Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
File: pPAKrld-dFH4jqYEv2ozc0zQMAk.mft (raw, json)
Hash identifier: lae/WWFuHFI3ssvhxBwBJnIUN3mVr8in3xW7PPjnjF8=
Subject key identifier: 27:A5:E8:84:94:A2:D2:85:C9:9E:5C:2F:22:BC:6C:97:C6:8A:DE:04
Authority key identifier: A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
Certificate issuer: /CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Certificate serial: 019678D6B658369F7CF79F3FD831DE3FB9A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
Manifest number: 0D6F
Signing time: Sun 27 Apr 2025 20:00:59 +0000
Manifest this update: Sun 27 Apr 2025 20:00:59 +0000
Manifest next update: Mon 28 Apr 2025 20:00:59 +0000
Files and hashes: 1: XRYyvh6J7DkVdKbz1yypWyD6-m0.roa (hash: 6+dNcwPteiKzyDYvKh6xy6mmMEyhqVqNL5Sm9+oU6rA=)
2: pPAKrld-dFH4jqYEv2ozc0zQMAk.crl (hash: 5DbNY7LrBak88V0yeElGL9UUTrgsoGR3CRtmNHFaa9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:b6:58:36:9f:7c:f7:9f:3f:d8:31:de:3f:b9:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Validity
Not Before: Apr 27 20:00:59 2025 GMT
Not After : Apr 28 20:00:59 2025 GMT
Subject: CN=27a5e88494a2d285c99e5c2f22bc6c97c68ade04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f1:7f:6a:84:c8:36:0f:df:08:6a:d9:1a:a8:
86:13:30:b2:60:e1:64:e4:fb:d4:4f:db:1b:0f:b1:
32:cd:bb:bb:a7:8e:b2:07:38:82:25:37:95:13:90:
9a:cc:d3:36:66:3a:d4:63:0e:19:52:fc:cf:f3:96:
42:5d:d4:a5:4c:5a:9f:d5:53:63:b0:6c:b9:42:73:
02:d5:c8:85:95:91:24:85:26:42:3c:aa:be:00:55:
8c:0f:78:58:47:35:dc:4b:3f:9e:17:ff:d4:0d:7c:
0d:cd:55:be:d8:e6:b6:00:8c:81:bb:9d:ba:89:5e:
24:a8:c8:9d:5e:99:8f:81:dd:94:f2:d7:51:a6:f5:
b9:6f:81:65:cf:45:a8:8f:4d:c3:32:ca:e4:48:4f:
a2:fc:61:79:b0:13:78:7f:df:f7:5d:b5:dc:c3:c3:
fb:4a:10:01:21:4f:c1:8c:a8:22:db:f1:6d:8d:e8:
22:c8:ef:2a:fa:15:bc:01:2e:dc:1b:47:02:13:ad:
56:73:73:a5:0f:65:a8:6d:20:a3:24:9e:68:3e:ce:
d7:78:a3:b6:2c:1b:02:8b:22:19:f3:35:e2:f9:0b:
44:26:24:11:ae:3b:bb:8d:b1:d6:87:62:43:db:9e:
b4:9b:c6:cf:2a:c6:60:3d:03:63:a2:42:09:f5:f4:
2d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A5:E8:84:94:A2:D2:85:C9:9E:5C:2F:22:BC:6C:97:C6:8A:DE:04
X509v3 Authority Key Identifier:
keyid:A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:68:2e:fb:76:4e:ec:70:ab:c5:3d:dd:72:6f:bf:0b:20:48:
31:51:af:fe:90:7a:0e:78:25:76:d6:83:09:e2:1b:a7:44:ab:
e2:76:5e:55:dc:a1:58:b0:41:1f:57:0a:86:6d:e4:3c:e9:e0:
bb:f1:03:46:66:4e:7a:d4:7d:1e:37:ca:eb:1c:0b:d1:60:31:
09:7c:f3:27:46:e8:7b:ef:c4:a8:e7:ae:be:b8:05:49:7d:ec:
0e:8b:58:62:a4:25:23:9e:72:7e:d9:1c:df:04:67:d9:e0:bb:
5a:14:e5:a5:ec:85:1c:6d:40:5e:fc:f0:1b:8e:87:bd:39:29:
f7:4f:fc:22:2a:b0:1a:72:96:bf:39:f7:bb:f3:66:74:25:81:
e6:05:65:63:83:dc:b2:e5:5a:a9:4b:67:29:fc:d4:32:7d:04:
70:d9:da:41:03:ba:c4:9d:6a:d7:ae:9d:bf:80:73:4f:09:60:
82:0e:cd:f4:18:db:f5:84:47:bd:ee:a6:5d:8f:4e:04:75:0c:
75:56:c3:f1:22:a3:d1:bb:b4:06:ee:21:e3:40:33:31:55:58:
ac:22:18:c9:70:1d:0a:9f:e7:09:1b:a3:3e:0b:d4:5f:44:4c:
6c:2c:52:a3:fa:5f:59:99:cf:c5:bb:50:c5:c6:ff:b0:38:2f:
80:15:fb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:18:21 2025 by rpki-client