Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
File: ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json)
Hash identifier: XI1RLlXHcIhlgjW6fCzGltDO6bUgaqCcGmFeZ3hSQcw=
Subject key identifier: B8:FE:36:43:D1:55:6F:8B:A3:2E:B9:99:09:B6:48:C5:D7:C7:38:A8
Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
Certificate issuer: /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Certificate serial: 01958EF343343D26E3F99B88E82C4A759BAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
Manifest number: 0C81
Signing time: Thu 13 Mar 2025 10:01:01 +0000
Manifest this update: Thu 13 Mar 2025 10:01:01 +0000
Manifest next update: Fri 14 Mar 2025 10:01:01 +0000
Files and hashes: 1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: F/P2THxSMbsRsky0PkmJueMLPJunilUM+065PpoqSeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 10:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:43:34:3d:26:e3:f9:9b:88:e8:2c:4a:75:9b:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Validity
Not Before: Mar 13 10:01:01 2025 GMT
Not After : Mar 14 10:01:01 2025 GMT
Subject: CN=b8fe3643d1556f8ba32eb99909b648c5d7c738a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1d:eb:7a:98:41:ae:e8:e2:0d:71:51:17:98:
2d:b1:46:a8:45:8d:8d:5c:a2:0b:54:93:5f:37:9a:
f9:10:0a:fc:38:be:6a:c2:b2:08:fa:89:04:b2:0a:
38:e4:e5:b4:15:d4:90:3d:e4:28:f4:40:ce:9f:d2:
16:9c:01:29:61:0f:54:76:ba:63:59:e1:81:81:ec:
6f:af:71:2f:88:df:4d:9d:9a:0a:f4:54:c2:d5:27:
0d:b3:98:84:92:1e:35:10:b4:ab:a6:96:27:0b:0e:
aa:80:b9:92:85:f9:2e:95:5b:c6:fa:79:33:34:d1:
30:a3:3a:f2:d7:8a:f6:57:64:0b:91:60:3f:f1:6a:
eb:90:4c:29:17:1e:ef:9a:47:b7:9f:73:f5:77:d4:
f2:4b:3a:93:94:af:9a:9f:01:06:a5:c9:0d:cf:af:
e1:19:6a:d8:06:25:52:91:a9:bd:7a:62:5b:f5:cc:
a9:23:c3:92:23:cd:ce:10:4b:ad:10:e5:85:e7:b1:
51:73:56:b5:2f:aa:75:d8:49:4d:9b:b5:10:9b:b3:
95:60:04:80:05:fb:75:8c:18:30:50:c4:b6:6e:49:
5a:7f:93:2c:6f:e6:18:c2:a0:a7:01:d1:60:f6:bb:
3b:2f:9f:7a:fc:82:58:1d:42:1e:dd:7c:06:d2:98:
4e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FE:36:43:D1:55:6F:8B:A3:2E:B9:99:09:B6:48:C5:D7:C7:38:A8
X509v3 Authority Key Identifier:
keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:71:7d:40:1b:b9:ed:9c:ed:97:cd:9e:02:08:79:93:1a:2d:
41:bd:69:f2:ee:57:d7:09:88:15:2f:0b:8c:98:24:b1:0d:19:
d5:7b:ae:e4:8b:32:28:f2:4c:0c:4f:e2:c3:09:ee:c6:b5:10:
70:76:54:73:3b:45:fd:ae:67:01:9b:2b:10:3f:c1:f0:73:3f:
ab:0b:ab:5b:d2:85:49:c3:85:f4:25:df:b2:cf:1c:50:1d:1a:
94:68:22:50:41:6e:82:b3:d7:db:4a:af:c4:3e:84:57:8a:24:
d2:df:eb:9a:84:8a:07:ca:01:77:fd:11:dc:c1:cc:72:e9:56:
23:53:37:96:0f:d7:ad:a5:2f:90:e0:d9:1d:1f:07:92:a7:40:
28:9e:62:0a:91:45:b6:15:33:de:d9:04:82:1d:7d:73:fe:76:
e8:8a:e2:6b:c8:aa:6f:cd:12:a0:eb:0a:14:91:ca:ee:be:76:
03:31:4e:6c:1f:25:1a:98:33:37:4e:92:f7:30:ea:c2:36:6c:
7b:3f:62:f5:84:75:89:74:08:65:b2:38:1a:e8:f9:8a:03:cc:
5d:fd:2c:0b:54:eb:be:bd:c8:db:d7:0d:be:ff:7f:63:ad:53:
e9:b4:d8:10:66:28:06:07:7e:e2:b6:90:f6:b8:e3:f8:2e:45:
d0:a2:a7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:41:45 2025 by rpki-client