
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
File: ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json)
Hash identifier: hp1xlg5n3s0/gdGpw4x6vacZ2c23xyFrd5FuF60SJr0=
Subject key identifier: 49:58:AD:06:BA:A6:A5:BD:15:15:38:55:92:DF:A6:40:6E:80:37:72
Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
Certificate issuer: /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Certificate serial: 01987E2EDEA1BE2FCA584BB24B05AB729F19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
Manifest number: 0E06
Signing time: Wed 06 Aug 2025 07:00:57 +0000
Manifest this update: Wed 06 Aug 2025 07:00:57 +0000
Manifest next update: Thu 07 Aug 2025 07:00:57 +0000
Files and hashes: 1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: wIIsxPiM7su/ISO860pbwwvwRBeFeYA0xvvIrMxb0aM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2e:de:a1:be:2f:ca:58:4b:b2:4b:05:ab:72:9f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb
Validity
Not Before: Aug 6 07:00:57 2025 GMT
Not After : Aug 7 07:00:57 2025 GMT
Subject: CN=4958ad06baa6a5bd1515385592dfa6406e803772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1f:8a:ec:01:7b:6a:59:e3:02:da:ca:d6:c0:
a5:31:7a:93:dc:20:69:0c:3a:4d:b0:68:3d:7a:04:
21:bc:18:26:48:6e:13:e5:c4:84:01:fb:3e:a5:93:
61:3c:fd:ed:87:bd:c2:d9:06:61:9f:6f:03:3f:bb:
b5:5c:0c:b9:fd:4e:a6:27:1c:89:49:72:85:35:55:
1c:6d:5b:30:8b:89:20:cd:1b:ab:e7:3f:f0:d1:76:
0a:ea:48:dc:81:b1:54:78:eb:cb:82:51:8d:34:7e:
99:34:0b:a6:85:b4:17:91:a2:1d:4a:b4:bc:80:7a:
2c:39:a3:43:f9:57:aa:83:d4:c8:1c:83:31:91:64:
9a:e8:72:4f:14:3b:6e:9c:fa:25:64:32:9b:47:20:
9d:c5:29:59:16:90:c9:ae:ae:dc:ae:da:df:d5:21:
8c:7e:8e:f9:b7:88:f2:74:af:f4:d0:c9:bb:c4:0a:
97:13:0f:5e:58:aa:5c:ed:58:08:14:1c:29:81:da:
d7:3a:d6:e4:aa:9c:7a:9d:65:13:72:1f:bf:4f:46:
35:7d:8b:a3:9b:00:0f:9c:53:62:da:02:37:41:74:
d2:be:22:03:d4:38:bb:d7:34:e0:be:f0:5d:ca:64:
94:d6:3e:73:f9:3e:bb:3d:8c:f9:f0:f6:e5:a0:f4:
b7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:58:AD:06:BA:A6:A5:BD:15:15:38:55:92:DF:A6:40:6E:80:37:72
X509v3 Authority Key Identifier:
keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:2b:99:21:62:1e:d9:c3:1a:da:07:f8:84:12:8a:9c:93:7a:
79:5b:52:35:ad:c6:24:b6:f0:e0:60:12:d7:a0:93:eb:29:2b:
d8:50:67:97:41:1a:e6:01:bc:51:b9:5a:30:70:6e:8c:3b:16:
24:57:37:d3:25:6a:6f:ea:56:19:56:52:45:cf:9e:7a:3b:8d:
3a:8e:63:16:28:a0:95:75:60:88:1d:f7:4b:c6:2c:2a:39:76:
e0:82:1f:7c:ff:9b:c3:95:1f:27:a1:45:de:a1:95:91:72:70:
b4:0d:b2:68:a8:c7:4e:e7:b8:4b:84:d3:6d:e8:92:ba:a5:10:
41:53:90:34:c3:e6:15:86:0b:7a:87:45:b4:09:e0:17:93:d5:
b5:a2:85:49:5e:f4:3a:b5:36:14:6f:91:7f:1c:6c:83:15:a5:
26:1a:6d:6d:8a:5f:44:26:6e:9f:63:65:5d:35:6d:0a:da:9d:
38:8b:21:78:0a:4d:9e:61:0a:3f:bf:6e:3b:9e:f4:57:6e:b7:
9e:09:74:20:72:eb:0e:a1:d9:3c:9a:e3:b3:e3:04:7e:6c:9a:
13:3e:6d:f6:68:cb:33:ed:0e:d8:c2:db:07:16:b8:dc:76:b8:
15:4a:fd:2c:e0:76:f2:48:da:60:9d:c8:49:20:f7:07:c7:b2:
1f:44:e3:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh+Lt6hvi/KWEuySwWrcp8ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzMmZiODJiOGQwMjkwYjFjYTU4Y2M3ZjFiZWQ2M2U0ZTQz
N2EwY2IwHhcNMjUwODA2MDcwMDU3WhcNMjUwODA3MDcwMDU3WjAzMTEwLwYDVQQD
Eyg0OTU4YWQwNmJhYTZhNWJkMTUxNTM4NTU5MmRmYTY0MDZlODAzNzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvh+K7AF7alnjAtrK1sClMXqT3CBp
DDpNsGg9egQhvBgmSG4T5cSEAfs+pZNhPP3th73C2QZhn28DP7u1XAy5/U6mJxyJ
SXKFNVUcbVswi4kgzRur5z/w0XYK6kjcgbFUeOvLglGNNH6ZNAumhbQXkaIdSrS8
gHosOaND+Veqg9TIHIMxkWSa6HJPFDtunPolZDKbRyCdxSlZFpDJrq7crtrf1SGM
fo75t4jydK/00Mm7xAqXEw9eWKpc7VgIFBwpgdrXOtbkqpx6nWUTch+/T0Y1fYuj
mwAPnFNi2gI3QXTSviID1Di71zTgvvBdymSU1j5z+T67PYz58PbloPS34wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFElYrQa6pqW9FRU4VZLfpkBugDdyMB8GA1UdIwQY
MBaAFJMvuCuNApCxyljMfxvtY+TkN6DLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9kM2IzYWItNTNhMS00OGZmLWEzNDQt
ODJkMzNmNGJhYzQ1LzEva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9kM2IzYWItNTNhMS00OGZmLWEzNDQtODJkMzNmNGJhYzQ1
LzEva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeCuZIWIe
2cMa2gf4hBKKnJN6eVtSNa3GJLbw4GAS16CT6ykr2FBnl0Ea5gG8UblaMHBujDsW
JFc30yVqb+pWGVZSRc+eejuNOo5jFiiglXVgiB33S8YsKjl24IIffP+bw5UfJ6FF
3qGVkXJwtA2yaKjHTue4S4TTbeiSuqUQQVOQNMPmFYYLeodFtAngF5PVtaKFSV70
OrU2FG+RfxxsgxWlJhptbYpfRCZun2NlXTVtCtqdOIsheApNnmEKP79uO570V263
ngl0IHLrDqHZPJrjs+MEfmyaEz5t9mjLM+0O2MLbBxa43Ha4FUr9LOB28kjaYJ3I
SSD3B8eyH0Tjag==
-----END CERTIFICATE-----
Generated at Wed Aug 6 16:20:29 2025 by rpki-client