Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
File: sd_KrmUzbQycpCWFpG2Yyawk9eU.mft (raw, json)
Hash identifier: SbF1iyK9QrtqDJuoQKHmT/j4w+VnP6qA1Zo9jVHH9Vw=
Subject key identifier: 10:A2:30:8E:05:99:CB:36:EF:24:C1:E0:19:F3:86:38:EA:F9:37:DB
Authority key identifier: B1:DF:CA:AE:65:33:6D:0C:9C:A4:25:85:A4:6D:98:C9:AC:24:F5:E5
Certificate issuer: /CN=b1dfcaae65336d0c9ca42585a46d98c9ac24f5e5
Certificate serial: 0196B4EB40B7E9BCE97297E307E8348A88AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd_KrmUzbQycpCWFpG2Yyawk9eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
Manifest number: 0176
Signing time: Fri 09 May 2025 12:00:38 +0000
Manifest this update: Fri 09 May 2025 12:00:38 +0000
Manifest next update: Sat 10 May 2025 12:00:38 +0000
Files and hashes: 1: sd_KrmUzbQycpCWFpG2Yyawk9eU.crl (hash: vzcoFON4aUwSEUFTrCERHRQvBJfK0u3E4fFaSo40ccc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd_KrmUzbQycpCWFpG2Yyawk9eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:eb:40:b7:e9:bc:e9:72:97:e3:07:e8:34:8a:88:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1dfcaae65336d0c9ca42585a46d98c9ac24f5e5
Validity
Not Before: May 9 12:00:38 2025 GMT
Not After : May 10 12:00:38 2025 GMT
Subject: CN=10a2308e0599cb36ef24c1e019f38638eaf937db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e1:f5:17:27:73:64:ee:7a:50:f8:a2:78:89:
cd:25:5f:b3:d1:a7:a7:7f:7a:ed:e0:2a:4c:3f:c0:
30:3c:c3:5d:16:55:24:e4:dc:d5:b2:9a:97:e1:07:
ac:f2:94:40:78:76:b3:91:36:a9:0e:3b:26:02:79:
b6:7f:00:5a:1b:63:93:b7:7f:06:b6:ad:7f:90:b5:
47:36:cd:d0:ae:20:f8:bf:0a:b9:d5:07:74:c6:50:
d6:bf:70:92:69:8e:43:8e:58:03:b7:e0:6a:e3:17:
1d:7c:b9:ef:79:aa:d9:76:9c:1b:80:be:1d:80:31:
69:d1:9f:a2:7e:55:d4:19:14:99:6f:72:72:9b:17:
d2:ef:2c:20:96:cd:5f:9e:32:8e:85:16:e9:b5:e5:
e8:04:b3:0f:70:a7:24:3e:5d:6c:d4:a4:c5:10:34:
33:61:7c:00:62:05:8d:a9:1f:3b:f2:f2:21:00:b9:
67:fc:18:8a:db:e6:9b:ae:35:43:50:fd:0f:dc:e7:
99:0e:d1:64:39:ec:5f:a6:e8:71:f4:29:62:f5:35:
52:78:a9:d3:b2:26:57:7c:e0:58:a0:48:2f:2a:1e:
40:0c:f5:9c:ff:22:6f:03:0d:4f:cd:d7:33:18:2f:
05:75:d5:09:02:06:29:0d:0e:a8:e1:f1:50:41:d6:
32:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A2:30:8E:05:99:CB:36:EF:24:C1:E0:19:F3:86:38:EA:F9:37:DB
X509v3 Authority Key Identifier:
keyid:B1:DF:CA:AE:65:33:6D:0C:9C:A4:25:85:A4:6D:98:C9:AC:24:F5:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd_KrmUzbQycpCWFpG2Yyawk9eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/19877d-3932-472e-9e64-c45e8924c54a/1/sd_KrmUzbQycpCWFpG2Yyawk9eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:c0:73:75:19:b6:d3:f0:8d:d6:f9:b2:82:35:04:e7:8d:9f:
b9:23:e5:e4:cf:27:8e:4a:6e:fa:18:bc:29:51:c4:7c:79:49:
a5:f5:8d:16:6b:32:40:99:8d:68:fb:a0:45:3f:bf:67:56:54:
49:40:d9:0b:b4:de:9f:bb:7c:bc:91:55:c3:2c:1b:d1:6d:24:
f4:35:ee:f9:a5:89:44:7a:1e:df:b5:6a:5b:b9:ab:3f:3e:3c:
0a:8c:dd:80:1c:15:d4:9f:f9:c8:a1:ec:89:aa:b7:e7:4d:a2:
2b:60:3a:ea:65:27:3b:e6:55:ec:28:04:2c:f3:a0:e7:b9:97:
65:2e:dc:0b:a3:99:2b:2d:fd:4b:9b:e5:7d:3e:6c:88:82:c0:
7a:d3:50:9e:10:70:38:cc:b7:da:87:82:68:7e:72:d8:50:fb:
41:59:06:7b:c7:62:f9:0d:4b:24:5c:2a:37:0d:e9:bc:92:55:
7c:42:a1:45:40:d3:c6:51:8b:c2:67:0a:24:e0:4d:26:0c:fc:
67:43:dd:b7:23:22:bb:b8:7c:cf:55:39:c9:22:31:7d:45:3c:
a8:f5:bc:20:69:80:95:88:34:b2:f8:3a:7c:01:de:20:a9:b6:
d0:e9:ac:09:60:35:c3:be:1c:71:b5:d3:77:42:bf:61:1d:99:
ef:35:d3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 22:03:18 2025 by rpki-client