Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
File: pPAKrld-dFH4jqYEv2ozc0zQMAk.mft (raw, json)
Hash identifier: KFQ/9EYn3m+BSoh83Gk0aUeVNJmu8ytmpAyYWerf/rQ=
Subject key identifier: 14:E0:D9:3D:3C:F9:32:5C:7A:DF:76:2E:AA:7F:83:0E:E5:F7:25:0B
Authority key identifier: A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
Certificate issuer: /CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Certificate serial: 01974779538D751F530D4F0F40CD0AA81A67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
Manifest number: 0DDA
Signing time: Fri 06 Jun 2025 23:00:22 +0000
Manifest this update: Fri 06 Jun 2025 23:00:22 +0000
Manifest next update: Sat 07 Jun 2025 23:00:22 +0000
Files and hashes: 1: XRYyvh6J7DkVdKbz1yypWyD6-m0.roa (hash: 6+dNcwPteiKzyDYvKh6xy6mmMEyhqVqNL5Sm9+oU6rA=)
2: pPAKrld-dFH4jqYEv2ozc0zQMAk.crl (hash: cT0wLrfudLBZzPAawiPf+7YH3+zah8o68RFXd7GLMWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:53:8d:75:1f:53:0d:4f:0f:40:cd:0a:a8:1a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Validity
Not Before: Jun 6 23:00:22 2025 GMT
Not After : Jun 7 23:00:22 2025 GMT
Subject: CN=14e0d93d3cf9325c7adf762eaa7f830ee5f7250b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:eb:52:ee:4b:52:d8:9e:1e:d7:6c:f1:d1:cb:
93:47:50:32:97:88:a1:cb:21:26:71:2e:ec:cf:57:
a8:17:0a:72:c1:1a:c8:ab:d0:3d:d7:a0:3d:fe:af:
18:49:16:54:8b:fb:71:9c:e3:f6:95:de:25:89:e9:
30:99:0d:d5:71:2c:dd:fb:ac:fa:10:4c:ca:a5:5c:
81:1f:b9:eb:a8:22:40:4e:54:69:fe:e7:eb:cd:26:
9b:bb:16:a8:4a:2a:34:ba:df:99:bd:36:e3:65:76:
8e:7b:ad:ec:2a:4a:c0:3d:ce:e5:08:df:16:6c:a8:
c8:68:a9:71:e2:7f:0f:cd:f6:17:cc:42:d2:d0:2e:
6a:c3:52:a7:21:93:4a:55:10:43:b9:dc:13:ea:18:
72:1a:ff:56:1f:c0:92:57:c2:5e:bc:da:60:69:6d:
86:01:ea:ff:41:06:b7:c7:69:99:6f:92:9c:7b:b6:
6d:84:6b:42:05:74:52:26:22:5a:fd:4b:98:e6:49:
07:4b:84:c8:13:75:08:e6:ad:a9:f3:a5:d5:b0:8a:
26:f5:f3:48:03:29:e1:71:38:0c:08:a1:09:8b:68:
e5:c7:68:96:75:1f:c4:a2:92:70:9b:76:8b:5d:15:
d2:58:62:7c:78:8f:27:7c:cf:74:4e:0c:28:76:b3:
3c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E0:D9:3D:3C:F9:32:5C:7A:DF:76:2E:AA:7F:83:0E:E5:F7:25:0B
X509v3 Authority Key Identifier:
keyid:A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:bc:9f:18:b2:84:4d:1c:08:db:78:c1:6f:69:12:99:12:2f:
2c:89:3b:ef:0f:5a:98:bd:31:4d:80:15:07:44:87:8b:a8:20:
7f:fd:b9:dd:f9:c6:46:89:c3:ee:0e:3a:f1:0e:b5:40:f2:17:
c6:7f:25:47:f6:d0:7a:12:b7:25:39:05:34:ed:e3:4d:3b:50:
9a:eb:8f:67:b1:a5:a7:ab:ed:6d:8f:9d:4f:1a:10:81:ea:bc:
04:2a:3b:0c:42:86:cc:a8:6e:ca:33:e9:50:0e:08:ed:76:32:
f3:df:63:4f:d9:08:dd:11:75:fa:b1:e2:da:92:bc:0e:63:9f:
5f:f3:81:f7:06:16:0b:0b:70:8e:f6:a7:93:3b:74:7a:db:8d:
45:67:1c:bf:20:f0:40:db:8c:cf:8c:a2:93:a3:b2:0f:24:0d:
37:e3:09:ab:45:47:3b:00:0f:21:18:e2:b8:b2:21:58:4f:0b:
38:50:62:9e:61:25:4b:51:c8:9a:e4:5a:ca:26:f7:6a:c4:a6:
42:78:5a:62:0e:e3:91:e1:b8:ae:8f:7b:c7:80:fe:60:8d:45:
b5:82:f9:8b:7a:a4:ec:c7:0a:20:7c:94:1a:6a:2f:f1:72:09:
83:c5:e1:56:73:ac:fc:a7:e6:e8:bf:30:2d:f0:8b:67:bd:01:
6c:52:06:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:18:24 2025 by rpki-client