Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: DC4uJ/Udhaj+Mkaf0+pn/KYZ9pNy4BLDM9bjAtwnrDs=
Subject key identifier: 21:1A:BA:A6:CE:A1:7E:C5:42:1A:58:B4:DC:66:0A:E0:3D:19:EC:D9
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 01963FFA2360A8452CBCEA549981817641EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 14F4
Signing time: Wed 16 Apr 2025 19:01:19 +0000
Manifest this update: Wed 16 Apr 2025 19:01:19 +0000
Manifest next update: Thu 17 Apr 2025 19:01:19 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: 2xK6M0lZR/QBRAWlDDFtSmMUD4AaOtXA61qQcRK59bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:fa:23:60:a8:45:2c:bc:ea:54:99:81:81:76:41:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Apr 16 19:01:19 2025 GMT
Not After : Apr 17 19:01:19 2025 GMT
Subject: CN=211abaa6cea17ec5421a58b4dc660ae03d19ecd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f4:48:2e:87:e2:79:9b:a2:62:5a:58:a2:8e:
df:d4:2e:ad:61:ec:b1:25:c2:a2:56:f9:76:24:de:
de:12:27:67:6e:9a:1f:1a:e5:ac:51:38:78:7b:91:
13:d0:87:d5:d0:1d:51:3a:3c:26:a9:a5:fc:6c:81:
49:32:e7:39:08:dc:fb:7f:16:7d:00:a0:9a:91:de:
9e:71:6c:31:f1:53:20:b2:bf:6f:b1:ad:89:ca:bb:
22:d1:07:e0:e2:05:9b:ee:64:2c:f1:c1:36:28:26:
6a:ff:35:3f:47:72:3d:3b:ae:98:82:0a:a7:a9:f7:
1d:8d:bf:98:88:76:0b:af:2c:f7:3b:76:e4:b7:ba:
4b:35:f4:e0:6f:58:09:2d:66:8a:58:68:51:5a:62:
a3:aa:e0:f1:ae:b9:6f:fd:32:2e:71:39:0c:51:56:
f5:85:18:ee:cb:83:39:df:a2:a3:5f:57:2b:8f:78:
69:15:86:2a:a1:7a:52:7d:f9:ef:68:18:bc:18:92:
27:c7:86:a8:16:dd:75:78:b7:56:5d:4a:6a:ac:df:
d6:57:e2:32:9b:65:68:b1:e3:b1:93:0e:f1:18:d8:
03:3b:41:c0:4c:67:1e:ec:1d:93:d2:59:43:98:58:
82:8c:3c:bf:18:e9:1d:7b:2f:ca:09:34:4f:7a:c5:
99:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:1A:BA:A6:CE:A1:7E:C5:42:1A:58:B4:DC:66:0A:E0:3D:19:EC:D9
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:58:cb:4f:ef:16:3a:5d:22:46:23:c0:28:55:a7:ed:31:75:
09:1d:c2:b0:40:de:6c:81:ba:a0:04:fb:4c:c1:36:7c:ce:bf:
96:a1:3c:3a:0d:c2:6b:88:c8:98:eb:94:18:1d:22:70:f6:76:
df:c5:51:c8:1d:97:54:2b:1e:55:4b:76:55:97:de:5b:dc:df:
87:03:a8:70:df:ac:9e:67:f6:37:f1:7b:33:0d:85:f9:59:fb:
62:31:4a:62:51:42:3c:1b:bf:6d:cd:1c:92:30:2f:b9:6a:60:
89:5c:4e:c6:d4:04:d7:a2:0d:41:52:8a:29:b0:16:67:d0:1c:
62:a3:12:c0:98:22:b3:7d:17:b9:2b:02:f4:c2:86:77:bf:0d:
fe:d1:95:8d:a4:1a:6d:ad:ce:eb:e9:c5:c7:a2:d2:8d:28:d5:
88:b4:b2:23:1f:49:ce:a1:71:96:bc:cf:3d:08:2d:54:2d:63:
13:24:35:48:cd:ff:e4:c3:fb:b0:34:9a:51:37:0b:94:79:22:
70:82:16:9a:87:49:5e:71:9d:6d:b8:f7:5b:8c:be:42:25:e0:
ac:8e:12:b8:fa:4c:bf:73:89:6a:65:ad:0b:37:7f:41:e4:68:
97:99:08:b1:11:0a:e5:ad:c2:ca:98:91:34:e7:1d:f2:11:d2:
2c:f8:83:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:57:13 2025 by rpki-client