Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
File: DIZmK3UsijvnLoVEOU_5JvaPv34.mft (raw, json)
Hash identifier: ICFJEIpmQ7A5ZmKa+jaaIpeRH0XFEgrVCwDAQ3ktLjQ=
Subject key identifier: 43:30:0C:03:65:97:50:7C:58:9C:E5:68:B7:0B:DB:0B:3B:EF:27:23
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 019672D491229FB4005B2D7F8A0CFED43CC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
Manifest number: 14A1
Signing time: Sat 26 Apr 2025 16:00:55 +0000
Manifest this update: Sat 26 Apr 2025 16:00:55 +0000
Manifest next update: Sun 27 Apr 2025 16:00:55 +0000
Files and hashes: 1: DIZmK3UsijvnLoVEOU_5JvaPv34.crl (hash: 60VaxfgIhK42RW4ssg+NN0cXB+dm7+GGAvWfrGeUR1c=)
2: OKYG51ny4JzR_NLTt0NMC5jjs5w.roa (hash: q7wWYvvmDZVEwvT4mSRrL9j7EyJqRlFav3ZfehvFtAs=)
3: ZQQ0gAGZL_jGDDuR_dzAPHQgjqs.roa (hash: 1IkjnF/CrXtM+w2XOvbsVxbee7zsKOEnEqn8FcXAMF8=)
4: qLpskkGdWMp75uesslOqcJ0MWnE.roa (hash: X4MuNwdwba0DvT/WVM9tY1i1XGTLnQOuEconDao1Nw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 16:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:d4:91:22:9f:b4:00:5b:2d:7f:8a:0c:fe:d4:3c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Apr 26 16:00:55 2025 GMT
Not After : Apr 27 16:00:55 2025 GMT
Subject: CN=43300c036597507c589ce568b70bdb0b3bef2723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:c6:44:f9:f6:ec:7a:ee:0e:a1:7c:d2:d8:
c3:31:fa:8c:78:44:5c:1f:cb:b0:58:f9:79:78:04:
a3:9e:42:89:a8:ec:42:a8:5e:3c:ef:fd:0d:ce:93:
44:2f:0a:cf:77:82:2e:c1:df:0d:f7:22:01:40:c3:
4b:6c:9f:ab:e0:d9:12:00:51:19:a2:9d:7f:ca:df:
9d:28:4f:ff:9a:1d:d3:5b:21:4e:ea:9b:ce:42:cc:
02:e8:d8:6f:8e:47:e8:2d:e7:96:ee:33:24:8d:f2:
9e:fb:34:e1:e5:c3:f8:c8:a3:3a:df:a4:4f:95:b6:
a0:26:60:02:e2:07:47:da:be:03:5f:25:d9:a0:b7:
35:4e:26:96:20:9e:e7:67:e6:7e:51:87:4a:ad:c5:
02:d7:95:d4:75:be:77:3d:ef:d2:4a:f2:b9:d7:20:
78:d8:68:c6:ba:68:ad:47:d1:60:99:3e:09:42:d8:
3d:4f:7e:fc:68:b3:55:83:82:8d:72:6f:92:b1:8c:
dd:fb:76:3f:db:2b:d4:97:cb:75:fa:20:b9:87:af:
46:1e:1f:b5:af:29:f1:7e:db:bb:f2:e8:50:97:96:
2d:e6:44:54:e8:22:0a:41:f9:2d:44:f4:0d:6e:88:
59:01:d5:0a:c7:9f:b7:03:77:3a:8c:05:cc:53:42:
4f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:30:0C:03:65:97:50:7C:58:9C:E5:68:B7:0B:DB:0B:3B:EF:27:23
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:12:9b:e6:c3:d9:09:25:23:78:1f:40:4b:c2:67:77:bf:3f:
