Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
File: l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft (raw, json)
Hash identifier: ZF45QWU1rA1kuGYarPivupdqjeBETrwmXeOOk7hoJss=
Subject key identifier: 05:76:45:79:20:64:B1:87:34:1A:C7:50:99:21:38:53:A5:C7:3F:24
Authority key identifier: 97:B6:CB:48:84:1C:E5:19:B2:83:59:CA:F1:BC:E3:40:E3:36:81:EF
Certificate issuer: /CN=97b6cb48841ce519b28359caf1bce340e33681ef
Certificate serial: 0194C46358C2C6DEFB0A61D2BDB5B53ED59D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
Manifest number: 05D9
Signing time: Sun 02 Feb 2025 02:00:32 +0000
Manifest this update: Sun 02 Feb 2025 02:00:32 +0000
Manifest next update: Mon 03 Feb 2025 02:00:32 +0000
Files and hashes: 1: l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl (hash: bKCh1SznNsKLSvAleEm+4cWjzT4aq2ZhQxYgAQSOGQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:58:c2:c6:de:fb:0a:61:d2:bd:b5:b5:3e:d5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97b6cb48841ce519b28359caf1bce340e33681ef
Validity
Not Before: Feb 2 02:00:32 2025 GMT
Not After : Feb 3 02:00:32 2025 GMT
Subject: CN=057645792064b187341ac75099213853a5c73f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4c:4b:22:37:bc:33:9c:6d:4f:e1:5d:1f:60:
fb:b2:c5:3c:30:dd:cf:10:6f:ec:10:6d:7c:d6:aa:
c1:54:dd:4e:88:4a:bf:88:2f:5c:be:33:0e:a4:9a:
22:4b:8e:a9:cd:8b:ca:47:62:d3:77:b0:b9:11:1a:
1c:3b:96:77:ca:58:d4:dc:cd:72:16:40:aa:c8:a7:
2f:ed:67:6b:ea:7b:49:23:33:4a:44:ee:5d:ea:b5:
4b:95:81:77:83:87:14:3c:42:95:2a:5d:48:ac:be:
77:d6:24:0f:6d:59:5f:55:be:03:c6:e7:09:9d:73:
e0:1b:f6:8f:83:fe:c9:ed:ee:ae:87:d9:3b:f3:f1:
00:63:9c:b5:23:34:2f:45:8b:15:a9:8c:3c:b2:14:
d3:05:0e:e5:12:fa:96:80:3f:32:6d:88:79:a1:63:
cb:fb:19:2c:46:cf:eb:13:af:6b:28:21:1a:a7:0f:
22:2c:23:59:9a:80:c3:e2:54:d8:e5:2f:a9:fb:49:
5b:95:e2:1d:52:a5:1c:90:31:47:83:ba:8b:60:b4:
22:a7:0a:f0:5b:a1:06:55:d5:1a:39:f2:58:0f:42:
dc:c9:3d:18:8c:3e:f5:f8:2d:42:96:5b:91:70:eb:
18:19:17:a6:b3:6e:89:c1:1b:d6:41:a8:a8:95:5b:
50:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:76:45:79:20:64:B1:87:34:1A:C7:50:99:21:38:53:A5:C7:3F:24
X509v3 Authority Key Identifier:
keyid:97:B6:CB:48:84:1C:E5:19:B2:83:59:CA:F1:BC:E3:40:E3:36:81:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:39:2a:90:c8:bd:93:83:df:e5:18:da:1f:0f:e1:fe:92:6a:
c3:f5:9c:02:65:57:7b:0e:1f:b6:ea:40:c6:41:db:da:65:de:
7f:59:69:2e:69:bf:ef:ec:21:4c:e2:e4:b1:d1:96:31:85:f0:
6d:83:36:c5:54:14:b7:de:96:d9:c8:1c:bd:19:89:99:d4:fd:
3e:68:4e:25:4b:26:8b:aa:0f:a7:41:c7:02:46:ae:82:59:3a:
00:23:55:e6:ec:bc:05:38:5b:a3:4b:af:e6:10:f7:f7:61:a2:
ec:58:cc:f4:74:0b:a5:b7:c2:43:06:15:96:64:75:1c:61:b8:
ba:1e:31:fa:df:be:58:23:fc:b4:9e:db:3b:e9:5e:d5:74:5b:
8c:75:8e:1c:d1:6c:c1:78:ed:de:94:86:d5:df:16:81:4a:4b:
13:21:31:48:5b:e0:d8:08:a0:81:64:65:75:43:92:51:38:0d:
91:d3:4e:57:b8:80:64:61:3b:f6:33:88:79:20:86:3f:d2:01:
4d:c7:65:43:b4:3d:48:19:f6:4c:58:c8:f1:90:9e:b9:32:ef:
dc:b0:54:ca:2b:cf:14:35:98:54:ea:c4:d7:6c:3b:14:62:20:
3d:7e:f2:79:58:5e:ea:d4:d2:52:1f:6a:f6:61:43:b6:a1:b8:
c2:d7:9a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:40 2025 by rpki-client