Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
File: l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft (raw, json)
Hash identifier: xUba0xmv2T0C6+ojdAs8yU1OCJ7bqhgMVWup5uQkmAM=
Subject key identifier: A9:25:6C:37:CE:7A:53:6B:9C:64:94:D5:55:F0:2A:BC:66:84:DC:3C
Authority key identifier: 97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
Certificate issuer: /CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Certificate serial: 019683FFAAB6BBFEC275CA55EA56D9ED4B4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
Manifest number: 1511
Signing time: Wed 30 Apr 2025 00:01:32 +0000
Manifest this update: Wed 30 Apr 2025 00:01:32 +0000
Manifest next update: Thu 01 May 2025 00:01:32 +0000
Files and hashes: 1: l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl (hash: ptGSDG4VBf7LDlbU0amTwOkuTDcChbspLKPOHBPwU84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:aa:b6:bb:fe:c2:75:ca:55:ea:56:d9:ed:4b:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Validity
Not Before: Apr 30 00:01:32 2025 GMT
Not After : May 1 00:01:32 2025 GMT
Subject: CN=a9256c37ce7a536b9c6494d555f02abc6684dc3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:50:93:8a:c7:04:7b:9f:a8:04:c1:5d:66:f1:
56:27:b4:5b:76:22:34:c5:3c:06:65:a8:76:f6:b7:
4d:40:d4:5f:b9:1c:39:15:3f:d5:1b:d2:69:6c:ea:
ec:7e:c6:c5:a1:75:6e:f9:83:83:8e:58:6b:de:b2:
28:46:b0:fe:73:c0:22:f8:9a:ed:17:cf:9e:92:92:
fb:da:97:01:92:6e:ca:c6:41:58:82:a5:67:68:06:
bb:d2:72:fc:2c:78:fc:75:ba:d8:6d:40:63:02:a0:
9e:ba:82:d2:0e:d1:19:f7:de:a7:4e:56:af:9c:84:
04:be:11:8a:36:9e:8f:a7:9c:8c:b1:be:4f:f8:56:
2b:56:a6:f3:bd:76:ce:84:9a:30:54:59:ed:31:aa:
1d:cc:80:86:7a:8c:b6:db:32:a1:30:8e:d4:89:f5:
a8:83:a5:9e:13:65:67:f1:0a:ab:e7:48:44:da:2f:
29:c0:e2:0b:89:89:33:a2:61:84:ec:31:5d:12:dd:
2b:1f:14:99:fd:75:f0:6b:2c:f2:a1:3e:e0:c8:72:
3e:cd:95:f8:5b:1b:37:fb:bd:ae:e7:4a:43:97:93:
60:cc:22:12:67:a3:de:5c:d5:3f:1f:8f:6b:6b:c2:
2c:b1:63:6e:5f:ed:8a:88:bb:39:bb:16:76:f3:bf:
fc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:25:6C:37:CE:7A:53:6B:9C:64:94:D5:55:F0:2A:BC:66:84:DC:3C
X509v3 Authority Key Identifier:
keyid:97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:72:20:71:1a:cf:44:7e:b8:92:9d:3e:de:64:6f:7a:dc:cf:
df:57:60:be:c9:bb:c7:ae:83:bb:65:30:05:68:65:d6:86:2c:
98:72:1c:67:3c:c3:66:8f:88:d7:9d:57:58:2a:65:9d:7e:17:
42:94:bc:9f:87:f0:cd:fd:c4:1b:ec:02:b6:96:9c:aa:52:58:
84:7a:b6:4e:96:40:30:84:6d:72:1f:04:c2:a1:93:52:67:58:
b9:71:c1:d1:04:10:12:50:12:53:ed:6c:49:c3:74:b8:e1:f1:
16:97:41:1f:ed:d0:fc:91:db:e1:ff:7d:28:af:32:1c:c0:0c:
2c:b8:72:e6:c8:3a:b9:4c:bf:43:cf:c6:b8:14:50:ee:01:4f:
3b:69:95:6e:9f:96:77:e6:1f:f0:0a:ff:39:95:c1:c7:3b:9a:
91:e5:d2:4e:d9:0f:c8:1d:4c:9b:69:d7:3f:f8:ad:b1:b2:92:
e8:82:80:a3:80:00:6d:69:38:80:16:35:c8:b6:22:65:74:2c:
83:f2:37:4a:4d:6b:d7:4b:b6:a6:90:c1:6f:80:b5:b3:2d:3b:
66:ac:62:22:e9:55:5e:3f:94:58:a3:39:66:98:bc:84:2f:d8:
d8:6f:64:27:a4:eb:72:bf:04:3c:a4:92:52:e4:07:a6:67:13:
b1:13:28:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:36:24 2025 by rpki-client