Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
File: dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft (raw, json)
Hash identifier: 7YxdCq/+jxqStzdcbkHWmpDQBbZ9Efd+QSldQQ9Sar4=
Subject key identifier: 13:1A:29:15:C5:9C:0B:76:F6:12:7E:F9:82:06:83:86:76:44:AC:47
Authority key identifier: 74:B0:83:65:02:95:18:9F:00:9A:A7:4C:12:CB:C6:1E:E2:3F:A7:53
Certificate issuer: /CN=74b083650295189f009aa74c12cbc61ee23fa753
Certificate serial: 019510C73F760B99C7DFE38A30ADCCEA5F39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
Manifest number: 1454
Signing time: Sun 16 Feb 2025 22:00:48 +0000
Manifest this update: Sun 16 Feb 2025 22:00:48 +0000
Manifest next update: Mon 17 Feb 2025 22:00:48 +0000
Files and hashes: 1: dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl (hash: JIZr22FOoHHWZ5BxgiN1qZGPxmEKcT0xJd8nf3lqq48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:3f:76:0b:99:c7:df:e3:8a:30:ad:cc:ea:5f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b083650295189f009aa74c12cbc61ee23fa753
Validity
Not Before: Feb 16 22:00:48 2025 GMT
Not After : Feb 17 22:00:48 2025 GMT
Subject: CN=131a2915c59c0b76f6127ef9820683867644ac47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c3:79:bb:fe:df:88:41:28:9d:d3:26:ec:f4:
59:e1:d9:30:fd:8d:70:2a:b5:fd:0c:c4:d2:a8:a7:
e4:78:6d:a3:00:b3:18:3c:ac:7c:e3:44:2e:e0:13:
fd:d0:9f:6b:76:2d:1f:c8:c1:53:3b:f9:e9:c5:4a:
72:c9:b5:61:4c:99:8a:a2:40:77:87:20:0d:56:3c:
06:00:dc:9c:ee:95:e3:ca:db:41:7b:99:20:3b:79:
a3:97:e6:1a:be:d1:ed:34:3c:07:7a:c0:82:65:2e:
96:88:2e:25:19:34:a4:76:27:0a:46:c5:16:cb:6c:
b0:08:ba:d0:5c:a5:1b:cb:f3:4f:ea:f0:a3:e2:ae:
56:f0:64:a4:d6:76:98:e0:fd:f2:5e:1b:67:83:ab:
87:a6:eb:05:b5:8e:9c:71:8b:44:3f:ec:18:0b:ac:
d7:af:c4:cf:cc:de:9b:98:a5:2c:69:3f:7a:ce:a2:
bd:7f:7f:3c:f8:4f:a3:84:26:f3:09:9a:98:c6:c4:
de:2e:ac:c1:13:2e:77:21:32:07:ea:ca:70:bf:3b:
7a:7a:0e:5d:4b:9c:25:b3:2b:ab:00:fd:7d:f7:3d:
a0:4f:3e:82:42:f3:82:af:02:99:ac:b2:24:21:29:
d7:2e:21:c4:9e:22:99:b6:64:24:28:be:6a:ac:c8:
2d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1A:29:15:C5:9C:0B:76:F6:12:7E:F9:82:06:83:86:76:44:AC:47
X509v3 Authority Key Identifier:
keyid:74:B0:83:65:02:95:18:9F:00:9A:A7:4C:12:CB:C6:1E:E2:3F:A7:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b2:30:2d:6f:8e:06:57:8f:1b:eb:05:f0:82:92:47:5a:74:
49:fc:56:5b:4b:79:17:f8:64:b8:4f:48:cf:03:19:ec:10:03:
a3:6a:55:82:52:59:5b:8b:d7:69:f2:e6:5f:27:a1:fb:5a:bd:
df:70:75:16:c8:0f:3d:d4:e9:2b:81:d4:83:35:20:14:de:d0:
9e:8b:50:56:13:48:bc:14:2d:f6:49:c3:c7:52:0a:54:e9:97:
fa:18:1a:2e:f0:73:29:92:56:0b:f2:92:05:9a:6f:01:77:46:
d1:9c:6b:90:6a:ac:b6:b5:cd:66:77:ec:b9:08:7a:26:72:41:
6e:83:00:70:71:39:b1:74:af:14:07:8a:51:b8:a5:63:c7:bd:
ec:60:1b:0f:9a:3d:e6:32:39:be:c5:2a:e9:a8:b3:28:91:97:
d6:b6:08:ca:5e:7a:80:5c:e8:8f:9a:fe:6b:60:99:3f:0c:0b:
3e:0f:6d:81:5a:5d:46:59:4b:41:f4:d9:68:35:ef:fd:d1:90:
b3:8a:f2:67:03:3f:4f:af:e7:e1:db:bd:a4:11:70:50:67:0b:
db:47:66:8c:88:b9:65:08:3d:24:59:02:f5:71:0c:25:44:5b:
83:64:f5:22:ef:59:d4:1e:eb:33:ba:a3:0e:8a:ce:5f:8c:b5:
da:6f:fa:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:44 2025 by rpki-client