Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: F5NwBboiGgcl9X2qUiQGdr0vsZt6QJveI4qFeu4LRkc=
Subject key identifier: 01:41:4B:0D:45:7B:22:D6:25:19:06:2E:B0:79:D1:5B:FE:B8:50:1D
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 01974A7ACCE2C9EE6CBD1D5FDBBC75B2DEA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 13:00:51 +0000
Manifest this update: Sat 07 Jun 2025 13:00:51 +0000
Manifest next update: Sun 08 Jun 2025 13:00:51 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: hDJkMbp5/6s1QcpT5Hb66Hmolq4faua1mSZhIoBmmTc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:cc:e2:c9:ee:6c:bd:1d:5f:db:bc:75:b2:de:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Jun 7 13:00:51 2025 GMT
Not After : Jun 8 13:00:51 2025 GMT
Subject: CN=01414b0d457b22d62519062eb079d15bfeb8501d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9d:e2:9d:08:40:d0:37:dc:a1:84:a7:df:97:
f8:c3:49:69:c1:e2:d2:53:9a:63:21:74:0e:3c:e7:
95:41:38:27:37:61:dc:8f:41:7b:cc:ed:45:49:0c:
6b:23:d6:24:df:38:8d:7e:da:a0:bd:52:fc:45:36:
af:27:f6:fe:87:c6:b7:8f:48:71:28:15:46:4f:ac:
ca:ef:b8:e6:9b:1b:69:9f:b4:70:36:79:83:e1:1b:
7a:04:e2:11:1e:54:0b:1a:76:47:89:d5:56:2d:3f:
33:cb:c3:1a:c2:cd:24:f4:69:ca:c5:b3:8f:2e:1d:
a3:e2:85:0e:df:78:e8:69:de:62:9c:1a:c1:c0:5d:
93:7b:a4:ac:6d:05:70:86:93:23:1d:91:db:b7:80:
26:b0:3f:dc:c8:b8:66:35:66:a0:96:04:50:0a:75:
38:c2:6d:e4:9e:57:22:93:70:88:23:bf:45:26:21:
b0:8b:ed:cc:60:25:c4:ed:35:0e:b1:13:ac:4a:e8:
71:61:2a:5f:f2:19:c0:27:0a:c4:12:c0:81:ae:c7:
a5:d0:cb:53:f4:24:93:c0:65:57:1e:60:86:20:8b:
bb:72:11:ac:3e:cc:70:18:d3:b2:bc:2f:15:65:6f:
75:ce:c7:28:cd:ee:ca:7c:1a:0f:eb:d3:c8:66:50:
8d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:41:4B:0D:45:7B:22:D6:25:19:06:2E:B0:79:D1:5B:FE:B8:50:1D
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d8:4f:ad:75:bd:d8:f7:82:62:2b:f5:b0:2e:58:f7:5c:f3:
50:d3:b3:a3:72:ad:ca:f3:4c:ab:5a:a1:87:d5:da:09:6b:7a:
0b:3a:b2:18:f4:b5:9a:d5:b6:8c:a8:f8:94:2d:72:6f:a1:07:
01:4e:63:f0:f1:d8:72:44:f0:87:f7:c6:48:cc:25:23:3a:eb:
9d:82:2a:ed:52:8f:bc:80:51:44:7d:b3:10:bd:06:17:c7:4d:
ad:d1:e5:c0:76:ec:93:ab:4e:e3:a2:97:b0:a9:ed:9b:91:a6:
9e:4f:84:b2:e5:7d:c8:e0:1e:d1:c5:fd:99:21:9f:b5:8a:38:
09:9d:ae:20:d7:cd:ec:78:5a:3a:e6:1f:8b:78:cb:78:6e:77:
2e:62:d6:21:5f:9b:e9:b3:dd:f7:3f:cc:23:4a:d3:3e:2e:e5:
8f:1b:e2:38:91:42:f4:f8:7f:bd:6b:14:55:b7:16:5a:9b:0c:
49:f9:5d:d6:01:5e:ae:16:eb:7b:d8:29:bf:98:d5:b1:31:32:
e2:ac:0f:9c:f8:7a:e0:a4:7e:89:f2:46:72:7d:4d:c5:ca:38:
9e:6b:2f:80:73:fb:ae:7d:0a:8e:5f:c0:f9:f1:e6:41:2f:94:
2a:9d:8a:14:4e:14:6d:ec:74:68:eb:1f:2e:c5:8d:8e:eb:49:
7e:91:a4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:50:58 2025 by rpki-client