Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
File: KrmiSem1jILhRV6yM5RVsDHn3d8.mft (raw, json)
Hash identifier: MBB9SMiV5hQcI2S8+C5mxlmbzIVU7GkOqrry26Y+ZIA=
Subject key identifier: D4:A3:3C:79:0A:E9:8D:06:59:30:6A:63:C7:A5:D7:72:DC:9E:7F:51
Authority key identifier: 2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF
Certificate issuer: /CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf
Certificate serial: 01969F07F9976B595744C68AA3732D300725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
Manifest number: 1521
Signing time: Mon 05 May 2025 06:00:21 +0000
Manifest this update: Mon 05 May 2025 06:00:21 +0000
Manifest next update: Tue 06 May 2025 06:00:21 +0000
Files and hashes: 1: KrmiSem1jILhRV6yM5RVsDHn3d8.crl (hash: IE3wg5UgZJrr7CNbZ0fqCI2lAlDBWuCVK5JyhDt51Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:07:f9:97:6b:59:57:44:c6:8a:a3:73:2d:30:07:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf
Validity
Not Before: May 5 06:00:21 2025 GMT
Not After : May 6 06:00:21 2025 GMT
Subject: CN=d4a33c790ae98d0659306a63c7a5d772dc9e7f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d1:ed:1b:88:81:0c:f9:bc:f0:a7:36:43:33:
48:24:73:a3:c6:f8:f9:cd:7e:c5:81:cb:bd:59:82:
88:4e:8e:05:c5:1a:a6:6c:dd:97:7b:c9:e6:63:ff:
c4:4d:44:e0:1e:80:da:6e:5f:d9:9e:63:3e:93:38:
c2:5d:b8:92:e6:3f:84:3e:f0:8d:44:50:d1:fc:5b:
00:8a:23:6c:45:56:aa:de:ce:dc:be:83:22:d6:11:
58:fa:c7:c2:42:13:1f:74:67:06:52:9a:5e:5a:cb:
8e:1a:9a:22:f8:74:fc:85:fd:87:3c:4a:24:2a:c0:
a4:de:8c:49:8f:4e:7f:89:65:57:18:fd:03:31:f3:
62:b1:a6:61:eb:a9:c6:54:5f:41:19:1b:66:35:d2:
3b:eb:a3:5b:c2:43:31:e0:25:06:25:fa:07:ad:f4:
8e:97:5a:fc:6c:12:24:5d:5f:9d:85:af:67:1f:c3:
54:83:44:0d:77:b4:20:de:aa:35:ca:e5:ae:dc:c2:
8d:3d:0c:52:3d:0e:9e:eb:b6:ba:f5:49:b2:45:5b:
f3:47:3f:81:65:f8:44:62:c0:a3:d1:4c:0c:9e:68:
cc:54:d1:d7:88:d0:60:05:56:bd:63:c6:ad:6e:a8:
12:52:34:c4:64:f5:45:2d:6b:2a:f0:5a:a3:23:01:
92:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A3:3C:79:0A:E9:8D:06:59:30:6A:63:C7:A5:D7:72:DC:9E:7F:51
X509v3 Authority Key Identifier:
keyid:2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:28:b5:5d:b1:ba:e2:ed:ff:28:f8:17:13:3b:28:d9:fc:f7:
e7:b4:ac:ec:b0:f5:2b:ef:6b:2e:ee:dd:be:cc:4e:a4:2f:12:
da:97:73:11:5c:0a:fc:cc:eb:40:28:79:7b:ca:dd:8b:f2:e7:
e8:b0:2f:e3:48:11:06:82:67:d8:4b:e8:f1:25:cb:a5:3c:37:
1f:35:96:ae:40:3d:51:64:52:e1:78:30:4f:2c:90:94:c6:4a:
7e:4b:2c:40:0d:63:df:a9:bb:f9:47:8b:83:68:ee:82:e7:ac:
55:88:74:73:4b:6e:08:6f:74:dd:f0:14:c0:54:e0:4b:f5:d4:
95:eb:09:17:e9:ae:f4:02:67:51:e9:0d:b5:8c:25:af:59:b9:
68:72:8b:e1:25:d0:1e:45:79:fb:35:f0:ad:d2:17:04:d1:49:
58:6f:c5:19:54:0b:a4:d4:4e:cc:8e:01:d5:f3:b9:cb:57:b8:
06:93:63:c0:09:f2:c3:6f:ed:80:c3:21:3c:61:f8:a5:85:da:
0e:9f:c4:40:1a:b7:77:89:1e:90:e1:b0:e1:c4:fe:2b:8e:e8:
d8:82:d2:ae:c0:0f:14:86:5a:eb:12:f5:c3:ef:d7:66:b4:ac:
0d:e8:6d:9d:4e:bc:15:a7:87:b4:ae:70:c4:40:7a:99:06:fb:
ed:53:8f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:19:33 2025 by rpki-client