Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: Nqyv7SR6RlENMvAlH6wIxR8BJHY/BeTd+wjQ4GyfDwI=
Subject key identifier: 95:9C:22:0E:0F:56:A3:43:40:74:A2:A0:47:89:3D:FB:D5:1B:24:0F
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 0196A0885F82BBD6FCBE5489EF3FEC682099
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 1526
Signing time: Mon 05 May 2025 13:00:13 +0000
Manifest this update: Mon 05 May 2025 13:00:13 +0000
Manifest next update: Tue 06 May 2025 13:00:13 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: yoIJ8R0DBa2UHQAn/utq+D4cWs2vTvBiv1112WGzpnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:88:5f:82:bb:d6:fc:be:54:89:ef:3f:ec:68:20:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: May 5 13:00:13 2025 GMT
Not After : May 6 13:00:13 2025 GMT
Subject: CN=959c220e0f56a3434074a2a047893dfbd51b240f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:10:a0:af:23:f1:a5:59:4f:22:94:55:72:0f:
f3:56:7e:9d:f6:82:a0:ca:82:72:39:a4:7f:58:04:
37:03:3d:f6:af:68:8f:e0:5b:83:c1:be:27:4e:12:
4c:5a:69:5f:77:e4:a1:92:f5:64:3d:a9:1e:68:07:
b5:4c:0c:cd:b5:c3:bf:b3:9b:a8:82:59:6f:be:3f:
79:41:3f:00:59:19:e6:6d:c0:a5:f9:a3:e6:05:88:
2d:72:4d:aa:4b:d5:33:47:08:66:a3:4b:21:1a:37:
73:8d:41:ee:e3:88:81:ee:d9:d8:b4:9e:88:f9:12:
27:90:db:bc:ec:8d:ac:08:44:45:a1:0e:9a:c6:a7:
cb:70:52:4c:45:1f:66:cc:ca:59:01:eb:ee:2b:ab:
2d:13:90:52:ec:0c:b4:74:38:cb:cb:e8:d4:56:38:
4e:50:54:0b:e3:8b:9f:e6:ba:2e:ac:2b:e3:f5:21:
9b:bd:f2:7a:d9:e4:ec:57:51:0f:e1:88:4b:ce:61:
e7:52:6e:3d:72:66:37:25:57:be:81:5f:c9:14:2e:
83:3b:d2:15:50:d7:01:a4:84:db:fb:d0:d6:37:89:
02:9d:f2:4d:ef:42:d2:2d:31:9a:54:72:50:df:6d:
ce:3f:13:64:70:b0:84:45:39:2d:40:1b:7e:bc:59:
8b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9C:22:0E:0F:56:A3:43:40:74:A2:A0:47:89:3D:FB:D5:1B:24:0F
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:6c:21:9c:84:ab:0a:5b:a9:9a:f1:bc:0e:7c:ed:a9:b3:cc:
7b:3b:61:ae:c0:c3:03:39:81:be:0d:08:76:9f:c9:93:0e:8d:
e3:66:4b:8e:4f:cc:5a:e2:d1:f0:88:e1:e8:5e:f7:16:5c:78:
9b:d4:85:00:0d:1f:97:6f:ff:99:b0:75:fb:f9:d2:98:40:9a:
56:03:47:95:fb:c9:d6:68:26:96:82:ab:f0:65:8f:4c:3b:44:
c0:61:3f:3b:80:17:56:f7:78:87:0a:e7:90:a8:3e:ec:7a:b4:
fd:35:85:4b:de:e8:d3:fa:35:87:34:5b:c9:ea:60:f8:0b:5d:
d8:2a:77:f0:8b:22:20:38:f0:48:4f:be:ec:bb:88:94:e8:d1:
55:e6:3e:83:12:9b:7a:e0:d7:42:a5:bf:94:3d:c6:a6:14:69:
7f:af:d1:30:44:b6:32:23:c1:64:2e:8e:31:71:c3:dc:69:ba:
0a:19:21:c8:94:62:f6:ee:cb:b0:b1:a4:d9:4e:26:ab:ad:d5:
9a:84:a5:dc:c6:70:a1:09:f4:de:eb:5d:fb:5c:de:a1:63:fd:
96:5a:c7:9b:cc:2d:8f:d0:19:97:ee:75:61:34:f5:70:60:4d:
52:1f:d1:ab:99:ac:09:e7:78:1e:bb:e8:46:04:f9:fe:b0:ea:
79:b5:f2:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 16:54:33 2025 by rpki-client