Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
File:                     ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json)
Hash identifier:          jgZSUAiAQDPF6eBtdcs1AjVdKvYbywQQvGZjZUTmqqU=
Subject key identifier:   8C:70:AF:3F:5E:1D:25:68:D5:75:40:BA:12:FC:52:BF:84:26:EB:93
Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
Certificate issuer:       /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Certificate serial:       019EB76A280236A7E73FAEDEEFE9F9584998
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
Manifest number:          113F
Signing time:             Thu 11 Jun 2026 16:00:47 +0000
Manifest this update:     Thu 11 Jun 2026 16:00:47 +0000
Manifest next update:     Fri 12 Jun 2026 16:00:47 +0000
Files and hashes:         1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: UPdF2pZggrXsyCeGor/MHaUnfT18Ly3CQtlx8m8cMTw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 13:27:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b7:6a:28:02:36:a7:e7:3f:ae:de:ef:e9:f9:58:49:98
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
        Validity
            Not Before: Jun 11 16:00:47 2026 GMT
            Not After : Jun 12 16:00:47 2026 GMT
        Subject: CN=8c70af3f5e1d2568d57540ba12fc52bf8426eb93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:9b:d7:53:5c:47:d4:e0:db:4c:fa:b5:72:93:
                    4b:51:44:2e:ab:ed:8e:c3:63:a9:48:b6:65:bc:8e:
                    d9:ba:85:5e:ba:bc:2b:d5:b8:d7:fb:94:c0:68:2b:
                    4e:40:53:63:63:70:1c:d5:91:00:d1:8f:b3:ef:51:
                    40:72:38:b8:b5:43:64:7b:16:f2:74:5d:e3:97:25:
                    fe:30:43:f0:cb:cc:4f:46:0f:73:c7:de:4f:ff:50:
                    b9:10:c1:02:61:0b:e7:dc:da:3a:e3:fe:d1:b6:e2:
                    fe:20:32:a6:3f:30:13:1a:d0:e4:52:b2:5b:1e:ca:
                    fc:a5:a1:99:cf:71:0e:b2:47:c8:c6:98:92:67:4e:
                    e8:5c:a5:99:7e:b9:b9:d6:24:7b:1e:73:e0:c6:88:
                    19:56:28:7f:a0:e2:e8:03:47:2e:65:0f:99:c4:38:
                    1b:00:6b:cc:01:49:81:8f:a4:5a:31:44:b9:da:d7:
                    98:92:1b:ab:95:da:b1:df:b3:80:7c:c1:68:da:04:
                    52:87:69:5d:1d:48:22:09:f1:45:97:5c:89:a8:e8:
                    82:3a:bb:c5:56:8c:91:99:79:85:78:66:10:ff:00:
                    5e:ca:4b:7e:a3:1a:a2:e5:8b:8a:aa:d1:6e:c1:41:
                    ac:f7:b5:21:88:91:3d:10:db:45:59:68:03:48:d1:
                    0c:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:70:AF:3F:5E:1D:25:68:D5:75:40:BA:12:FC:52:BF:84:26:EB:93
            X509v3 Authority Key Identifier:
                keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:d3:69:d4:02:15:84:ec:15:ec:98:9d:18:af:31:6a:71:16:
         ca:a1:d9:9b:41:36:69:fc:8f:1f:05:20:e3:43:0c:ff:2e:53:
         98:71:10:8e:34:d2:13:3d:a2:f0:84:62:9b:69:6b:ba:99:bc:
         e5:37:44:51:47:06:a0:44:fa:86:ba:66:3e:f9:b7:f1:86:c4:
         d9:0a:50:bb:e9:09:37:f7:62:2e:15:55:64:aa:d1:f7:b3:0d:
         cc:1d:9e:7d:93:a6:f4:46:2c:bc:af:75:58:bb:11:1d:e4:9f:
         02:7b:6d:d7:79:46:33:1b:7b:81:36:91:5d:b3:f8:dd:78:fd:
         3a:0e:3e:aa:e1:48:14:89:44:0c:87:95:6c:51:25:49:25:cc:
         64:f6:01:77:ba:b1:cd:23:54:a6:92:78:b3:55:60:72:49:b5:
         3c:73:43:97:e1:1e:ca:14:a0:37:18:d4:6e:f2:d1:bc:6b:c8:
         cd:f1:7c:39:bb:1f:1c:78:28:14:88:f2:d3:3c:56:bb:5e:3a:
         d4:29:5e:bc:b4:f1:98:7e:66:33:bf:97:f3:48:88:a2:36:54:
         fc:f2:9a:14:75:50:d0:a0:6b:7f:e4:9b:0e:0f:04:4d:ea:b5:
         dd:ac:61:2e:5b:70:ab:a7:3d:b0:03:67:dd:48:80:4f:bb:b7:
         ac:43:c7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----