d5:1e:22:19:bb:3f:0b:34:94:80:a1:25:24:6d:e6:24:c2:b9:
55:f6:7e:e9:55:6d:74:b1:f2:00:b3:70:34:b2:24:9f:df:76:
30:7f:d3:e8:91:00:ba:f7:1c:56:f0:92:6c:fe:8d:38:76:f1:
fc:e7:f1:b9:73:d7:13:a8:c3:78:35:99:fb:8b:3c:2e:05:83:
b3:6c:e4:9f:af:f2:aa:4a:20:a3:c5:81:52:2a:9d:c1:51:5f:
2b:00:7f:ae:df:02:5c:3a:c1:90:74:e5:e1:9e:1f:a4:ef:a2:
a3:d7:47:85:05:01:5a:32:a5:a6:a2:b7:4f:1a:63:3c:47:79:
6d:b7:37:83:d2:12:99:db:38:b6:ef:5b:d9:ca:3a:99:80:52:
ff:d6:78:4f:9d:b4:1c:ac:06:37:d6:9e:a9:e7:4f:ae:0d:17:
9b:52:8a:7f:59:bc:f7:c1:ad:cb:bb:67:8e:dd:c6:55:23:5d:
99:95:cc:a0:57:91:41:fd:ce:cd:26:73:e5:9f:f5:e6:bd:8e:
e7:08:87:d8:15:23:1e:dd:e5:a0:4b:34:2c:0b:0e:2d:73:02:
8f:ef:50:09:6d:a1:e4:9e:3f:7c:38:40:fc:ed:ec:76:75:98:
bc:7e:f2:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZy1JEin7QAWy1/igz+1DzEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjODY2NjJiNzUyYzhhM2JlNzJlODU0NDM5NGZmOTI2ZjY4
ZmJmN2UwHhcNMjUwNDI2MTYwMDU1WhcNMjUwNDI3MTYwMDU1WjAzMTEwLwYDVQQD
Eyg0MzMwMGMwMzY1OTc1MDdjNTg5Y2U1NjhiNzBiZGIwYjNiZWYyNzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWPGRPn27HruDqF80tjDMfqMeERc
H8uwWPl5eASjnkKJqOxCqF487/0NzpNELwrPd4Iuwd8N9yIBQMNLbJ+r4NkSAFEZ
op1/yt+dKE//mh3TWyFO6pvOQswC6NhvjkfoLeeW7jMkjfKe+zTh5cP4yKM636RP
lbagJmAC4gdH2r4DXyXZoLc1TiaWIJ7nZ+Z+UYdKrcUC15XUdb53Pe/SSvK51yB4
2GjGumitR9FgmT4JQtg9T378aLNVg4KNcm+SsYzd+3Y/2yvUl8t1+iC5h69GHh+1
rynxftu78uhQl5Yt5kRU6CIKQfktRPQNbohZAdUKx5+3A3c6jAXMU0JPqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMwDANll1B8WJzlaLcL2ws77ycjMB8GA1UdIwQY
MBaAFAyGZit1LIo75y6FRDlP+Sb2j79+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8wOWM0YjItNDZhOS00Zjg4LTk5Yjgt
MWNjYzljMjk1ZThlLzEvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8wOWM0YjItNDZhOS00Zjg4LTk5YjgtMWNjYzljMjk1ZThl
LzEvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgxKb5sPZ
CSUjeB9AS8Jnd78/1R4iGbs/CzSUgKElJG3mJMK5VfZ+6VVtdLHyALNwNLIkn992
MH/T6JEAuvccVvCSbP6NOHbx/OfxuXPXE6jDeDWZ+4s8LgWDs2zkn6/yqkogo8WB
UiqdwVFfKwB/rt8CXDrBkHTl4Z4fpO+io9dHhQUBWjKlpqK3TxpjPEd5bbc3g9IS
mds4tu9b2co6mYBS/9Z4T520HKwGN9aeqedPrg0Xm1KKf1m898Gty7tnjt3GVSNd
mZXMoFeRQf3OzSZz5Z/15r2O5wiH2BUjHt3loEs0LAsOLXMCj+9QCW2h5J4/fDhA
/O3sdnWYvH7y3g==
-----END CERTIFICATE-----
Generated at Sun Apr 27 00:26:26 2025 by rpki-client