Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: oOn40uJEqjgBYZg7XuP9ZpDOLeCBogbzt8/SznhNUgc=
Subject key identifier: 80:F2:81:0C:1D:39:29:2E:E7:76:B6:3F:A1:7B:67:39:A3:F8:E6:58
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 1B44EE10F0E0416501C043807320DDA40683C83E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 044E
Signing time: Sun 07 Sep 2025 03:08:56 +0000
Manifest this update: Sun 07 Sep 2025 03:03:56 +0000
Manifest next update: Mon 08 Sep 2025 04:20:56 +0000
Files and hashes: 1: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: zks3S3nNFrWydVO2GhQhRxA45ciFPBcyKKczBGCchPU=)
2: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: +bVqrEMFd6OlmJt6OXUAm36lf7U27Wity5s8ggfbbQs=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:20:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:44:ee:10:f0:e0:41:65:01:c0:43:80:73:20:dd:a4:06:83:c8:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Sep 7 03:03:56 2025 GMT
Not After : Sep 8 04:20:56 2025 GMT
Subject: CN=80F2810C1D39292EE776B63FA17B6739A3F8E658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:92:af:b1:17:df:7d:00:d5:c5:fc:79:f4:b7:
ad:2c:a2:ba:45:26:62:6a:1d:eb:91:9d:05:5c:2e:
01:7c:7f:f9:00:98:4c:8b:71:aa:21:75:79:89:5e:
6e:f1:dc:73:8f:bc:96:79:1f:d7:3e:02:fb:db:26:
1d:13:c7:bb:3e:78:c1:82:ae:aa:a9:74:a5:46:a0:
e8:33:01:31:eb:a6:9f:d4:e6:d7:9f:32:14:07:c7:
5f:e5:ca:92:37:50:19:a2:25:75:e9:04:b1:8c:89:
79:a1:3c:28:e0:c2:8f:0f:f3:b3:ba:9e:80:7c:6f:
f5:0d:69:20:88:15:f0:ac:34:c5:de:c5:f1:d6:78:
6a:c5:01:4e:35:5d:62:fa:54:67:8a:5b:1a:08:1f:
72:f1:99:cb:c2:99:7c:88:9c:a2:e9:f3:67:c2:e7:
b0:ae:bc:4f:dc:b3:78:2c:f7:6e:38:29:8e:a3:d8:
09:ce:9f:f1:d7:ae:09:31:c7:f6:6d:bd:6e:97:b1:
f5:a6:0c:46:90:cc:37:45:1e:6d:04:9e:db:17:d4:
ea:86:15:05:69:3e:8b:aa:3d:94:62:06:0a:1a:5b:
1a:f6:c7:44:e9:b8:f2:3b:d2:96:4e:91:2f:0b:a8:
e8:3a:db:a8:8b:a6:dd:47:3a:98:03:e8:07:b7:db:
3e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F2:81:0C:1D:39:29:2E:E7:76:B6:3F:A1:7B:67:39:A3:F8:E6:58
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:6c:9f:bd:a3:fc:24:16:34:07:52:60:7e:3b:3a:ed:c5:3e:
fd:8b:2f:82:c0:9e:de:8c:18:4c:1d:63:19:49:55:00:5b:67:
c3:f8:23:d5:ad:ac:35:05:8e:4c:3c:af:62:28:bd:4f:f1:9c:
d7:3d:69:a0:50:4b:60:58:26:52:fa:1b:85:c4:5b:27:c5:41:
ed:2a:ac:8a:20:87:37:e7:98:a5:18:66:31:67:80:86:c7:b0:
93:ca:ec:2f:77:65:52:36:a6:aa:fe:bc:03:45:86:1e:c1:aa:
99:99:78:7f:ca:62:df:d4:23:bf:9e:9f:5a:a9:c0:6a:ad:fd:
2a:2f:ba:c4:0e:6b:29:2d:bc:c0:74:0d:5f:22:75:40:56:df:
16:2f:63:36:68:5f:6d:96:cc:35:f6:9c:0f:20:43:f1:27:13:
54:c6:16:d7:69:fd:ab:1a:20:4f:6a:56:12:af:f9:c0:c7:3a:
c0:37:0e:b0:e1:99:02:c6:84:9d:d9:c1:39:14:1d:8a:41:ec:
b5:ae:6e:e2:70:31:02:18:c8:20:cc:38:06:64:d1:de:76:dc:
e1:49:f2:24:b3:d4:d2:d1:49:62:01:a5:c4:1f:8d:f4:09:1d:
d3:9d:7a:0f:39:5b:63:06:f3:8b:cc:19:0a:58:a7:c9:50:53:
90:11:d1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:18:53 2025 by rpki-client