Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
File: ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json)
Hash identifier: j+vWVXXOEfr6AJqxS8t74iOFt3er6WhlH5EDqYKScUY=
Subject key identifier: 4C:3F:BC:C6:26:6C:F6:A4:E9:C6:20:B4:AC:A6:38:C7:29:54:68:D5
Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
Certificate issuer: /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Certificate serial: 018F87ED325BE684615E454C622F00ED0AE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
Manifest number: 0962
Signing time: Fri 17 May 2024 19:00:19 +0000
Manifest this update: Fri 17 May 2024 19:00:19 +0000
Manifest next update: Sat 18 May 2024 19:00:19 +0000
Files and hashes: 1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: Oe/Z7/YkzRTXe3OQxanZmFZjhV1A4pHwRJ0fTDnhmfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:32:5b:e6:84:61:5e:45:4c:62:2f:00:ed:0a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Validity
Not Before: May 17 19:00:19 2024 GMT
Not After : May 18 19:00:19 2024 GMT
Subject: CN=4c3fbcc6266cf6a4e9c620b4aca638c7295468d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:47:3b:f9:f3:bd:2b:6d:ab:c6:93:37:7f:f4:
60:41:08:2e:65:ae:42:a2:81:de:03:41:f3:0f:4b:
8d:59:3e:a9:4e:70:bc:0d:9b:76:44:37:dc:6d:ed:
36:76:31:02:cc:f5:ae:2e:67:d7:6d:34:3b:0d:8c:
58:d0:60:d8:8c:d9:77:9a:9d:93:d0:ff:77:75:3d:
b4:1a:88:3e:7f:77:fd:05:3e:f1:a3:fe:10:9f:81:
7a:fd:e1:3c:4f:99:eb:c4:25:f7:86:6a:de:f6:15:
17:82:da:8d:cc:eb:75:5a:b0:04:d3:66:b2:09:7e:
27:58:d2:6c:e7:9b:9f:34:c8:95:b4:c1:a2:5f:fa:
42:9b:d2:79:2d:ee:49:be:53:07:3d:52:7a:6e:55:
17:85:a0:28:d3:68:01:68:59:2d:47:08:66:ec:2e:
36:73:9c:d6:73:9a:c2:89:0e:47:41:68:89:1d:30:
43:ac:95:b7:ab:e9:8e:3d:f4:22:68:6d:1a:95:85:
7e:66:4d:8b:28:a8:55:dd:7f:7a:27:fa:25:31:fe:
c4:8a:34:72:88:f7:81:1d:ef:85:3d:aa:93:b7:6e:
a4:9e:b7:db:32:84:c2:b0:c6:27:02:e6:e0:a6:4d:
a6:c7:03:75:a2:b3:b1:cc:76:c6:9f:cf:e3:d9:b6:
48:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3F:BC:C6:26:6C:F6:A4:E9:C6:20:B4:AC:A6:38:C7:29:54:68:D5
X509v3 Authority Key Identifier:
keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:13:cc:83:1f:19:5f:77:2d:cb:06:f5:d4:8b:12:55:18:ec:
c0:49:5d:25:de:f5:cc:95:c7:22:2b:87:75:88:87:7c:7c:69:
18:49:52:bd:a8:7e:28:99:c1:a4:04:28:79:6c:de:42:79:22:
b0:12:98:20:18:01:1e:d8:36:70:4e:1e:36:0f:02:47:c9:3a:
2e:be:bd:29:e6:9a:a2:ff:5a:2f:db:fc:98:9f:fc:51:b2:6d:
d4:60:51:c4:74:34:9b:c6:84:d8:a3:ba:65:b6:ec:17:34:ea:
53:d9:a5:54:5e:88:76:bc:43:d0:1a:bb:ab:60:51:d6:63:71:
a2:b4:86:73:e9:46:f1:9e:84:e8:ba:89:aa:6c:c5:b8:cb:15:
6c:17:09:15:78:d0:97:3e:db:ad:99:d3:dc:23:41:07:6e:35:
7e:8c:30:8b:78:b1:ec:c8:11:d5:9b:13:10:d3:74:e8:ec:14:
e6:ef:26:ee:d2:e7:ca:76:a7:5d:eb:f4:26:e3:a7:37:ea:c1:
8c:8a:14:47:4c:f8:6e:4f:48:f4:2e:59:dc:e2:b9:2d:8e:9e:
57:9c:72:82:d1:0e:56:c6:5e:50:ff:7e:33:87:5d:f5:2f:99:
4e:2e:bd:99:c0:bb:d1:3d:54:d5:6e:55:57:f5:c8:3f:7f:5a:
d3:e2:25:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7TJb5oRhXkVMYi8A7QrmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzMmZiODJiOGQwMjkwYjFjYTU4Y2M3ZjFiZWQ2M2U0ZTQz
N2EwY2IwHhcNMjQwNTE3MTkwMDE5WhcNMjQwNTE4MTkwMDE5WjAzMTEwLwYDVQQD
Eyg0YzNmYmNjNjI2NmNmNmE0ZTljNjIwYjRhY2E2MzhjNzI5NTQ2OGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEc7+fO9K22rxpM3f/RgQQguZa5C
ooHeA0HzD0uNWT6pTnC8DZt2RDfcbe02djECzPWuLmfXbTQ7DYxY0GDYjNl3mp2T
0P93dT20Gog+f3f9BT7xo/4Qn4F6/eE8T5nrxCX3hmre9hUXgtqNzOt1WrAE02ay
CX4nWNJs55ufNMiVtMGiX/pCm9J5Le5JvlMHPVJ6blUXhaAo02gBaFktRwhm7C42
c5zWc5rCiQ5HQWiJHTBDrJW3q+mOPfQiaG0alYV+Zk2LKKhV3X96J/olMf7EijRy
iPeBHe+FPaqTt26knrfbMoTCsMYnAubgpk2mxwN1orOxzHbGn8/j2bZIVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEw/vMYmbPak6cYgtKymOMcpVGjVMB8GA1UdIwQY
MBaAFJMvuCuNApCxyljMfxvtY+TkN6DLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9kM2IzYWItNTNhMS00OGZmLWEzNDQt
ODJkMzNmNGJhYzQ1LzEva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9kM2IzYWItNTNhMS00OGZmLWEzNDQtODJkMzNmNGJhYzQ1
LzEva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANhPMgx8Z
X3ctywb11IsSVRjswEldJd71zJXHIiuHdYiHfHxpGElSvah+KJnBpAQoeWzeQnki
sBKYIBgBHtg2cE4eNg8CR8k6Lr69Keaaov9aL9v8mJ/8UbJt1GBRxHQ0m8aE2KO6
ZbbsFzTqU9mlVF6IdrxD0Bq7q2BR1mNxorSGc+lG8Z6E6LqJqmzFuMsVbBcJFXjQ
lz7brZnT3CNBB241fowwi3ix7MgR1ZsTENN06OwU5u8m7tLnynanXev0JuOnN+rB
jIoUR0z4bk9I9C5Z3OK5LY6eV5xygtEOVsZeUP9+M4dd9S+ZTi69mcC70T1U1W5V
V/XIP39a0+Il2w==
-----END CERTIFICATE-----
Generated at Fri May 17 20:10:43 2024 by rpki-client on console-ams.rpki-client.org