Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
File: sd_KrmUzbQycpCWFpG2Yyawk9eU.mft (raw, json)
Hash identifier: Gw8tWcOR7NBOQYbbnfE8F9CN4OvdRLOh/01JOJb43ms=
Subject key identifier: 0C:43:E4:77:8D:20:27:77:DE:4B:A3:D8:1A:46:FF:B3:FB:76:AB:47
Authority key identifier: B1:DF:CA:AE:65:33:6D:0C:9C:A4:25:85:A4:6D:98:C9:AC:24:F5:E5
Certificate issuer: /CN=b1dfcaae65336d0c9ca42585a46d98c9ac24f5e5
Certificate serial: 0197B7B353827E574F70C1866AF63512CC93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd_KrmUzbQycpCWFpG2Yyawk9eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
Manifest number: 01FC
Signing time: Sat 28 Jun 2025 18:01:12 +0000
Manifest this update: Sat 28 Jun 2025 18:01:12 +0000
Manifest next update: Sun 29 Jun 2025 18:01:12 +0000
Files and hashes: 1: sd_KrmUzbQycpCWFpG2Yyawk9eU.crl (hash: h7hJpO5/i6JxN2088ZiIOjjVwsgZTy1ZpNxFQ8+PYqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd_KrmUzbQycpCWFpG2Yyawk9eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:53:82:7e:57:4f:70:c1:86:6a:f6:35:12:cc:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1dfcaae65336d0c9ca42585a46d98c9ac24f5e5
Validity
Not Before: Jun 28 18:01:12 2025 GMT
Not After : Jun 29 18:01:12 2025 GMT
Subject: CN=0c43e4778d202777de4ba3d81a46ffb3fb76ab47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:22:da:41:bb:5c:dd:08:fb:9f:e8:ec:f6:
06:4e:0d:91:3b:dd:a5:d1:7b:ee:d4:93:d2:d9:35:
89:81:3c:93:69:0f:61:d0:cf:39:f8:ae:46:73:d2:
d5:e8:ab:b0:e2:3a:6f:0b:c5:60:3e:9a:3f:9d:8f:
99:fa:a4:53:f3:9c:fc:89:86:2e:d9:03:2c:80:79:
ef:96:f6:f8:75:a0:23:62:6d:b6:9a:9e:d2:cf:8e:
59:9e:7a:71:47:45:a1:24:71:98:d7:66:f3:3a:11:
0b:ff:82:66:e5:af:27:3e:7d:20:7a:43:f3:e9:60:
a8:d5:4f:97:35:5a:e8:1d:8e:5d:f8:77:3d:d3:5a:
2b:92:c7:6b:b8:5b:26:b2:20:05:ef:37:65:36:54:
2b:83:80:39:82:94:51:32:5c:24:92:75:23:b8:fb:
3b:a8:1f:00:e4:55:fd:2b:30:5f:9e:70:bc:f4:17:
ec:1b:1b:7a:fa:2d:3a:21:6c:83:b8:43:21:19:b7:
b4:15:fc:27:f9:e8:44:2b:b4:a9:84:8d:2d:1c:53:
2d:03:71:7d:55:a1:01:fc:f8:44:63:98:46:98:ff:
74:b4:5c:7a:b6:e4:1d:76:97:f0:bc:88:da:ba:27:
36:ad:c4:2f:03:87:c0:c1:19:c1:ee:c2:e0:1c:5c:
21:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:43:E4:77:8D:20:27:77:DE:4B:A3:D8:1A:46:FF:B3:FB:76:AB:47
X509v3 Authority Key Identifier:
keyid:B1:DF:CA:AE:65:33:6D:0C:9C:A4:25:85:A4:6D:98:C9:AC:24:F5:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd_KrmUzbQycpCWFpG2Yyawk9eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:49:20:65:05:ba:47:97:cd:55:f2:dd:c8:7b:9a:dd:d6:b0:
02:53:97:cb:24:6a:d1:e8:6b:90:3a:27:9b:b3:64:e8:67:c7:
c6:55:d5:ba:42:8a:3a:42:e7:ef:5a:b2:04:85:ff:e7:82:c8:
c0:57:ae:b4:28:59:18:ba:87:f2:4c:74:9c:a2:53:6b:2c:55:
23:d3:ab:51:e7:7d:e7:a0:27:6f:8a:ca:52:88:f7:a1:41:cd:
30:d4:0a:46:37:94:3e:a8:71:1b:73:00:1a:5d:b5:c5:d4:f8:
7e:45:7f:89:ef:44:2a:ef:60:4b:a2:14:4a:a4:0f:d7:be:d8:
62:58:9e:bb:0c:48:12:00:51:89:a4:6a:43:31:1c:a1:30:00:
28:1e:17:f1:e7:46:fe:35:56:61:aa:e8:90:5f:b3:04:a5:b7:
90:57:07:c4:cd:72:75:db:f0:6a:29:4e:c8:25:43:c3:f7:1c:
9d:9d:27:9c:9f:a9:e9:8f:3c:9b:70:ec:c6:e9:ac:60:50:67:
0e:c5:ef:21:c3:52:b4:fb:92:1c:d5:3b:38:9c:3e:2c:01:14:
37:6f:8e:0f:4b:84:ca:ca:4f:be:fc:8c:e5:59:54:47:b5:ce:
fc:c6:88:04:75:8e:93:be:b8:8e:5a:e3:5a:f2:50:85:35:c9:
59:64:8a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:47:18 2025 by rpki-client