Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft
File: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft (raw, json)
Hash identifier: EqV9kEDlYi/IwhcO6AaIiyFLtO12gQ1DLH8kHptiNBo=
Subject key identifier: 40:45:C2:02:6F:22:CE:2E:61:3D:B7:E1:D4:28:04:75:83:CF:3C:5F
Authority key identifier: C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E
Certificate issuer: /CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E
Certificate serial: 6330F7A17B7F73AA2F3B6F23160AA8A1AFE8E1F9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft
Manifest number: 01FA
Signing time: Fri 24 Oct 2025 13:06:10 +0000
Manifest this update: Fri 24 Oct 2025 13:01:10 +0000
Manifest next update: Sat 25 Oct 2025 16:18:10 +0000
Files and hashes: 1: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl (hash: G+0zV2fQj7dFVzVxBdM5PgA3OKn5LmpjDWW4L9xrWoc=)
2: 3136302e33302e32352e302f32342d3234203d3e20313533313736.roa (hash: sWQMzSPI6Bg4G4IKisjp9DHougwIrJ9n/xHdiIfWjWY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:30:f7:a1:7b:7f:73:aa:2f:3b:6f:23:16:0a:a8:a1:af:e8:e1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91443440000, serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E
Validity
Not Before: Oct 24 13:01:10 2025 GMT
Not After : Oct 25 16:18:10 2025 GMT
Subject: CN=4045C2026F22CE2E613DB7E1D428047583CF3C5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f0:65:f5:4f:ee:44:e1:78:ae:3c:46:94:4e:
2e:cd:fa:5b:17:9e:dc:23:13:c0:98:c8:1b:a3:28:
d9:53:5b:73:f5:ad:33:3d:0e:6a:db:70:49:dd:87:
c3:f2:3f:59:42:a6:80:c2:75:4a:ac:3c:3a:c0:55:
cf:77:72:73:55:a6:8c:21:99:c9:da:2c:dd:c9:da:
95:04:24:78:2a:df:39:43:35:3e:e0:8d:95:1b:0f:
98:e4:12:9a:e8:8a:d1:5b:83:df:45:74:fc:05:d7:
82:11:55:47:d6:5c:32:80:5f:10:b6:80:d5:99:a3:
46:23:dc:86:c7:ee:fc:ac:b6:a3:79:99:2f:14:cb:
55:cf:f3:c8:15:c9:75:3f:0c:08:59:57:a8:60:5f:
f1:78:ee:f0:8a:47:86:e8:e2:82:f3:69:db:8f:b1:
d8:ad:58:03:b9:d3:e9:1a:2e:5c:6a:27:85:0f:a0:
0d:a6:d3:45:ef:3f:da:d9:a8:b9:24:54:a9:93:c4:
52:e3:84:bb:ca:aa:22:be:a1:58:1e:f2:94:fe:08:
b4:69:bd:4c:69:06:8a:6c:d9:e4:85:7b:bb:6d:cd:
30:ff:5a:90:cb:36:27:b9:cd:be:a3:e4:77:8d:9f:
c1:3e:b5:fc:ff:cf:be:d7:4c:89:44:62:6e:b8:e2:
e1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:45:C2:02:6F:22:CE:2E:61:3D:B7:E1:D4:28:04:75:83:CF:3C:5F
X509v3 Authority Key Identifier:
keyid:C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:c4:b1:2d:ca:51:ed:14:26:15:7a:18:46:83:f7:1d:e9:ce:
e7:c3:1d:a5:f9:a5:fd:ec:77:e7:79:f9:12:f5:0b:f7:d5:ac:
e0:a6:70:8a:f0:af:8a:44:8c:c5:53:bf:77:6f:b4:68:bb:01:
