Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
File: ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json)
Hash identifier: i2MlM0HmhEM4fgDkDPJP7Et+e6eRDZRoW+OKE0oHqdE=
Subject key identifier: AA:75:0E:A0:9B:92:FA:79:F4:E2:0B:B5:E9:69:42:7D:F6:A2:12:30
Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
Certificate issuer: /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Certificate serial: 019922556D94FEB604FA9D82D27C0E97EDB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
Manifest number: 0E5B
Signing time: Sun 07 Sep 2025 04:00:47 +0000
Manifest this update: Sun 07 Sep 2025 04:00:47 +0000
Manifest next update: Mon 08 Sep 2025 04:00:47 +0000
Files and hashes: 1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: tc/btlSB95vOPQeUdA7pbyg1dF/Wy+eVkUE48En/gYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:6d:94:fe:b6:04:fa:9d:82:d2:7c:0e:97:ed:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Validity
Not Before: Sep 7 04:00:47 2025 GMT
Not After : Sep 8 04:00:47 2025 GMT
Subject: CN=aa750ea09b92fa79f4e20bb5e969427df6a21230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:40:b5:0f:c7:10:b5:e9:af:8b:8a:15:2c:c1:
95:17:b7:fe:58:67:44:63:44:5a:55:21:07:75:bc:
cd:81:65:0c:c2:83:99:e1:a8:7c:3d:cf:da:60:a3:
ae:27:ec:7a:8f:bd:10:74:bf:c1:bd:d8:5f:13:cd:
5a:52:18:c0:eb:37:36:bc:61:df:78:b9:f9:7d:8e:
fa:1e:3e:08:84:af:70:6d:9e:31:5b:a8:80:b8:1a:
26:1a:1a:e6:3f:81:e3:b6:a8:0f:24:d2:e2:ad:6c:
8b:be:f8:c2:2f:b4:b1:09:72:d1:3b:e0:c1:ba:cd:
1e:5c:d3:21:f5:ed:3e:ee:ce:38:6f:03:6a:b7:82:
6b:44:3f:ca:55:5c:57:56:f7:c5:3f:72:95:72:c0:
a2:c6:ee:5a:12:73:65:54:03:82:f6:16:33:a5:01:
97:14:9d:64:9c:27:55:53:a9:b1:99:0f:4e:c6:06:
40:2c:ed:fe:92:b4:56:aa:82:97:12:15:2e:8a:ec:
e5:2d:7e:b1:d3:7d:28:31:25:db:6c:16:c8:34:96:
1f:99:07:37:0e:6c:30:0f:62:1b:43:04:62:08:87:
3e:ab:d4:1f:f1:d6:94:9a:4b:50:7b:1e:53:3e:5a:
6d:26:9f:a3:04:3a:13:4b:5f:13:24:98:50:fd:aa:
be:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:75:0E:A0:9B:92:FA:79:F4:E2:0B:B5:E9:69:42:7D:F6:A2:12:30
X509v3 Authority Key Identifier:
keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:cb:0b:fa:b4:73:cc:92:d3:29:1e:7d:39:36:91:f9:de:1b:
1d:6c:68:9a:ef:3d:6e:48:5f:c3:1b:5e:85:cc:a8:d3:80:a7:
db:79:8f:7e:8d:7f:8e:78:a4:65:f1:6d:89:c9:f8:b2:b4:9e:
ce:e0:77:d5:9b:a5:c2:47:49:17:c8:62:03:f4:a4:f3:83:59:
59:0e:26:7d:ba:0b:cc:61:11:11:a9:fe:53:17:9a:f1:1e:bb:
a6:2a:67:be:b2:68:47:aa:6e:b0:a2:a3:ce:16:01:3e:02:ff:
53:2e:7d:d3:ea:19:57:2a:de:ec:ff:f6:ed:0c:25:eb:1f:33:
8f:01:1c:4c:4b:36:05:a2:8d:44:ce:99:f3:b1:de:e3:1b:64:
51:de:d9:fb:41:61:8c:d9:4d:f5:f3:dd:84:45:10:94:ad:c4:
3f:09:3d:27:fe:95:4a:91:2d:f8:11:da:a0:a0:ab:51:df:d8:
61:51:c2:f7:3f:52:cc:d5:08:77:6f:2b:60:13:ae:53:fd:f0:
91:7a:06:01:26:af:6a:26:be:29:7e:12:0e:30:c3:47:f1:28:
ae:5a:6c:0b:9e:b1:ed:8a:d0:8e:4f:90:42:01:9a:00:1c:97:
65:3f:9d:af:12:ac:72:55:07:fb:38:e4:73:5f:bb:cf:33:61:
0d:f2:73:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:31 2025 by rpki-client