Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
File: l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft (raw, json)
Hash identifier: /Vt+gBjcNAfSNXTOWgka11HFD8V491TOPhy/f5kkB7M=
Subject key identifier: 52:69:63:BE:92:11:A3:DB:31:5F:74:2F:2A:95:02:6D:86:95:BC:93
Authority key identifier: 97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
Certificate issuer: /CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Certificate serial: 0194C3F5A9550408E0A77827B73B5AE3C725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
Manifest number: 1429
Signing time: Sun 02 Feb 2025 00:00:44 +0000
Manifest this update: Sun 02 Feb 2025 00:00:44 +0000
Manifest next update: Mon 03 Feb 2025 00:00:44 +0000
Files and hashes: 1: l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl (hash: BMmEo9Qlar/ko/e51ZzdUswqY3rZYeSsjGX9jlBHlms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:a9:55:04:08:e0:a7:78:27:b7:3b:5a:e3:c7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Validity
Not Before: Feb 2 00:00:44 2025 GMT
Not After : Feb 3 00:00:44 2025 GMT
Subject: CN=526963be9211a3db315f742f2a95026d8695bc93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2c:75:8c:98:30:4f:ea:ed:8d:be:01:98:0f:
3c:b5:22:25:1f:8e:bf:d3:bd:8f:b6:c1:3c:5f:c9:
a9:46:f2:9b:95:7f:b2:ff:96:af:f9:99:db:5b:13:
83:27:a0:ab:0b:b4:af:1b:12:c6:84:a4:c2:37:1f:
33:3f:f0:31:44:4a:f0:9e:b4:78:8d:9e:81:46:01:
ef:36:fe:b3:59:a9:81:1e:44:12:e8:a7:ff:19:d1:
b9:99:a2:84:d6:59:67:18:9e:f6:9c:ec:84:2d:1a:
6e:10:26:1b:36:bf:84:21:4b:d7:c8:59:89:44:1f:
d8:5a:36:97:d4:a5:f4:db:de:2c:be:71:fd:61:96:
b5:e1:58:d6:44:48:33:a1:ba:5d:d1:48:32:36:bb:
47:86:81:c2:5b:b5:42:0f:e4:60:bf:68:83:9f:3d:
66:1e:91:0c:35:c5:6a:d7:85:5b:fc:90:e4:c1:18:
c5:cf:ad:d0:a5:87:6e:61:dd:a6:52:d2:e0:ea:9b:
ce:69:12:e4:a1:ca:bb:93:92:9e:4e:45:a6:ae:01:
9c:32:5b:06:dd:93:94:36:a0:47:ab:e7:5a:4d:16:
26:8f:ed:a4:70:86:75:01:f8:9f:90:0f:24:9c:65:
79:87:bd:d5:ce:e8:75:0a:44:9d:22:56:26:9f:17:
70:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:69:63:BE:92:11:A3:DB:31:5F:74:2F:2A:95:02:6D:86:95:BC:93
X509v3 Authority Key Identifier:
keyid:97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:1d:05:70:37:94:ba:df:0a:22:55:78:05:df:33:84:a5:6f:
d3:cd:e5:2f:74:38:88:ce:86:67:97:27:bf:8f:93:22:c0:a8:
1a:bf:24:88:31:03:fb:75:55:49:11:b9:2e:6c:d8:6b:11:fd:
b9:71:6a:16:fe:1f:a8:f1:19:84:ab:38:5d:32:34:b5:36:a4:
4f:60:24:7f:4f:be:72:a2:53:98:47:f1:e1:76:65:1c:a8:e1:
d4:04:ce:5b:e0:8a:c8:c4:c4:c3:e4:c3:d0:dd:c0:8a:8f:d3:
38:f0:ee:41:35:30:8f:59:b9:cd:e5:b2:7a:2f:01:c7:95:40:
4c:b6:21:13:54:0e:15:c3:79:9e:db:db:7e:1e:f1:23:78:10:
2a:bb:b5:e1:ca:0c:a8:7a:6a:6b:e2:3f:8f:06:2b:a0:01:47:
aa:f7:35:dc:1b:52:86:58:26:14:7e:72:99:03:98:66:45:44:
71:a6:75:c1:f0:fb:0d:b3:4b:fc:bc:fd:3f:ee:ae:e9:dd:33:
05:81:e8:f3:8a:be:6c:f7:6f:5f:82:47:e6:a3:25:fe:4c:32:
19:0c:77:e1:cd:f4:41:c1:f2:e7:0e:12:c3:a8:27:f3:d5:50:
41:8d:a1:c3:1b:a0:0d:f5:fd:8b:37:7e:70:64:f5:02:a6:1b:
2b:94:82:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:48:55 2025 by rpki-client