Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
File: pPAKrld-dFH4jqYEv2ozc0zQMAk.mft (raw, json)
Hash identifier: NW+I2US1XWrWiSF4Go1fkzFDTU0GqGjtbFvCmQlObH0=
Subject key identifier: 12:D5:27:D9:95:08:96:43:68:A3:DD:B6:6B:5E:63:02:21:87:9A:71
Authority key identifier: A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
Certificate issuer: /CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Certificate serial: 019650485302AE9FC4FD590995CCAB7C4E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
Manifest number: 0D5A
Signing time: Sat 19 Apr 2025 23:00:39 +0000
Manifest this update: Sat 19 Apr 2025 23:00:39 +0000
Manifest next update: Sun 20 Apr 2025 23:00:39 +0000
Files and hashes: 1: XRYyvh6J7DkVdKbz1yypWyD6-m0.roa (hash: 6+dNcwPteiKzyDYvKh6xy6mmMEyhqVqNL5Sm9+oU6rA=)
2: pPAKrld-dFH4jqYEv2ozc0zQMAk.crl (hash: k15Tzk9UkqDGqgLnE2J3MvDqAT5q7he1Sep5TTAcvkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:53:02:ae:9f:c4:fd:59:09:95:cc:ab:7c:4e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Validity
Not Before: Apr 19 23:00:39 2025 GMT
Not After : Apr 20 23:00:39 2025 GMT
Subject: CN=12d527d99508964368a3ddb66b5e630221879a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f9:4e:77:ef:2d:2b:8f:70:e0:42:da:51:91:
93:6b:98:6d:4b:c0:dd:d7:28:aa:4e:ce:ee:61:6d:
18:b0:b6:fe:00:0d:70:a6:9e:5a:51:1a:28:ad:d4:
06:c2:14:bc:92:83:d7:88:5a:4b:e6:96:be:5b:4b:
9e:85:53:37:d7:37:71:94:9b:2d:db:0b:82:13:43:
d1:1a:e3:f2:d1:76:f1:13:15:0c:05:51:f6:4c:1e:
ef:40:0a:fb:a4:ea:12:be:e0:77:16:c7:e3:a3:08:
6c:78:b4:7f:17:96:fd:fe:c5:96:35:c7:17:70:20:
a7:07:d5:8a:ad:49:e3:4f:19:e6:ac:f5:e1:24:e5:
31:87:0b:09:b5:7b:65:df:bd:24:3d:16:37:ba:07:
76:6d:d8:6d:59:a1:ac:d4:d0:58:33:8f:a0:09:8d:
3b:b7:a3:95:2c:2b:70:b0:dc:38:1a:f6:6b:e4:17:
fe:fb:6d:5c:bb:a9:05:87:0f:38:b3:ab:32:8a:c4:
d3:b4:e2:6a:15:38:2a:06:f5:b0:3b:ce:af:a4:4b:
b5:3d:0c:44:54:d7:35:02:69:1d:32:b3:dd:8f:57:
6e:13:cd:0a:72:43:1d:d7:63:c2:08:69:02:cb:77:
21:2d:00:34:3e:14:42:62:aa:af:b4:89:79:f4:ab:
99:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D5:27:D9:95:08:96:43:68:A3:DD:B6:6B:5E:63:02:21:87:9A:71
X509v3 Authority Key Identifier:
keyid:A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:64:b6:2d:55:b5:d2:8a:b3:1b:e2:24:de:54:8d:4f:a1:2b:
82:bb:77:27:f6:76:b9:3f:32:22:4b:26:27:e0:55:99:25:c4:
ad:b9:69:24:e2:66:52:27:56:3f:98:d3:9a:77:7c:b5:67:77:
2d:ef:a8:b1:eb:0d:d6:b5:e0:36:6e:fb:26:58:c4:ec:40:84:
a0:38:5b:4f:63:f0:eb:60:97:de:97:00:5a:34:58:36:a9:3b:
6b:77:c1:56:77:a3:88:93:33:d0:7d:8a:fc:64:e2:83:fc:ec:
d3:93:b8:dc:d7:49:43:75:40:d7:01:f1:3e:bb:29:89:0e:0e:
26:d5:0d:83:b0:ec:5a:ed:30:d7:7f:69:d6:2e:78:a0:b7:4b:
1a:2a:8d:e9:cd:12:20:57:20:0c:f4:96:62:68:23:d1:f1:59:
a3:91:0d:bd:78:f0:38:54:80:2e:d7:f9:68:13:ea:88:ea:b6:
9f:7a:71:21:c6:98:b0:c3:ea:d4:3a:57:f4:e4:19:45:e7:50:
5c:df:f4:f6:51:2a:2c:26:e0:bb:7f:9e:41:00:9d:10:34:77:
89:b3:83:6f:31:bb:3a:2e:b6:e9:ea:1d:76:45:58:86:9a:b3:
3d:b4:3c:fc:f0:10:82:40:ab:55:d7:dd:54:b8:14:d7:d9:f2:
9f:c8:90:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:33:47 2025 by rpki-client