Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
File: l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft (raw, json)
Hash identifier: tmd+EKnn6GKwBUsj+hg42NigyMhzZ6LrjgnsuLUWeR4=
Subject key identifier: D7:80:FB:01:1F:CA:68:F7:2E:FF:ED:4D:35:40:B0:6A:8E:3B:3C:BB
Authority key identifier: 97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
Certificate issuer: /CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Certificate serial: 0197B70E64A5FAE3FA1C7E850CED9FC46BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
Manifest number: 15B0
Signing time: Sat 28 Jun 2025 15:01:03 +0000
Manifest this update: Sat 28 Jun 2025 15:01:03 +0000
Manifest next update: Sun 29 Jun 2025 15:01:03 +0000
Files and hashes: 1: l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl (hash: T4CND0v8yBaLfM74HJz26WR4qkzI/2vKeC3pu779MM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:64:a5:fa:e3:fa:1c:7e:85:0c:ed:9f:c4:6b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Validity
Not Before: Jun 28 15:01:03 2025 GMT
Not After : Jun 29 15:01:03 2025 GMT
Subject: CN=d780fb011fca68f72effed4d3540b06a8e3b3cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5f:1c:e2:63:2b:0f:d5:76:0f:38:ab:e9:05:
33:14:78:fd:5d:84:66:1b:8e:ce:6e:9a:bd:bf:7e:
38:7e:d4:29:c1:55:f5:3e:d9:51:c8:4e:3a:7f:15:
1f:49:a8:29:63:b9:e4:80:c2:dc:6c:02:75:52:bb:
21:4b:28:25:28:79:bc:1e:3f:2b:c0:37:83:f7:df:
c7:e5:17:36:71:7d:d6:84:e0:98:a6:49:48:76:15:
08:04:81:aa:78:d0:1f:eb:ba:cc:54:c0:48:d8:75:
e4:7b:5f:44:d4:5d:ab:59:df:b6:7d:a3:f1:97:7c:
6c:98:04:e5:a6:f9:7e:fe:96:8c:f7:e1:86:98:e5:
7b:cd:49:f4:40:c7:98:77:17:4c:ee:d4:c5:5c:ab:
62:8a:04:18:c2:7e:37:ef:88:d7:9b:fa:9c:d9:18:
43:1d:bf:f2:fb:49:d8:08:68:33:0c:bb:c0:d4:ef:
d0:23:85:71:46:09:d9:2f:39:1c:4e:4b:d8:83:bc:
95:d0:f9:c8:b2:bb:a4:96:8b:d0:2c:13:d9:b6:e3:
82:c1:3e:86:e3:3d:c2:50:de:ca:4f:04:a8:0f:65:
06:3b:86:80:83:e4:69:97:ca:f4:b6:87:74:3c:ef:
65:d1:0d:0c:a4:e1:2d:50:0e:aa:95:6f:3c:b0:ee:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:80:FB:01:1F:CA:68:F7:2E:FF:ED:4D:35:40:B0:6A:8E:3B:3C:BB
X509v3 Authority Key Identifier:
keyid:97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:11:a3:09:1d:0d:6d:d1:cc:98:a5:9a:10:b4:ae:36:df:f0:
52:b7:79:02:eb:5f:21:06:dd:d2:3e:1a:e7:d2:ae:e8:9f:28:
50:fb:d0:06:f7:36:24:aa:df:d3:f1:79:8d:99:cc:bc:21:22:
57:1b:b3:61:0f:9d:76:22:f3:f8:81:23:d1:b3:42:45:f3:80:
1d:95:2f:38:1a:72:c0:d4:2d:eb:18:5b:cd:f5:a6:b8:ed:bd:
7f:a4:34:8f:1a:ba:e7:5a:80:75:f5:de:2d:a1:7a:b8:ef:21:
f8:b7:a4:29:28:ae:ea:9c:75:3f:38:fc:cf:33:76:39:cd:ed:
37:5c:6e:6d:47:e5:fb:0c:8c:86:eb:19:86:f0:18:a3:ee:80:
c3:5d:53:eb:21:75:f8:fa:07:a3:ec:29:41:41:2b:74:e9:82:
18:25:de:f7:2f:de:04:3d:28:ab:3b:28:70:d2:9a:4d:7d:10:
c1:d6:a4:43:2f:db:00:75:21:fc:38:48:8c:3b:71:7c:0a:c8:
cc:af:86:cb:d0:5b:8e:34:69:f1:b2:f0:60:ce:70:42:02:a3:
7f:dd:60:d6:b0:a6:0c:91:05:ce:ac:f0:08:2c:70:3c:18:ee:
d9:07:98:9b:9c:0d:8e:8e:32:09:b8:2b:83:a9:d5:b8:57:6f:
2a:25:67:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:56:49 2025 by rpki-client