Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
File: pPAKrld-dFH4jqYEv2ozc0zQMAk.mft (raw, json)
Hash identifier: RZx6lpt+Bftn6Ncy8lLGwUworznsMt1G8dl43/Tnit8=
Subject key identifier: A0:F9:DB:D0:A1:6F:D8:DF:A6:AC:E0:DC:2C:A3:9B:C4:DD:E5:AC:6E
Authority key identifier: A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
Certificate issuer: /CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Certificate serial: 01987C77F484A5723CDA48816DC08BAAFB18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
Manifest number: 0E7A
Signing time: Tue 05 Aug 2025 23:01:32 +0000
Manifest this update: Tue 05 Aug 2025 23:01:32 +0000
Manifest next update: Wed 06 Aug 2025 23:01:32 +0000
Files and hashes: 1: XRYyvh6J7DkVdKbz1yypWyD6-m0.roa (hash: 6+dNcwPteiKzyDYvKh6xy6mmMEyhqVqNL5Sm9+oU6rA=)
2: pPAKrld-dFH4jqYEv2ozc0zQMAk.crl (hash: ht9mVniO638fOVVkklshLpo7i+YZCa6a7MbW79aoJDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:f4:84:a5:72:3c:da:48:81:6d:c0:8b:aa:fb:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Validity
Not Before: Aug 5 23:01:32 2025 GMT
Not After : Aug 6 23:01:32 2025 GMT
Subject: CN=a0f9dbd0a16fd8dfa6ace0dc2ca39bc4dde5ac6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c5:72:10:1e:18:1a:a4:db:1e:cf:00:d0:b9:
27:f8:cf:ef:26:6b:71:cb:7c:a8:0b:61:9d:c4:80:
e4:0c:fa:bb:da:a9:91:15:c2:e9:18:3d:33:86:82:
a3:51:40:31:3a:8d:53:d1:9d:5d:38:0c:95:ba:a3:
30:94:45:26:97:5e:f2:6f:3a:42:91:f1:44:08:08:
d1:4f:2b:04:72:a6:cb:23:a0:96:6e:e5:c0:1a:21:
2c:44:0d:0b:e1:8c:79:f9:24:e5:80:25:a9:7d:21:
7d:c4:83:9c:f2:2b:cc:1c:f0:c8:fd:7c:67:25:d4:
73:ba:db:05:68:77:d7:77:c6:a3:e1:7c:dc:3a:a8:
4c:55:38:93:69:f8:aa:a5:37:70:53:07:49:d3:6a:
4e:2d:5c:2d:0c:d4:49:38:a1:5b:80:2a:e7:7b:da:
cd:12:ba:b1:16:22:ca:54:bb:fd:20:ec:a0:44:85:
54:d0:4f:46:ac:e5:ca:59:73:68:45:d3:76:5b:bc:
c7:f4:76:56:50:ac:27:3b:95:70:6d:97:36:b2:76:
ca:72:54:ec:ad:9a:8c:5e:47:01:be:3b:c3:a7:ad:
a1:3b:fa:5c:fe:9f:60:e4:d6:2a:01:a3:de:0f:d5:
ac:b9:36:d1:cf:ed:1d:55:f5:f9:25:fb:0e:4c:0d:
3f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F9:DB:D0:A1:6F:D8:DF:A6:AC:E0:DC:2C:A3:9B:C4:DD:E5:AC:6E
X509v3 Authority Key Identifier:
keyid:A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:57:f7:71:56:2c:79:64:eb:b4:97:0f:0c:74:0c:53:be:e0:
08:d8:b9:9a:06:65:ca:86:05:2d:ad:59:39:ed:43:ba:9a:03:
