Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
File: DIZmK3UsijvnLoVEOU_5JvaPv34.mft (raw, json)
Hash identifier: yAJs7AS85YcAhVYrRwYDHuQBM7VjftPb09twJk8XjtU=
Subject key identifier: 5E:1C:5F:F5:E5:DD:4C:53:B0:F1:D0:BB:09:89:03:95:50:D5:60:24
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 01976FD0FACBF6EA6C9DB86C65B19ADFC54C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
Manifest number: 1524
Signing time: Sat 14 Jun 2025 19:00:56 +0000
Manifest this update: Sat 14 Jun 2025 19:00:56 +0000
Manifest next update: Sun 15 Jun 2025 19:00:56 +0000
Files and hashes: 1: DIZmK3UsijvnLoVEOU_5JvaPv34.crl (hash: 98QDDAnnwsiF53wa7hBWM68gDHn4sS+f3JBn2NBL6+M=)
2: OKYG51ny4JzR_NLTt0NMC5jjs5w.roa (hash: q7wWYvvmDZVEwvT4mSRrL9j7EyJqRlFav3ZfehvFtAs=)
3: ZQQ0gAGZL_jGDDuR_dzAPHQgjqs.roa (hash: 1IkjnF/CrXtM+w2XOvbsVxbee7zsKOEnEqn8FcXAMF8=)
4: qLpskkGdWMp75uesslOqcJ0MWnE.roa (hash: X4MuNwdwba0DvT/WVM9tY1i1XGTLnQOuEconDao1Nw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:fa:cb:f6:ea:6c:9d:b8:6c:65:b1:9a:df:c5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Jun 14 19:00:56 2025 GMT
Not After : Jun 15 19:00:56 2025 GMT
Subject: CN=5e1c5ff5e5dd4c53b0f1d0bb0989039550d56024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d7:eb:e7:5c:a7:f3:76:ea:0c:73:9a:b7:84:
55:64:64:ae:80:e5:f5:5f:19:1d:e7:21:c9:28:d6:
10:ee:15:a3:16:46:f7:3b:7a:19:16:62:26:f5:be:
ae:36:39:9c:5e:53:0e:aa:c8:69:e8:a0:8c:b8:6f:
74:45:af:46:43:9f:5e:2f:a4:c5:3c:d0:b9:26:0f:
e6:ce:42:73:61:f6:e9:ad:af:54:28:3d:e2:08:4f:
8e:ea:e4:33:79:be:95:fb:5d:79:0c:56:95:d8:c7:
8a:2c:87:ed:a1:c1:27:6d:be:a2:74:9d:a2:cb:06:
2d:e1:3e:84:db:b6:25:f5:cd:2b:75:24:c1:6d:71:
f8:3d:d4:a1:39:8e:1c:dc:27:89:48:4a:bb:6b:62:
d6:54:c5:4a:76:fd:ea:0c:b3:80:6a:b3:76:6c:ae:
15:48:c4:d8:6b:db:4b:79:3a:0c:66:06:65:da:a9:
8c:9b:98:1a:e9:a3:00:17:e3:c2:af:99:66:99:b4:
9c:e8:e6:ca:8f:2f:a7:5b:8b:e9:c7:69:38:0a:a7:
d0:fb:49:8c:ab:78:c6:6e:44:b4:f2:18:27:9f:65:
64:d1:34:1e:7d:52:c1:bb:d9:4d:83:5c:71:a8:c0:
dc:0a:ba:fe:b5:53:3f:db:7e:bf:a2:11:63:fe:44:
c1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1C:5F:F5:E5:DD:4C:53:B0:F1:D0:BB:09:89:03:95:50:D5:60:24
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:19:14:ad:b7:70:0e:9d:aa:b5:ba:69:a5:fb:aa:19:33:1b:
ba:11:72:ee:56:af:cc:f8:e1:09:8e:f9:0f:87:1e:fd:e1:0b:
68:f1:97:c1:90:f9:a9:49:08:29:46:c3:25:de:21:c4:4d:16:
05:74:65:c1:cb:08:73:87:2b:c3:e5:9a:0e:82:4d:79:b5:eb:
01:9f:2d:8d:de:d5:19:62:a2:b7:2c:07:2b:9e:e8:b5:6f:fb:
2b:2b:e8:aa:1b:ff:57:94:58:30:4e:13:c8:59:51:c0:d5:bb:
77:bb:38:d1:79:ce:13:54:4b:e9:9a:e6:4f:d7:56:f3:e2:d9:
ca:53:ca:7f:5b:2f:9c:4a:d4:65:9d:f1:c1:89:12:68:a4:9b:
b3:0c:16:75:c5:0b:9b:e3:ff:b9:ad:7c:7a:69:84:47:48:bf:
6f:d5:57:ea:ea:57:ac:ff:60:ee:03:04:4f:55:17:1f:26:ce:
c3:a2:ce:c8:15:1a:da:39:07:7d:7e:e1:1b:af:8a:87:ad:5a:
3a:6b:f0:79:c7:c2:d8:6e:70:d1:2c:8b:6d:3d:3a:8c:80:ea:
07:39:5f:55:af:2d:e3:c5:d8:d0:cc:fa:c3:68:12:91:f4:52:
8d:4e:2a:b9:77:7b:a0:fb:0a:4e:c8:46:e7:63:29:fe:79:fc:
4c:d7:5b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:53:21 2025 by rpki-client