Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
File: ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json)
Hash identifier: n3FPsVnkmUhEqXIvE7T7VmiavqKB/TzJbXQdDGYZFWg=
Subject key identifier: 6A:46:37:D8:3F:61:33:8A:13:2E:C0:F6:6E:5B:32:D6:F1:EE:0D:7E
Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
Certificate issuer: /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Certificate serial: 0197B7458BE88C79BBF3181BD21DC030858E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
Manifest number: 0D9F
Signing time: Sat 28 Jun 2025 16:01:17 +0000
Manifest this update: Sat 28 Jun 2025 16:01:17 +0000
Manifest next update: Sun 29 Jun 2025 16:01:17 +0000
Files and hashes: 1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: TX5k4GzbuFNH8whQn8DxyIWdieIBvqG3dkHMqmglEhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:8b:e8:8c:79:bb:f3:18:1b:d2:1d:c0:30:85:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Validity
Not Before: Jun 28 16:01:17 2025 GMT
Not After : Jun 29 16:01:17 2025 GMT
Subject: CN=6a4637d83f61338a132ec0f66e5b32d6f1ee0d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f6:f4:de:01:d7:aa:0d:07:d0:8a:4e:e8:ae:
d4:04:4e:6c:fb:d2:6e:94:dc:8c:9f:7c:99:ed:75:
46:cf:90:f0:00:a1:82:b9:02:50:26:12:61:bb:16:
0e:a7:7b:c6:19:1e:29:fb:09:aa:ed:c8:3f:12:b9:
6a:e6:51:4a:74:a5:73:c1:d6:d5:9c:f5:f7:7f:9d:
11:b4:97:c9:41:d7:aa:89:d7:a8:4a:13:33:7c:64:
fa:29:b7:16:8a:c5:06:17:2e:2f:3d:2b:e8:1e:9c:
a4:d1:34:9d:39:2b:5c:20:68:d5:fd:e4:6a:00:47:
43:dc:39:83:38:e5:2d:fc:3a:ad:d2:68:2f:d1:61:
3a:6d:d5:d0:bd:82:37:27:9d:3c:f1:21:12:0d:5a:
21:d0:77:51:5b:22:a7:1a:f6:01:4a:6e:c3:18:df:
0e:a5:cc:7d:44:ed:0f:b7:0e:20:75:9f:78:15:ae:
67:84:b5:9f:2c:f9:bc:90:e8:1c:dd:f8:99:47:9d:
90:69:3a:8a:6a:86:d6:5c:a6:3e:b6:c3:d9:7d:b1:
68:e3:c5:e4:53:d8:c7:00:86:4a:ca:dd:6c:f5:ce:
78:0d:f0:ce:6a:99:28:e7:10:31:de:4f:3c:b7:58:
09:69:62:28:0b:49:d5:90:ea:cb:37:b5:0e:1c:94:
a9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:46:37:D8:3F:61:33:8A:13:2E:C0:F6:6E:5B:32:D6:F1:EE:0D:7E
X509v3 Authority Key Identifier:
keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:35:0a:59:90:79:e8:f0:11:7f:f8:ba:fb:8b:bd:11:d5:fc:
ae:34:94:ab:a7:ac:c6:1c:c6:ad:5a:2b:f5:8a:09:af:e3:42:
27:2e:2f:8d:a9:50:8d:e5:c6:29:2e:4e:61:5b:62:6d:e4:c1:
26:23:02:9c:73:40:4f:b9:1d:86:4b:1f:73:b6:f7:51:74:b3:
4c:95:fd:94:4e:24:98:ae:64:c8:ee:de:56:62:56:ee:6c:9a:
d6:e9:2d:21:7e:8d:3b:31:3b:b4:c9:79:4a:3e:05:16:18:70:
eb:5c:e6:47:46:14:07:8b:0e:4d:3f:77:bb:c3:eb:6e:83:7c:
03:38:ef:2d:01:9e:03:85:0f:cc:ea:82:d3:98:4a:92:67:06:
24:4f:ed:dd:c2:e9:c8:9e:90:43:05:9e:b6:84:eb:7c:c2:7c:
27:5d:1f:5a:a0:b6:c0:78:ed:8b:70:c8:fc:ce:0f:ec:94:98:
90:5f:8a:40:aa:64:2f:72:db:45:1a:70:80:31:a6:b2:a0:21:
e2:e7:9c:80:16:19:e5:a6:a5:6e:c8:e5:1a:8b:0a:03:a3:2d:
72:8a:e5:2a:a9:a6:ea:5e:16:bc:fc:a3:94:09:9e:74:0d:8a:
c4:84:03:44:7f:84:9b:ad:df:28:3a:cc:ec:06:90:8c:a9:ef:
ed:1a:93:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:28:41 2025 by rpki-client