Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
File: KrmiSem1jILhRV6yM5RVsDHn3d8.mft (raw, json)
Hash identifier: CgMtLP7RYt2uXx4XQUS8CYmx+KE6RhRZQbjX1NTBu7o=
Subject key identifier: F7:4E:62:39:52:18:2C:B0:02:2C:A0:62:D2:E6:DC:C8:F6:17:EB:D6
Authority key identifier: 2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF
Certificate issuer: /CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf
Certificate serial: 01987450AD4F42F76A0D9AE6B39B62422589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
Manifest number: 1614
Signing time: Mon 04 Aug 2025 09:01:40 +0000
Manifest this update: Mon 04 Aug 2025 09:01:40 +0000
Manifest next update: Tue 05 Aug 2025 09:01:40 +0000
Files and hashes: 1: KrmiSem1jILhRV6yM5RVsDHn3d8.crl (hash: BFHY9b1BHARL+vBYSBLakHpdi9xXmA+gk63KM9ZJH6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:ad:4f:42:f7:6a:0d:9a:e6:b3:9b:62:42:25:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf
Validity
Not Before: Aug 4 09:01:40 2025 GMT
Not After : Aug 5 09:01:40 2025 GMT
Subject: CN=f74e623952182cb0022ca062d2e6dcc8f617ebd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:32:49:1c:93:f1:36:5e:f4:53:28:2b:b6:b4:
9f:07:d0:08:02:7a:b7:f3:8a:4b:7f:dd:be:9e:ac:
2e:b5:93:df:46:d0:da:c0:b2:29:70:e9:a0:a7:aa:
62:19:3d:95:c4:60:f4:07:f9:02:0f:5b:90:f7:79:
12:91:83:29:53:59:2b:77:87:3b:d1:27:b7:01:70:
2c:98:58:6f:2f:67:6e:0f:e7:bb:83:d1:50:5c:e6:
38:2c:24:3c:87:f6:40:bc:2b:35:e8:2e:f3:57:5a:
b4:84:8c:aa:07:49:34:36:4a:b3:af:6d:0a:80:a4:
ee:18:6a:99:75:52:05:f4:c4:54:fc:62:a1:1a:4c:
de:d2:7b:77:f8:54:af:52:92:76:28:35:24:e2:cd:
d1:b7:73:16:78:fa:1f:f5:55:f8:76:7b:93:d7:1a:
46:42:ca:38:24:b9:b0:b2:51:2d:5b:6d:8d:e5:0b:
ff:b0:e6:49:a2:f8:c2:4f:b7:bc:93:b2:fc:a6:5e:
8f:e8:1e:8b:9f:5e:36:92:66:d4:34:19:bd:69:7b:
ec:92:39:e9:07:0c:61:2f:0f:61:70:c4:42:20:9d:
26:75:e8:be:95:0e:12:f9:bb:86:2e:7b:b2:1d:67:
11:fa:be:b4:e5:aa:b1:c4:52:2d:4e:ec:cf:01:37:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4E:62:39:52:18:2C:B0:02:2C:A0:62:D2:E6:DC:C8:F6:17:EB:D6
X509v3 Authority Key Identifier:
keyid:2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:c2:32:64:e4:0c:2b:08:e4:61:6a:d4:d2:62:ce:1f:ca:81:
4d:73:ac:0c:31:25:f6:b1:22:50:37:bc:2b:32:28:0e:9e:ad:
23:03:23:58:ca:03:50:b0:84:df:d8:af:25:85:79:6c:b8:7d:
71:5b:98:2a:97:f0:dc:25:3c:ef:ee:e9:e5:54:8d:84:8a:79:
52:bc:b7:26:b5:ed:65:f0:15:53:b3:11:1d:d6:de:56:a5:86:
34:68:d5:61:24:78:59:c5:3f:d0:18:b9:10:aa:f2:e6:34:a6:
ec:10:9b:a0:4c:4d:99:8f:eb:4d:06:5c:9f:15:37:82:79:5d:
3e:cc:87:8d:bd:4c:2f:2c:aa:a1:b3:6e:da:3b:7a:0a:a3:90:
1e:48:28:84:f3:f3:98:55:08:67:0e:1b:89:b7:6e:9a:e5:3e:
8f:a9:08:ac:1c:6e:af:f6:f6:90:53:6e:53:bf:6c:c9:7e:56:
f3:a0:ec:27:a8:d8:5a:e6:e0:c8:9a:6d:6b:6a:b9:57:c7:a0:
4d:0a:15:3e:c1:b8:12:4d:c8:f1:9a:f9:b1:39:af:0a:be:b9:
88:40:ed:b7:8d:b4:e2:4a:98:72:df:cf:7e:46:f6:18:4d:eb:
31:05:07:89:cf:db:28:ea:7e:72:a6:24:dd:d1:76:e5:6d:74:
ca:f6:29:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:52:04 2025 by rpki-client