Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: N10H7dIcm3SLskqAiMg42xAY1s0qM4eIBUEROG1CwrE=
Subject key identifier: FC:8D:E2:E0:53:A3:FE:75:ED:02:80:43:9B:B0:EB:70:D0:9D:B6:74
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 18B6801BC110300420215714111EE08E348E81DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 0391
Signing time: Fri 18 Apr 2025 08:38:48 +0000
Manifest this update: Fri 18 Apr 2025 08:33:48 +0000
Manifest next update: Sat 19 Apr 2025 11:46:48 +0000
Files and hashes: 1: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: +bVqrEMFd6OlmJt6OXUAm36lf7U27Wity5s8ggfbbQs=)
2: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: Gu4NgRTNjJHb+uMAUMxGRw4pKpIS4+DscBYTjFgtksY=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 11:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:b6:80:1b:c1:10:30:04:20:21:57:14:11:1e:e0:8e:34:8e:81:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Apr 18 08:33:48 2025 GMT
Not After : Apr 19 11:46:48 2025 GMT
Subject: CN=FC8DE2E053A3FE75ED0280439BB0EB70D09DB674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:96:15:f5:f7:0a:06:d6:c9:9b:76:3b:34:
7f:fd:9f:b7:a3:db:94:a1:5b:f6:e5:db:4a:5a:b9:
5e:ce:f4:7e:b8:b9:8d:b7:d7:76:f8:28:ac:9c:11:
81:a5:05:31:c7:4a:f6:6b:a5:a5:65:27:a1:db:5c:
71:f1:8b:40:15:d1:67:43:81:40:a9:0e:6a:19:45:
a8:f5:ba:38:a9:f6:e2:3e:be:8d:c1:bd:93:9d:f4:
33:d1:1f:d1:8f:81:6a:8b:e8:45:65:6d:7d:fc:e8:
86:57:96:71:e7:35:ab:28:06:c4:51:d9:87:2c:c2:
b5:b6:24:e0:bb:90:42:27:d8:50:2b:d3:7c:a1:73:
1d:12:a3:85:a7:32:ec:a0:2c:52:33:12:05:84:1d:
65:38:21:70:90:18:10:de:93:5d:22:a1:8c:d5:99:
0e:b0:ae:8c:4e:64:28:14:8a:59:22:ca:5f:88:1a:
45:f4:93:b6:43:be:da:8e:bf:e9:a7:d0:ec:4f:b2:
67:0a:d5:c1:13:96:a2:cf:91:90:ca:00:6a:6b:29:
6b:d2:17:a9:56:b0:d2:91:e3:0b:95:aa:8a:5c:78:
36:e3:2b:b7:1a:e6:6e:2c:0c:eb:2f:43:15:fe:fd:
47:26:bb:94:3e:e2:af:f5:69:c8:d5:2a:b3:b0:a7:
71:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8D:E2:E0:53:A3:FE:75:ED:02:80:43:9B:B0:EB:70:D0:9D:B6:74
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:56:24:45:79:7e:32:9c:8b:11:f1:b7:c0:b0:12:d4:5f:d2:
94:2c:35:67:50:18:9d:d5:6d:63:b0:1d:80:7f:98:5f:d6:41:
e6:df:47:48:54:ea:8e:b4:9b:de:fe:e6:7e:6b:8f:30:67:0a:
47:94:ec:88:9b:fe:c0:bc:1a:e9:db:c2:78:37:b9:95:2e:60:
9c:8f:1b:15:27:53:4c:09:20:91:c0:b5:45:76:5f:dc:45:7d:
a6:2f:44:99:36:de:9c:2d:49:fa:14:5a:05:0a:70:91:fb:1b:
4c:de:96:c1:52:ef:65:1d:2b:5a:b3:e7:6b:4f:4f:a2:f8:20:
ad:06:67:93:ec:e9:22:8b:4e:5b:28:b5:d4:bd:97:48:a7:5a:
22:39:92:a0:0a:40:45:0e:e0:a1:d0:37:81:3b:c2:7a:21:50:
b5:70:ec:f3:cc:e1:8f:ce:57:af:b3:34:1f:61:bb:94:63:e6:
f6:82:55:0f:9e:cd:1f:a5:b8:4b:76:cf:1f:ed:92:d7:6a:19:
5d:1a:2d:bb:a8:e5:99:44:36:ef:79:fd:80:c0:4e:7c:de:ac:
45:ac:62:d8:b7:c2:ba:ba:64:49:19:a4:45:81:95:22:3b:5b:
aa:23:02:d9:b5:b0:31:53:5c:5f:6b:c2:de:de:d5:66:cc:82:
c3:a0:31:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:19:37 2025 by rpki-client