Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
File: dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft (raw, json)
Hash identifier: 3mDYoO9GtjzHMsgA0RmaGcIp8aOteyY36OsSH/t7niY=
Subject key identifier: 6F:D9:3C:5F:25:C1:8F:63:BA:0F:D3:69:A4:38:F8:28:F3:2B:58:99
Authority key identifier: 74:B0:83:65:02:95:18:9F:00:9A:A7:4C:12:CB:C6:1E:E2:3F:A7:53
Certificate issuer: /CN=74b083650295189f009aa74c12cbc61ee23fa753
Certificate serial: 01958C60CE9E94E97B9CB706F0603BFEB123
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
Manifest number: 1494
Signing time: Wed 12 Mar 2025 22:01:49 +0000
Manifest this update: Wed 12 Mar 2025 22:01:49 +0000
Manifest next update: Thu 13 Mar 2025 22:01:49 +0000
Files and hashes: 1: dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl (hash: yBvOJnIpCEA420wv2LyxADOhW9Z1fBilO1w6qVMbxbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:ce:9e:94:e9:7b:9c:b7:06:f0:60:3b:fe:b1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b083650295189f009aa74c12cbc61ee23fa753
Validity
Not Before: Mar 12 22:01:49 2025 GMT
Not After : Mar 13 22:01:49 2025 GMT
Subject: CN=6fd93c5f25c18f63ba0fd369a438f828f32b5899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b3:76:dc:81:3e:42:3d:44:07:5a:c3:a0:20:
fa:03:26:03:e8:0e:4a:98:d7:6a:dd:bf:2e:9d:28:
fe:e2:b3:2e:28:fe:c0:47:34:a4:0f:96:f3:da:8e:
64:4a:9c:2c:f2:e0:8b:c3:f9:78:70:10:a8:b1:65:
fd:2d:86:59:96:67:29:49:50:06:03:f9:d0:db:01:
a6:43:57:e1:8e:36:89:7a:a5:2b:a9:b3:88:b6:dd:
06:e6:ae:59:a6:26:12:b9:42:2a:be:b7:a6:bc:9b:
fd:5d:72:f5:9e:2a:c6:62:9d:a7:e2:2e:20:01:f4:
4b:6d:02:2a:f0:37:0c:26:32:23:51:69:5d:94:f1:
ec:fa:86:bd:8b:ab:d9:fe:43:dc:30:74:ef:27:dc:
46:d2:d9:71:b2:f4:dc:ff:ac:fb:31:3c:94:3d:29:
48:e8:41:2d:7e:f4:29:8a:88:ed:61:b0:5c:74:ca:
26:34:43:ea:a5:b2:34:d8:6f:cb:10:0a:64:11:0a:
5d:39:d2:9e:b7:e3:4f:b0:7d:02:fb:48:1b:63:11:
11:96:fc:88:75:23:26:07:95:2e:0c:7f:d1:ff:9c:
e8:db:ec:e5:fe:d5:e2:fb:33:1f:a2:b5:fe:ed:02:
58:20:8c:2b:fa:ad:ad:fe:aa:ed:e3:01:42:ef:d4:
7e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D9:3C:5F:25:C1:8F:63:BA:0F:D3:69:A4:38:F8:28:F3:2B:58:99
X509v3 Authority Key Identifier:
keyid:74:B0:83:65:02:95:18:9F:00:9A:A7:4C:12:CB:C6:1E:E2:3F:A7:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:b9:5b:30:bb:77:1d:45:02:14:ac:ee:7f:d1:92:bc:ce:1a:
9d:e7:7c:9d:75:48:44:5f:10:27:fc:2a:15:8a:b5:ec:50:42:
ab:4c:89:20:50:91:77:21:8d:05:a4:d4:d2:d9:ab:fd:ae:6c:
0e:e9:7f:f1:da:be:54:fc:69:2f:32:e1:d2:51:ad:85:00:ac:
c5:e4:c9:0c:92:6c:f9:4c:8c:95:20:d2:83:e8:a5:a6:60:17:
6e:9a:9a:f2:42:38:1c:e7:89:4a:bd:39:4e:df:7e:0d:bd:0a:
07:80:ce:c3:5a:f9:ab:b4:8f:34:b4:f7:2c:ed:84:cd:e9:77:
7e:1a:04:21:25:ba:23:f4:bf:fe:59:d8:66:10:3f:a8:3c:e6:
4a:e6:e2:a8:2a:5a:a5:a9:a2:69:e2:73:78:26:a9:90:dd:2c:
81:a5:7a:f6:4f:eb:55:dc:d8:0b:55:52:a4:ae:34:9f:5a:75:
b0:38:f7:79:6d:9b:ee:cd:ca:3d:70:e1:cc:2f:11:ea:08:dc:
d1:0b:d9:68:21:68:d9:d1:df:71:ce:bf:fe:66:40:fd:83:24:
87:9c:eb:a2:8d:98:fc:bb:b4:b8:6d:d9:07:e7:8b:be:71:f2:
1c:9b:09:45:f2:aa:8e:aa:1e:10:ce:45:cb:ce:4b:72:fa:52:
f8:58:a2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:51 2025 by rpki-client