bc:79:ec:8b:5b:ac:d4:a0:39:b5:a9:44:f4:42:69:0f:db:8e:
04:b3:cf:c3:b9:a7:73:d3:c2:2a:1c:82:03:98:d0:8d:4f:35:
bc:e1:d5:aa:e4:a6:2d:d9:5e:f7:b7:e9:17:26:1e:a2:8c:f9:
07:18:d3:d6:52:8d:e0:60:2c:1f:fe:93:0c:71:0f:3b:11:a3:
39:d9:57:64:a5:f1:5a:08:86:7a:87:29:05:0e:2c:9b:72:3d:
cf:11:9e:80:ce:b1:67:d3:b9:e4:31:8e:52:c7:f4:3e:04:f3:
87:e7:54:32:80:90:92:a9:9f:0b:ae:42:b4:d2:ac:44:ce:47:
f6:06:be:91:37:ee:40:2f:e5:97:f3:0e:80:af:0f:f8:e1:96:
a4:17:c6:c3:52:5b:9a:f1:b7:9f:64:16:82:17:5a:7e:fc:3a:
92:04:a0:2c:12:05:94:0f:79:d3:e8:93:ed:aa:72:9a:c9:75:
fc:61:02:00:49:0e:c6:55:92:1d:e2:d3:27:09:b8:47:b3:e2:
e0:a9:1c:eb:18:cc:b1:3f:40:19:a9:38:c4:21:94:99:db:aa:
d9:b2:5f:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8d/SEpXI82kiBbcCLqvsYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZjAwYWFlNTc3ZTc0NTFmODhlYTYwNGJmNmEzMzczNGNk
MDMwMDkwHhcNMjUwODA1MjMwMTMyWhcNMjUwODA2MjMwMTMyWjAzMTEwLwYDVQQD
EyhhMGY5ZGJkMGExNmZkOGRmYTZhY2UwZGMyY2EzOWJjNGRkZTVhYzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8VyEB4YGqTbHs8A0Lkn+M/vJmtx
y3yoC2GdxIDkDPq72qmRFcLpGD0zhoKjUUAxOo1T0Z1dOAyVuqMwlEUml17ybzpC
kfFECAjRTysEcqbLI6CWbuXAGiEsRA0L4Yx5+STlgCWpfSF9xIOc8ivMHPDI/Xxn
JdRzutsFaHfXd8aj4XzcOqhMVTiTafiqpTdwUwdJ02pOLVwtDNRJOKFbgCrne9rN
ErqxFiLKVLv9IOygRIVU0E9GrOXKWXNoRdN2W7zH9HZWUKwnO5VwbZc2snbKclTs
rZqMXkcBvjvDp62hO/pc/p9g5NYqAaPeD9WsuTbRz+0dVfX5JfsOTA0/awIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKD529Chb9jfpqzg3Cyjm8Td5axuMB8GA1UdIwQY
MBaAFKTwCq5XfnRR+I6mBL9qM3NM0DAJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFBBS3JsZC1kRkg0anFZRXYyb3pjMHpRTUFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi81OGE5NGEtOWUyOC00N2E1LTlmZDYt
OWM5MWIxYzUxNThhLzEvcFBBS3JsZC1kRkg0anFZRXYyb3pjMHpRTUFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi81OGE5NGEtOWUyOC00N2E1LTlmZDYtOWM5MWIxYzUxNThh
LzEvcFBBS3JsZC1kRkg0anFZRXYyb3pjMHpRTUFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm1f3cVYs
eWTrtJcPDHQMU77gCNi5mgZlyoYFLa1ZOe1DupoDvHnsi1us1KA5talE9EJpD9uO
BLPPw7mnc9PCKhyCA5jQjU81vOHVquSmLdle97fpFyYeooz5BxjT1lKN4GAsH/6T
DHEPOxGjOdlXZKXxWgiGeocpBQ4sm3I9zxGegM6xZ9O55DGOUsf0PgTzh+dUMoCQ
kqmfC65CtNKsRM5H9ga+kTfuQC/ll/MOgK8P+OGWpBfGw1JbmvG3n2QWghdafvw6
kgSgLBIFlA950+iT7apymsl1/GECAEkOxlWSHeLTJwm4R7Pi4Kkc6xjMsT9AGak4
xCGUmduq2bJfpQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 05:26:03 2025 by rpki-client