqiDiOdTYX0dB/Dhyx3BeEuroqJ0=
Subject key identifier: 7C:14:3C:2F:2D:A9:9B:45:81:BF:CE:55:5A:74:2D:D8:E9:11:7A:BD
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 40D31B7BDCAAADA6ACEB686340FA0F144B8860AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 03B7
Signing time: Tue 06 May 2025 04:25:50 +0000
Manifest this update: Tue 06 May 2025 04:20:50 +0000
Manifest next update: Wed 07 May 2025 04:40:50 +0000
Files and hashes: 1: AS51019.asa (hash: RqQYQxP2LlV4zO7/d8ske+S6p2B1SREg+ga188kx8/8=)
2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: PeKrYlxO9aJzSjjq2GCsehA7RgIXos16I20n9tzXipg=)
3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: 27FV+m101blgSXuw1t5H2bgzbjTBfJRhcLTZcEgs7YQ=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:40:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:d3:1b:7b:dc:aa:ad:a6:ac:eb:68:63:40:fa:0f:14:4b:88:60:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: May 6 04:20:50 2025 GMT
Not After : May 7 04:40:50 2025 GMT
Subject: CN=7C143C2F2DA99B4581BFCE555A742DD8E9117ABD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8a:78:14:9b:33:13:76:ea:79:e1:87:05:67:
a0:63:87:fd:06:6b:91:9b:04:23:19:5a:64:a4:ab:
19:4c:8a:fd:12:51:5a:7b:51:01:17:bd:42:84:5a:
6e:a0:a1:a6:82:c1:3d:6b:fd:af:f1:1b:69:57:35:
0b:97:f9:75:06:76:2e:16:a6:bd:7b:ea:c9:e8:9f:
50:d7:e1:67:80:fe:8d:fa:ae:9b:d0:c7:22:59:a9:
62:c5:f7:84:28:4c:a2:55:a3:e9:68:a5:e1:45:9f:
52:a9:c6:36:3f:ce:bf:61:2b:eb:b9:51:58:f3:8f:
fb:d8:36:5c:57:13:4e:ae:1c:a9:0a:04:e4:87:a0:
e2:03:db:b6:f4:b4:ae:9f:81:73:ea:18:f7:b5:b5:
85:ec:48:9f:5d:10:74:f9:a1:7f:03:2a:eb:24:73:
da:f9:58:b2:d2:4f:5b:1e:7d:4b:6d:60:6e:e4:cd:
d0:87:e7:96:13:7a:10:1f:fd:fd:83:4e:59:e1:37:
04:44:bd:68:db:5d:1c:fe:f6:3f:36:29:82:aa:02:
b7:3e:66:fb:e0:1f:8d:38:3f:8b:0d:85:74:60:dd:
2f:27:1b:34:06:13:63:97:96:6c:5d:96:a2:1b:1a:
e6:0f:b4:9f:bc:85:40:d6:d2:fb:cc:a7:95:74:91:
a9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:14:3C:2F:2D:A9:9B:45:81:BF:CE:55:5A:74:2D:D8:E9:11:7A:BD
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:d5:f3:31:db:5a:a1:ae:50:8d:83:eb:6c:84:1c:ae:ce:bb:
db:dc:99:91:f0:c7:ff:98:c7:22:91:af:23:7a:3d:e2:85:b5:
b5:cd:cd:11:67:43:cd:3e:8d:9b:f1:50:b7:6f:e2:6a:30:d1:
e5:77:c6:6b:69:9d:d4:19:8a:9a:1f:5a:07:d0:74:0a:82:87:
3f:92:80:25:9a:24:e4:d9:14:20:cd:e9:23:86:26:26:cc:a6:
0b:c1:47:23:cf:05:5d:54:0a:eb:cb:98:da:a5:19:0d:08:1b:
f3:0b:5b:ab:32:01:74:df:3e:e8:9f:89:40:7d:15:ed:a5:22:
61:a4:76:d3:bf:5f:79:37:2f:a4:fe:1e:88:1b:68:c4:3b:eb:
ce:4d:4e:95:36:6a:a1:f7:37:c9:f0:7e:cd:19:22:5a:0e:19:
16:ac:5b:10:29:90:3e:69:73:55:eb:17:42:5c:a8:73:c4:04:
bf:4c:1d:24:30:e5:03:15:26:e5:b2:5e:62:06:6d:3f:d1:f1:
cd:e6:15:14:dd:43:f4:f3:80:02:fb:a4:cc:34:8c:75:5b:6b:
d1:eb:1f:54:0d:71:b2:e5:8a:45:3a:08:c2:94:5a:bb:ea:8b:
f3:c8:cc:fe:ea:99:47:2a:dd:35:cb:fa:05:ba:25:95:ee:16:
b6:cc:12:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 19:55:50 2025 by rpki-client