Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: qcVcDJQ6RmzlswSzcIylo6P5/5RkWrU+TE81Y70ZDd0=
Subject key identifier: 05:39:74:79:A2:31:19:DD:29:CE:DC:14:5B:AC:E4:C4:A0:F0:E5:78
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 019769613A516F7B7E34BE34C12456501433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 13:01:08 +0000
Manifest this update: Fri 13 Jun 2025 13:01:08 +0000
Manifest next update: Sat 14 Jun 2025 13:01:08 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: edT80s60y0TVGRHwCEj3P1hjXYgb9hnPYLYCXkBXy5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:3a:51:6f:7b:7e:34:be:34:c1:24:56:50:14:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Jun 13 13:01:08 2025 GMT
Not After : Jun 14 13:01:08 2025 GMT
Subject: CN=05397479a23119dd29cedc145bace4c4a0f0e578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:d6:58:12:12:76:cc:72:af:b0:80:a7:0e:
86:0b:94:17:db:c2:ad:d6:10:9b:93:72:5c:68:fb:
07:08:2c:1b:28:00:df:49:16:23:3e:6b:d0:a4:62:
bf:2d:e1:c1:ee:a6:8e:64:bb:f9:a2:50:f7:47:68:
2a:ac:73:73:60:ad:4c:0b:2e:54:16:52:67:32:12:
5a:82:65:43:d5:98:94:ae:98:c0:75:af:5c:cf:21:
8a:a0:76:93:32:a6:d0:24:3b:ff:ce:50:93:4e:49:
c5:40:af:1b:e8:3d:77:86:e6:79:a9:e0:58:5a:74:
15:3e:c6:bd:fb:03:71:97:31:44:b4:fa:d1:6d:3a:
d4:3e:d0:47:ae:0e:b5:93:55:d7:95:36:6d:29:6f:
98:a5:bb:57:92:55:82:43:da:7e:94:19:5c:8d:ef:
f6:76:4e:a6:4e:1d:9f:2b:8f:4a:81:81:11:98:d9:
e4:70:88:7e:f9:bf:ad:66:46:75:76:5f:ae:cb:b2:
63:e6:28:f6:b1:70:f0:5d:13:4e:70:4c:ff:c4:2a:
d5:8f:71:1f:99:45:bd:4e:89:e6:ae:2c:fc:8d:d0:
24:df:7d:d5:18:ef:80:c0:34:60:00:78:c9:b3:4b:
67:6b:2f:e4:62:9d:52:e5:91:58:57:ef:af:4a:1f:
e5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:39:74:79:A2:31:19:DD:29:CE:DC:14:5B:AC:E4:C4:A0:F0:E5:78
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:2a:ab:6d:4c:3b:b6:67:b8:f1:04:64:a6:da:41:66:87:75:
df:fd:f2:d8:0b:4a:1f:48:58:67:57:26:31:5a:2c:10:c0:5a:
57:68:b9:5f:2e:c1:02:9c:4c:a4:83:81:5b:60:8a:02:da:ca:
8b:a9:95:f5:90:7d:93:8c:2d:1f:64:19:37:45:6c:fd:35:ef:
1d:87:03:de:98:45:8d:e8:0d:b7:bc:1d:23:3c:bb:5d:ed:52:
f9:0c:ef:7c:8b:1b:bb:d7:d8:df:3e:1e:f5:71:62:b9:30:3c:
6d:1e:d5:10:04:be:01:27:44:2e:b5:7c:71:d6:58:1d:13:e8:
8d:19:f7:33:fb:60:94:23:2f:76:51:9c:29:5f:d3:43:0d:6a:
34:ac:87:77:49:42:f0:55:23:1a:73:a3:df:0f:7f:d0:8e:e7:
6f:1b:18:f3:2d:fa:59:33:3a:fc:f3:e9:d6:ff:1c:cb:3f:6f:
ca:9e:8b:56:23:2f:f1:21:d3:bd:64:75:c2:fd:bd:3f:19:06:
8b:ea:d6:66:4a:cc:c2:2d:c9:41:ce:75:8f:98:e6:f0:53:08:
3c:65:70:b5:a6:fa:ee:19:04:37:8d:8e:21:3c:4a:34:02:11:
53:33:f1:d0:35:08:30:30:ac:38:d1:3b:af:da:9b:3b:5e:39:
42:24:d2:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpYTpRb3t+NL40wSRWUBQzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODI4M2Q3ODVjYzg4ZWY4NTIwODYyYWMxNjFmMjdiNTYz
MGJjMTQwHhcNMjUwNjEzMTMwMTA4WhcNMjUwNjE0MTMwMTA4WjAzMTEwLwYDVQQD
EygwNTM5NzQ3OWEyMzExOWRkMjljZWRjMTQ1YmFjZTRjNGEwZjBlNTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpnWWBISdsxyr7CApw6GC5QX28Kt
1hCbk3JcaPsHCCwbKADfSRYjPmvQpGK/LeHB7qaOZLv5olD3R2gqrHNzYK1MCy5U
FlJnMhJagmVD1ZiUrpjAda9czyGKoHaTMqbQJDv/zlCTTknFQK8b6D13huZ5qeBY
WnQVPsa9+wNxlzFEtPrRbTrUPtBHrg61k1XXlTZtKW+YpbtXklWCQ9p+lBlcje/2
dk6mTh2fK49KgYERmNnkcIh++b+tZkZ1dl+uy7Jj5ij2sXDwXRNOcEz/xCrVj3Ef
mUW9Tonmriz8jdAk333VGO+AwDRgAHjJs0tnay/kYp1S5ZFYV++vSh/lkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAU5dHmiMRndKc7cFFus5MSg8OV4MB8GA1UdIwQY
MBaAFJGCg9eFzIjvhSCGKsFh8ntWMLwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMt
ZjMyMjYwZTA1NzAwLzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMtZjMyMjYwZTA1NzAw
LzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOyqrbUw7
tme48QRkptpBZod13/3y2AtKH0hYZ1cmMVosEMBaV2i5Xy7BApxMpIOBW2CKAtrK
i6mV9ZB9k4wtH2QZN0Vs/TXvHYcD3phFjegNt7wdIzy7Xe1S+QzvfIsbu9fY3z4e
9XFiuTA8bR7VEAS+ASdELrV8cdZYHRPojRn3M/tglCMvdlGcKV/TQw1qNKyHd0lC
8FUjGnOj3w9/0I7nbxsY8y36WTM6/PPp1v8cyz9vyp6LViMv8SHTvWR1wv29PxkG
i+rWZkrMwi3JQc51j5jm8FMIPGVwtab67hkEN42OITxKNAIRUzPx0DUIMDCsONE7
r9qbO145QiTSOA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:06:07 2025 by rpki-client