17:f3:6d:9b:9a:98:d2:40:74:8c:75:06:89:28:35:dc:b4:71:
5e:92:e3:54:86:76:71:79:b9:4f:0a:06:ee:9f:21:68:ab:7b:
65:f7:ad:4f:aa:35:91:55:df:87:4f:b6:3d:81:a0:dd:39:34:
ce:a9:d5:69:28:d4:67:67:2d:28:4a:8d:b6:3f:e6:02:fc:7a:
ee:86:f2:98:07:d6:82:e4:f7:dc:70:e7:1c:4a:f8:40:80:7e:
a4:29:d8:86:e3:13:f5:e2:ec:95:7a:95:d8:f3:e6:13:1c:94:
69:cb:36:f6:c6:17:c3:cd:0e:40:ed:ed:e9:35:c5:6e:54:25:
56:14:4c:fc:9a:74:12:72:f2:e0:72:9f:7f:1a:13:9b:dd:dc:
7d:4b:2a:7d:87:40:57:97:45:bd:e6:ca:3b:74:f3:67:e0:3a:
ec:cd:c6:cb:55:63:90:96:5a:0e:a6:ca:89:c1:d3:ad:e5:87:
66:65:97:b7:f6:d8:e4:97:8c:07:72:cd:30:c8:d7:ec:c6:86:
a4:b1:65:81
-----BEGIN CERTIFICATE-----
MIIFbjCCBFagAwIBAgIUYzD3oXt/c6ovO28jFgqooa/o4fkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyhDNEU2QzNEQUVC
NzRCRTQ1MjA3RUI4MERFREYxRkZENTRCQzAwMTlFMB4XDTI1MTAyNDEzMDExMFoX
DTI1MTAyNTE2MTgxMFowMzExMC8GA1UEAxMoNDA0NUMyMDI2RjIyQ0UyRTYxM0RC
N0UxRDQyODA0NzU4M0NGM0M1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJnwZfVP7kTheK48RpROLs36Wxee3CMTwJjIG6Mo2VNbc/WtMz0OattwSd2H
w/I/WUKmgMJ1Sqw8OsBVz3dyc1WmjCGZydos3cnalQQkeCrfOUM1PuCNlRsPmOQS
muiK0VuD30V0/AXXghFVR9ZcMoBfELaA1ZmjRiPchsfu/Ky2o3mZLxTLVc/zyBXJ
dT8MCFlXqGBf8Xju8IpHhujigvNp24+x2K1YA7nT6RouXGonhQ+gDabTRe8/2tmo
uSRUqZPEUuOEu8qqIr6hWB7ylP4ItGm9TGkGimzZ5IV7u23NMP9akMs2J7nNvqPk
d42fwT61/P/PvtdMiURibrji4ZUCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBRARcIC
byLOLmE9t+HUKAR1g888XzAfBgNVHSMEGDAWgBTE5sPa63S+RSB+uA3t8f/VS8AB
njAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01
ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMi9DNEU2QzNEQUVCNzRCRTQ1MjA3
RUI4MERFREYxRkZENTRCQzAwMTlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB
BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy
MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi94T2JEMnV0MHZrVWdmcmdON2ZIXzFV
dkFBWjQuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt
NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzIvQzRFNkMzREFFQjc0QkU0NTIw
N0VCODBERURGMUZGRDU0QkMwMDE5RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF
BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBALnEsS3KUe0UJhV6GEaD
9x3pzufDHaX5pf3sd+d5+RL1C/fVrOCmcIrwr4pEjMVTv3dvtGi7ARfzbZuamNJA
dIx1BokoNdy0cV6S41SGdnF5uU8KBu6fIWire2X3rU+qNZFV34dPtj2BoN05NM6p
1Wko1GdnLShKjbY/5gL8eu6G8pgH1oLk99xw5xxK+ECAfqQp2IbjE/Xi7JV6ldjz
5hMclGnLNvbGF8PNDkDt7ek1xW5UJVYUTPyadBJy8uByn38aE5vd3H1LKn2HQFeX
Rb3myjt082fgOuzNxstVY5CWWg6myonB063lh2Zll7f22OSXjAdyzTDI1+zGhqSx
ZYE=
-----END CERTIFICATE-----
Generated at Mon Oct 27 02:31:05 2025 by rpki-client