Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
File: 1lcpIU0Paz-lGho4A32rjeSOBVg.mft (raw, json)
Hash identifier: mj7H+4pMsuxQ4a5eHEl3bfrJJtu2Vx9qo7js71dHiCI=
Subject key identifier: 5D:5C:27:27:DA:69:F6:A0:D5:B5:D0:BA:39:EE:21:3C:17:E4:96:D1
Authority key identifier: D6:57:29:21:4D:0F:6B:3F:A5:1A:1A:38:03:7D:AB:8D:E4:8E:05:58
Certificate issuer: /CN=d65729214d0f6b3fa51a1a38037dab8de48e0558
Certificate serial: 0194BA849D61FF05CCCF931A116E5569BD42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
Manifest number: 048A
Signing time: Fri 31 Jan 2025 04:00:40 +0000
Manifest this update: Fri 31 Jan 2025 04:00:40 +0000
Manifest next update: Sat 01 Feb 2025 04:00:40 +0000
Files and hashes: 1: 1lcpIU0Paz-lGho4A32rjeSOBVg.crl (hash: tZ/dIwO1zt0Ar5nQvIu2rCBGhEZQX0jkvM++iRulo30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:9d:61:ff:05:cc:cf:93:1a:11:6e:55:69:bd:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65729214d0f6b3fa51a1a38037dab8de48e0558
Validity
Not Before: Jan 31 04:00:40 2025 GMT
Not After : Feb 1 04:00:40 2025 GMT
Subject: CN=5d5c2727da69f6a0d5b5d0ba39ee213c17e496d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:87:44:c2:ea:9d:a1:c0:58:bc:fb:54:90:ac:
a6:5f:4a:f8:09:15:a9:07:06:87:06:29:27:05:18:
eb:96:d1:c5:21:a7:60:2d:94:63:8f:f0:17:29:a1:
75:c9:08:df:2f:85:35:35:64:3f:5b:86:b4:4f:3c:
3c:ed:77:49:1b:5a:06:c7:93:03:69:f7:f2:99:6c:
20:c6:24:7e:cf:e0:2f:62:18:fd:74:22:8a:75:2e:
da:06:12:23:cf:7b:a9:ae:a8:68:5d:b9:eb:93:67:
f1:43:ba:2a:4e:d2:31:7b:b4:98:0e:1d:36:18:d8:
35:79:94:58:5d:5e:54:f7:1c:e1:2e:fd:3f:e0:d6:
f1:98:4e:a7:1f:1c:10:07:ee:ee:15:bc:d9:1f:83:
34:1c:be:9c:6d:a7:9c:b3:8c:8e:36:16:43:6e:d1:
d6:ee:c0:f6:ad:36:bb:04:e0:14:90:9a:00:37:29:
2d:ae:5b:f1:36:8b:3b:6b:ba:66:6c:83:1e:3d:4b:
d7:c3:32:e7:70:b9:97:5a:6d:44:30:8f:0a:4f:0b:
19:a9:b6:3e:64:6b:ff:b3:e8:81:0d:af:b2:fe:34:
76:02:80:7a:19:e5:8a:ab:e5:fa:01:4c:2c:57:b2:
74:bf:81:53:56:4c:4a:c3:14:ed:2b:f7:74:35:ed:
f8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:5C:27:27:DA:69:F6:A0:D5:B5:D0:BA:39:EE:21:3C:17:E4:96:D1
X509v3 Authority Key Identifier:
keyid:D6:57:29:21:4D:0F:6B:3F:A5:1A:1A:38:03:7D:AB:8D:E4:8E:05:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1e:6d:ae:c1:95:41:22:90:e4:7b:80:1e:db:9d:06:f0:00:
9d:a2:40:aa:eb:6e:51:43:c7:69:a1:58:63:7a:34:c2:54:6d:
e7:ff:0e:34:2e:bb:5d:dd:77:23:43:e0:37:94:58:d1:4c:82:
51:50:f1:6e:36:d1:4a:73:7f:1a:8f:a9:30:fe:24:df:09:fc:
5c:9c:e4:af:b5:ab:15:ea:cb:4e:cf:d2:3b:05:a8:d8:c9:4a:
8b:67:12:5e:c0:3e:5d:26:b4:a3:8d:9d:96:6e:ca:62:83:61:
a4:3b:81:e9:10:2a:74:47:35:e8:35:13:7d:0c:ce:5c:be:16:
87:3c:d8:73:30:b4:8e:06:1c:d6:8b:df:f7:55:9f:79:36:ef:
e5:7c:53:ce:21:0d:a7:bd:06:c3:c1:62:77:54:05:a2:aa:df:
5c:08:59:42:e8:03:6f:ea:ce:a9:53:62:13:11:ac:86:d2:f2:
fb:59:9f:b8:91:78:8d:da:f6:17:21:d4:db:9e:f8:8a:82:8e:
a0:34:78:b6:3e:12:71:44:28:37:d2:06:10:41:a4:e3:9e:f5:
1f:d5:17:2b:ed:47:ee:56:b8:10:35:6c:5d:25:73:a1:ec:57:
0e:9a:07:49:17:d9:c3:4b:0d:be:b8:0d:f9:d7:59:5d:94:6e:
c7:b0:50:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:39 2025 by rpki-client on console-fra.rpki-client.org