Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: 8P3VoqSIOgeIP2LT1U0zufGXJ2wYt40RApu2LYrx0Ys=
Subject key identifier: 40:2B:AA:AF:29:65:D6:61:DD:A3:5A:FC:6F:57:B0:C3:10:FA:13:D4
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 0198477843CACF72CB1A9059E2F572A43FE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 1601
Signing time: Sat 26 Jul 2025 16:02:00 +0000
Manifest this update: Sat 26 Jul 2025 16:02:00 +0000
Manifest next update: Sun 27 Jul 2025 16:02:00 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: j4BgVrcaqmmKu5LI4f1eqfmH5S9bvsWaJ+LT3tNRk/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:78:43:ca:cf:72:cb:1a:90:59:e2:f5:72:a4:3f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Jul 26 16:02:00 2025 GMT
Not After : Jul 27 16:02:00 2025 GMT
Subject: CN=402baaaf2965d661dda35afc6f57b0c310fa13d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9b:15:61:74:49:ff:26:c9:a6:8e:b4:99:97:
aa:b1:fc:d7:4c:a0:7f:d4:39:43:a3:0b:29:9c:a9:
ee:d1:09:c5:6c:29:c6:99:ba:fa:66:b7:7f:da:24:
17:71:48:82:34:ba:4a:06:3b:24:93:6e:aa:e1:04:
64:12:1b:ca:af:c4:0e:46:9f:3a:bd:d0:26:c5:35:
47:c4:c2:34:7e:e6:38:62:c1:80:c6:1a:df:2f:4b:
08:c0:42:0e:24:b7:1e:01:d1:84:21:f1:ca:85:fb:
2a:69:d5:7c:22:fb:0a:d1:cd:7c:1f:db:7f:b0:2c:
a6:70:e6:54:5c:82:8b:0e:c1:3a:de:cb:01:6e:d6:
17:41:81:32:d9:73:10:d2:e0:b1:c2:f2:83:3b:57:
70:de:ff:68:04:79:8f:52:b5:04:31:c2:54:0f:74:
26:e5:ec:b8:50:13:8f:b8:db:b4:2a:75:d5:32:25:
0e:9f:f6:d3:e9:b7:4a:98:57:15:c0:1d:62:19:ca:
51:7b:d4:81:45:e4:cb:7d:32:6b:d8:14:d6:05:94:
89:bb:a4:ac:25:e4:0a:6b:7d:2d:33:c2:95:43:49:
8c:de:73:b7:7f:b2:e3:a2:9d:67:8c:7d:a9:4c:6e:
ed:cc:19:f5:e7:c4:98:87:62:61:16:a6:e7:91:3d:
62:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2B:AA:AF:29:65:D6:61:DD:A3:5A:FC:6F:57:B0:C3:10:FA:13:D4
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:17:25:04:25:cb:66:2e:ed:4b:9e:f2:7b:98:4e:a3:8e:e6:
c4:58:e7:02:48:23:7c:ad:26:39:4b:8e:38:c1:3f:bc:ce:b8:
21:66:e4:0c:7a:1c:50:35:cd:20:a5:d6:5e:d9:c5:ba:4a:f1:
c5:bd:dd:25:ed:dd:81:06:8d:6a:c2:57:fb:5c:0b:83:94:e2:
f8:22:ba:1e:d5:56:c6:5a:ba:d4:ef:a8:44:77:c0:4e:5c:72:
91:0a:34:5e:5a:f8:04:28:ff:77:ac:81:95:40:d9:83:20:e6:
87:32:f6:1a:c3:66:6d:1d:3b:e7:0c:a8:36:ba:e6:d0:85:fe:
cc:25:9f:a2:d9:d2:09:cf:6c:0e:71:5b:f2:7f:e6:52:01:b7:
aa:40:68:a7:ef:1f:56:5e:be:04:74:d2:a4:e7:a1:fd:ed:64:
55:6a:2b:ca:cb:47:58:a7:cc:dc:9c:81:61:52:e9:82:13:03:
64:36:a7:66:50:2a:f5:9c:4b:97:17:65:3c:df:58:8c:87:b8:
0f:94:b4:84:d0:e7:a6:5c:9c:46:c5:68:ce:60:4b:f7:e6:32:
5a:ea:c5:f8:a7:f3:3b:64:0e:bc:24:9f:61:4e:f7:c4:2b:2d:
20:19:4d:a1:bd:d3:bb:e9:ec:ee:36:3d:43:51:d9:c7:d4:d8:
89:22:83:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 21:04:20 2025 by rpki-client