Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: ozJfWKi8jNDStWsRk/atWD29yVkVlX82pUUqh6RgGBU=
Subject key identifier: B1:09:53:D5:5D:10:4E:94:96:63:AC:7C:B6:5D:CD:62:44:B3:BB:F4
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 2D1A59A324A9826744724126877012B911319866
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 03D2
Signing time: Fri 06 Jun 2025 07:42:29 +0000
Manifest this update: Fri 06 Jun 2025 07:37:29 +0000
Manifest next update: Sat 07 Jun 2025 09:58:29 +0000
Files and hashes: 1: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: v67FQYa5FWu+cK6bDW29C98An7hi641n2EHyuRSFtCY=)
2: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: +bVqrEMFd6OlmJt6OXUAm36lf7U27Wity5s8ggfbbQs=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 09:58:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:1a:59:a3:24:a9:82:67:44:72:41:26:87:70:12:b9:11:31:98:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Jun 6 07:37:29 2025 GMT
Not After : Jun 7 09:58:29 2025 GMT
Subject: CN=B10953D55D104E949663AC7CB65DCD6244B3BBF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:76:b6:a7:35:49:49:78:01:34:9a:fa:3f:
0f:ee:f5:cc:e3:17:4b:45:6e:fc:2c:81:df:14:4a:
64:d9:5f:46:11:5e:12:52:b5:d3:fa:d8:73:13:2c:
44:98:b8:6f:14:1f:2c:d0:c4:e7:14:e2:75:3e:84:
fa:e6:5f:50:41:4d:d4:0e:ca:49:ca:8d:00:ed:29:
ae:b4:b5:fc:ae:05:4c:db:3d:a2:37:9d:b0:6f:52:
0a:a5:3e:87:ec:af:9d:25:18:1e:1e:68:9d:35:4f:
f9:d9:cf:2d:de:3e:ae:a2:b4:de:1a:62:98:63:c1:
31:69:af:32:b6:c0:ce:90:c8:f9:ea:78:0f:24:cc:
9a:4e:36:b8:bf:2d:cc:ba:73:1f:39:5c:29:71:65:
16:b3:a1:cb:6b:93:43:08:7a:41:6c:8a:00:f6:08:
6e:fb:5b:18:c2:c7:1c:a2:de:52:27:6b:08:28:3f:
06:5b:51:05:e7:f9:89:e4:aa:c3:c1:6f:63:e6:38:
72:c8:4a:a8:23:c7:6f:18:1a:63:df:2e:c0:de:b3:
75:c2:9a:b6:76:6c:34:d9:99:97:66:1c:0c:35:5c:
1b:06:ec:86:0e:bd:d3:73:cb:e3:d0:e6:76:a6:46:
0e:9a:69:a7:d8:20:d3:ee:45:53:61:4e:bd:f8:80:
aa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:09:53:D5:5D:10:4E:94:96:63:AC:7C:B6:5D:CD:62:44:B3:BB:F4
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:55:d1:49:d1:8c:a3:b6:98:03:0f:6f:50:fd:89:61:1c:87:
4e:11:bf:ce:bc:e5:2e:41:87:a2:db:f9:24:1f:bd:35:c5:f9:
dd:5a:7d:62:18:a8:99:cf:d5:47:6d:79:2f:e2:df:58:8b:a2:
a4:28:c4:dd:4f:0f:ee:f8:57:99:c7:d3:79:9d:c0:c0:c1:c7:
0a:27:ed:74:21:69:2b:ea:71:81:d7:7c:af:6f:85:2d:ed:a3:
77:e2:00:70:cb:cb:95:d2:cf:6e:59:c5:2d:0a:2b:d6:a5:4f:
90:a6:7f:2c:a0:13:c9:b2:02:75:b2:ca:5f:4d:0b:8b:c6:40:
aa:eb:6e:18:fc:f8:19:d7:7a:58:53:bb:d1:60:bd:56:ce:a8:
bb:70:a2:72:83:46:3d:93:a6:d0:0d:c5:29:8c:88:77:f5:62:
02:bc:2c:9d:c8:86:3b:93:28:68:78:f1:3f:cf:9a:5e:8d:a1:
ca:db:71:c2:13:2e:1a:df:4b:60:aa:9c:b0:8b:1d:4f:9c:6b:
ac:37:8c:10:87:0c:02:47:e7:f7:f3:48:ae:ec:7d:14:c1:21:
8e:0a:32:ec:82:d0:d1:29:b4:0d:d7:3b:4e:9f:df:1a:83:01:
5a:9e:f9:44:91:b3:87:33:f9:11:ea:65:39:dc:58:95:42:2d:
3b:76:0c:23
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIULRpZoySpgmdEckEmh3ASuRExmGYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFmZjEzZDVhNzFjZmIwZGEzOGQ4ZDNkODFlMTNlYWY0
MDQxNmE3NDAeFw0yNTA2MDYwNzM3MjlaFw0yNTA2MDcwOTU4MjlaMDMxMTAvBgNV
BAMTKEIxMDk1M0Q1NUQxMDRFOTQ5NjYzQUM3Q0I2NURDRDYyNDRCM0JCRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB1Xa2pzVJSXgBNJr6Pw/u9czj
F0tFbvwsgd8USmTZX0YRXhJStdP62HMTLESYuG8UHyzQxOcU4nU+hPrmX1BBTdQO
yknKjQDtKa60tfyuBUzbPaI3nbBvUgqlPofsr50lGB4eaJ01T/nZzy3ePq6itN4a
YphjwTFprzK2wM6QyPnqeA8kzJpONri/Lcy6cx85XClxZRazoctrk0MIekFsigD2
CG77WxjCxxyi3lInawgoPwZbUQXn+YnkqsPBb2PmOHLISqgjx28YGmPfLsDes3XC
mrZ2bDTZmZdmHAw1XBsG7IYOvdNzy+PQ5namRg6aaafYINPuRVNhTr34gKptAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUsQlT1V0QTpSWY6x8tl3NYkSzu/QwHwYDVR0j
BBgwFoAUWv8T1acc+w2jjY09geE+r0BBanQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNjA3M2M5NWEtYWFjNy00M2VjLTgxOGItMWY0MmY2MjI3
NWY1LzAvNUFGRjEzRDVBNzFDRkIwREEzOEQ4RDNEODFFMTNFQUY0MDQxNkE3NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d2OFQxYWNjLXcyampZMDlnZUUtcjBC
QmFuUS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82MDczYzk1YS1h
YWM3LTQzZWMtODE4Yi0xZjQyZjYyMjc1ZjUvMC81QUZGMTNENUE3MUNGQjBEQTM4
RDhEM0Q4MUUxM0VBRjQwNDE2QTc0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXFXRSdGMo7aYAw9vUP2J
YRyHThG/zrzlLkGHotv5JB+9NcX53Vp9Yhiomc/VR215L+LfWIuipCjE3U8P7vhX
mcfTeZ3AwMHHCiftdCFpK+pxgdd8r2+FLe2jd+IAcMvLldLPblnFLQor1qVPkKZ/
LKATybICdbLKX00Li8ZAqutuGPz4Gdd6WFO70WC9Vs6ou3CicoNGPZOm0A3FKYyI
d/ViArwsnciGO5MoaHjxP8+aXo2hyttxwhMuGt9LYKqcsIsdT5xrrDeMEIcMAkfn
9/NIrux9FMEhjgoy7ILQ0Sm0Ddc7Tp/fGoMBWp75RJGzhzP5EeplOdxYlUItO3YM
Iw==
-----END CERTIFICATE-----
Generated at Fri Jun 6 23:21:03 2025 by rpki-client