Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
File: l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft (raw, json)
Hash identifier: iTKhO89oAW5PXoZh72h2lZ50W9HoGepCTakuXr3Vvks=
Subject key identifier: CE:32:6C:35:42:94:B1:CD:01:CC:D3:AF:87:53:C7:07:DE:B2:05:B3
Authority key identifier: 97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
Certificate issuer: /CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Certificate serial: 019A722675FB765C83A72C45A2A76E19D570
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
Manifest number: 171A
Signing time: Tue 11 Nov 2025 09:01:54 +0000
Manifest this update: Tue 11 Nov 2025 09:01:54 +0000
Manifest next update: Wed 12 Nov 2025 09:01:54 +0000
Files and hashes: 1: l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl (hash: 7PXz+nx6rypVG1txIJIN8f5BETUQsPFgk1asYlQkLPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:75:fb:76:5c:83:a7:2c:45:a2:a7:6e:19:d5:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Validity
Not Before: Nov 11 09:01:54 2025 GMT
Not After : Nov 12 09:01:54 2025 GMT
Subject: CN=ce326c354294b1cd01ccd3af8753c707deb205b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cb:4c:d7:70:21:92:60:16:25:cb:cb:fd:1e:
92:ca:f6:a4:31:ef:dc:04:48:48:20:2e:6b:19:e8:
06:1c:0d:b7:36:0c:dc:b4:1e:af:da:cb:11:49:1e:
14:2c:f5:2a:ba:52:1a:0e:98:ce:60:e4:61:d4:72:
77:a1:34:5e:b8:9b:2c:24:61:b5:cf:0c:e2:68:93:
ec:9d:dc:24:8d:32:dc:82:c2:44:47:98:4b:58:40:
6a:b5:29:cc:5c:fd:c0:60:de:1e:2a:b9:45:08:b4:
96:ab:7f:21:01:c7:4b:d9:d0:e7:a8:86:2f:0f:99:
b9:c3:2e:1b:4e:67:0d:31:f2:43:7f:5e:2d:6c:f0:
21:46:23:5b:3d:4b:42:18:29:79:6f:ae:f0:2d:3f:
46:d5:e4:b8:ec:c1:35:69:29:75:eb:1b:af:f5:08:
af:65:7d:59:80:30:5a:50:d2:06:96:c7:46:a3:38:
72:bf:f9:f6:6e:d8:42:cf:dc:83:23:e5:39:03:69:
e8:21:7f:60:52:5c:96:1d:71:4c:35:04:4c:08:a8:
1f:3e:5d:67:5c:ba:c6:6d:10:4e:27:47:85:54:24:
a7:43:2a:1b:2b:fb:9c:51:fd:91:cd:74:46:74:7a:
21:58:31:3e:ca:de:ef:9b:26:1c:a4:bd:f3:6d:7a:
d5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:32:6C:35:42:94:B1:CD:01:CC:D3:AF:87:53:C7:07:DE:B2:05:B3
X509v3 Authority Key Identifier:
keyid:97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:b1:95:7e:21:5b:bf:6b:ed:36:63:77:c5:c4:c6:4e:d8:69:
6a:1c:01:65:4f:b9:b2:31:2a:1f:b2:bd:e2:02:8a:5a:d1:d7:
fa:16:c3:ca:e6:4a:44:5e:b7:59:39:b8:62:1e:82:a9:9f:b5:
6c:37:ea:a7:79:fb:40:2f:af:0d:5c:0e:aa:b3:84:e8:37:1d:
8d:e7:53:9e:51:1e:b3:8c:df:d8:78:e9:c5:7e:1a:81:cb:c6:
93:f9:28:ef:11:c2:b1:f2:54:0d:d1:eb:09:f2:3c:16:0e:ca:
30:5f:8d:26:a8:73:ff:67:74:93:bb:93:20:e2:3b:59:e8:49:
d3:65:4c:5e:ef:70:71:3e:33:29:18:95:1c:3c:2e:74:f6:07:
09:11:13:2d:e9:d2:d1:3e:00:bb:28:d3:a5:d4:c9:7d:73:3f:
97:2f:10:c8:12:53:1a:3e:dc:98:5f:9f:ef:af:ea:d6:5d:54:
52:49:e4:8a:95:44:cb:8f:5b:bd:72:45:22:b3:17:c6:1d:9d:
9e:40:e5:e3:6c:a1:0c:b7:fe:25:cd:99:1c:46:a7:36:73:60:
e7:c3:39:8d:fb:bc:17:55:95:74:43:f6:24:ee:64:54:06:24:
c3:94:cc:d9:ca:fd:43:c6:20:f1:ba:1e:1c:22:6a:24:d1:6c:
85:db:8f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:04 2025 by rpki-client