Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: p4GFGGCxES6obgMYpsaZ15qfOFoQ9dTpt03ig49NAbo=
Subject key identifier: 04:F9:43:F3:C8:36:2F:35:AA:EA:3E:3C:E2:05:45:F0:5A:9E:D4:88
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 0197B6A04FEC5482A7BD9EE6763F903D5300
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 13:00:48 +0000
Manifest this update: Sat 28 Jun 2025 13:00:48 +0000
Manifest next update: Sun 29 Jun 2025 13:00:48 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: b50muG5t/mSCOnOI1lNPRc8sXIQN73YXS84ZhKkeNiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:4f:ec:54:82:a7:bd:9e:e6:76:3f:90:3d:53:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Jun 28 13:00:48 2025 GMT
Not After : Jun 29 13:00:48 2025 GMT
Subject: CN=04f943f3c8362f35aaea3e3ce20545f05a9ed488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:55:82:2a:72:b7:71:db:7f:a7:58:0e:ca:6d:
45:3a:e8:b4:a1:27:34:30:fc:10:51:c3:ec:09:89:
aa:1f:49:2f:4e:18:23:fd:fc:05:48:61:67:bc:77:
97:84:7e:43:0f:22:93:a2:0c:18:46:61:2a:3b:17:
9d:22:fb:e9:6b:0e:1e:df:75:37:ae:f2:ad:6f:7c:
f4:35:3c:b0:9b:bc:43:9e:8c:f0:60:63:c9:89:6b:
80:71:86:65:1c:3d:9e:5f:d7:4e:28:e5:1f:f3:79:
65:16:95:c2:68:a3:6e:74:a4:e5:55:27:d7:67:2b:
92:b2:0f:9b:d9:da:01:66:2c:9e:cd:22:e4:f6:11:
1c:e0:a3:28:9c:1c:a8:1c:7d:cc:89:3c:d9:44:3c:
6e:2e:1e:d6:04:2d:53:6e:9a:32:46:3a:03:70:2b:
3b:ee:47:9a:e9:96:34:f6:1d:2c:db:c9:e6:ff:40:
e4:a3:29:40:02:68:92:cd:60:80:7b:61:c5:8a:d0:
a5:1f:0e:c1:97:e7:26:9b:ea:22:63:51:87:49:e2:
19:82:24:f2:34:b2:66:c2:13:1e:6b:0f:c4:01:6d:
8a:32:04:3b:66:bb:05:f5:f6:43:e2:e4:54:e5:a0:
23:32:80:86:d1:3e:d0:ee:de:99:0c:58:3b:ec:07:
61:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F9:43:F3:C8:36:2F:35:AA:EA:3E:3C:E2:05:45:F0:5A:9E:D4:88
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:11:59:71:91:5d:05:3d:fc:0c:17:da:f0:f1:97:2a:b6:6b:
44:6a:a0:0c:71:b3:ab:1d:10:13:2a:b7:58:8d:0e:ea:1a:1a:
c4:7b:5b:44:4d:86:d7:b4:11:0e:98:a1:2d:9d:25:9a:63:5b:
2c:4a:31:b7:22:87:c9:32:0d:4f:54:73:15:c6:7e:ae:55:25:
10:a1:a3:a3:9a:1a:5f:c3:6d:37:53:7c:dd:46:f3:2e:95:5c:
c0:8c:d7:ad:53:f6:84:e2:44:f1:b7:a3:44:0c:47:8d:d0:db:
14:2b:3f:e3:20:d6:de:c4:13:ba:fb:5d:b4:51:02:f7:11:c5:
4c:c1:0c:34:a5:cb:43:40:b1:3b:10:68:57:14:71:0b:71:c7:
c5:63:eb:c6:5c:22:82:d4:49:ab:c1:5c:fe:03:9e:f9:56:a9:
a6:55:5d:b4:e6:75:8b:89:c3:e0:c1:d1:df:78:8a:9d:68:cb:
23:f0:62:4e:60:2e:25:00:96:ff:1f:fa:78:9c:af:80:5b:13:
4b:0d:78:f9:83:71:54:0e:8c:39:7f:fd:4d:cd:21:8c:51:d7:
97:2a:97:7b:a7:e2:50:65:55:87:17:6c:e2:d2:39:9e:f6:03:
ec:87:49:cf:70:70:d0:04:f4:a3:c2:75:00:c2:09:c4:7a:d2:
d3:ad:9d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:33 2025 by rpki-client