Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: FV3ty+nxmFEtnhrmP4GMk2kpfKAhGLzvIdkCHN4NFwY=
Subject key identifier: BE:25:64:BF:89:3E:E6:E0:C2:34:F6:4A:4E:0C:54:9A:5E:AF:A5:8C
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 01967FB436E04EFA17D11BA270D8BBC478C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 04:00:38 +0000
Manifest this update: Tue 29 Apr 2025 04:00:38 +0000
Manifest next update: Wed 30 Apr 2025 04:00:38 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: AZH6US0VGX8wHSWnLBDomlYQv1U7aiPPV6+u4J+1Bxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:36:e0:4e:fa:17:d1:1b:a2:70:d8:bb:c4:78:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Apr 29 04:00:38 2025 GMT
Not After : Apr 30 04:00:38 2025 GMT
Subject: CN=be2564bf893ee6e0c234f64a4e0c549a5eafa58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:49:05:6b:04:53:88:6e:e1:28:07:23:ee:06:
44:1f:16:64:3a:87:89:06:00:05:3d:43:4b:02:81:
bb:99:5f:d9:c7:bc:32:94:f1:c6:aa:43:e8:ce:66:
98:6a:07:72:ce:a3:01:4c:72:4b:ea:c2:a2:9e:26:
81:01:0b:b3:d7:44:9f:15:35:60:df:f1:df:62:b7:
9b:0f:20:81:93:9e:e5:26:00:9d:26:be:9e:ab:cd:
d7:54:4a:60:21:01:bf:5c:ac:40:8d:9d:f4:0a:2c:
5e:c2:79:4a:6e:53:9c:f7:d6:22:bd:74:86:bf:5c:
6b:8f:b1:cb:6c:ba:f2:9b:40:7b:7a:86:31:31:b4:
90:ed:f7:10:a0:1a:49:3b:fc:7a:54:33:86:a7:73:
40:68:1d:22:71:26:f4:97:7c:cc:be:02:0c:74:9b:
46:65:f2:e7:73:9e:bd:29:5f:53:53:d8:68:09:9f:
05:cf:78:8f:96:ed:4c:bc:96:2c:0e:07:d4:59:f1:
d2:01:f8:27:66:fc:75:7f:31:f1:9c:2c:9d:60:f2:
f0:bf:f1:b0:07:cd:db:a7:9a:fe:67:7b:06:83:61:
77:5d:68:f3:bf:66:dd:25:4f:eb:f0:b2:7e:92:3a:
cd:51:a7:86:d5:07:7d:66:cd:6d:32:0a:c2:54:8d:
6c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:25:64:BF:89:3E:E6:E0:C2:34:F6:4A:4E:0C:54:9A:5E:AF:A5:8C
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:7b:6f:0f:03:76:cd:6a:75:d3:c4:e0:3d:89:b8:08:96:b7:
4f:33:7d:26:9c:22:09:54:34:2a:35:34:b6:28:8b:55:c0:19:
1b:e6:8c:c6:a7:9e:b7:7c:bf:26:85:ae:0c:41:4a:d8:da:25:
b1:01:70:0f:20:c5:53:61:83:d5:7c:4a:42:a0:7d:a3:23:bb:
39:bb:0e:65:93:05:da:db:69:8c:ab:90:d1:d1:81:b4:4c:bc:
d8:a3:da:5c:a3:61:6e:1a:04:7c:f9:7a:61:8b:d1:cd:6b:a6:
46:eb:98:93:f3:01:dc:75:1f:5b:1a:e6:f8:95:6c:70:b0:8d:
d7:69:44:21:a8:7f:c1:85:6a:4b:58:3e:27:af:e7:07:c2:16:
3d:cc:96:7d:81:06:37:aa:fc:64:51:cc:28:78:3b:d7:ea:b7:
c3:f3:1e:da:5f:c2:c8:92:53:50:a6:28:38:0d:58:fe:81:43:
1b:57:7a:c1:91:be:9a:18:a0:cc:a0:a1:44:a0:07:b5:83:32:
55:20:43:e4:14:ed:0c:da:e2:03:47:91:98:e3:de:dd:1c:d6:
2c:e4:f6:e7:28:27:17:a8:92:ca:28:c2:33:d8:e1:eb:2b:7d:
93:19:b1:6c:df:ef:ba:cc:e9:5f:f4:3a:e6:c2:05:5b:d2:f8:
50:75:82:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 14:19:07 2025 by rpki-client