Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: FUnb+D8B+hFMiect3YPTQcCvdX+/YTqL7UMv5P4a6YI=
Subject key identifier: BA:BA:D2:09:A5:DC:CD:E5:E6:86:3C:BA:05:F6:0B:3A:0B:92:C4:F0
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 019873E3EC53CDE54827941077DDD35AB757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 07:02:53 +0000
Manifest this update: Mon 04 Aug 2025 07:02:53 +0000
Manifest next update: Tue 05 Aug 2025 07:02:53 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: Lr2V3+771PhSUAEzlPW3ot2MDJUfc2qA40qi9rFKLE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:ec:53:cd:e5:48:27:94:10:77:dd:d3:5a:b7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Aug 4 07:02:53 2025 GMT
Not After : Aug 5 07:02:53 2025 GMT
Subject: CN=babad209a5dccde5e6863cba05f60b3a0b92c4f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:63:c2:43:eb:9a:41:06:ed:71:9f:e4:48:ad:
8a:e6:66:d9:de:a6:e1:a7:d0:b1:b1:f2:4c:1e:32:
e1:c2:ca:b6:ee:12:db:82:3e:2a:e4:d5:51:d8:ab:
b2:a8:10:40:10:31:ff:2c:f4:8b:a3:c8:88:71:78:
e5:c5:28:db:c1:07:2c:48:a4:5d:3c:c0:a5:1e:9b:
1b:e2:36:d5:14:7c:e2:0f:a0:9a:2f:ae:f9:ab:ca:
08:4f:f9:a9:35:41:77:64:bd:d1:6d:fb:3e:6d:d9:
03:9e:07:4c:bb:4b:37:7b:e7:6e:0b:31:98:60:72:
a1:ea:ee:b5:38:64:79:c4:3c:41:29:b8:43:7e:76:
d9:dc:24:4d:ca:ad:c3:13:ee:ca:5e:b6:04:bc:9c:
81:a2:d9:fd:9d:01:e4:29:f8:43:7f:b0:fb:0f:79:
7d:8b:91:2c:70:85:08:d9:cd:2b:ca:20:6c:07:43:
d8:76:58:64:4e:6c:1a:d2:0d:35:6a:f5:53:ba:ab:
35:b6:ba:3e:ab:0a:5e:32:6d:27:58:2d:41:65:f4:
c1:12:46:b5:c6:dd:ed:e1:a9:85:0d:6a:6c:b4:88:
f4:5a:85:89:06:eb:0e:b7:7c:1d:92:bb:95:9d:89:
89:d6:78:a3:7c:77:cc:3e:05:86:9d:80:d9:7d:59:
7d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BA:D2:09:A5:DC:CD:E5:E6:86:3C:BA:05:F6:0B:3A:0B:92:C4:F0
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:3b:f8:15:64:b0:87:6a:bc:27:38:4d:d8:a1:3e:6c:43:0e:
4f:d2:52:9b:c1:c2:04:bb:fd:48:56:d5:24:b4:4a:d6:63:2f:
9d:dc:af:1e:37:1f:58:30:a8:bc:90:fa:91:a0:ab:3c:7a:b0:
9a:bb:d9:b9:23:13:49:a7:d1:bd:00:85:29:2b:ed:a0:3d:72:
68:0d:0c:40:da:10:d7:04:a5:f9:94:7d:76:8f:09:c8:38:f7:
7a:7f:00:4c:45:b9:c4:5f:9e:bd:c6:bb:c7:80:45:ea:c8:72:
40:83:4e:f2:34:03:f8:80:f9:a2:a4:ef:ca:28:06:b3:24:b6:
73:72:c4:e3:28:4b:30:44:ab:52:3c:e4:80:eb:38:50:70:0d:
b1:8d:22:0b:ec:7b:02:ce:1f:c9:5a:64:66:df:24:f5:bf:63:
ca:6c:d5:82:d2:d2:04:4c:a5:64:77:81:86:41:61:28:59:95:
c3:cf:cb:35:0e:dc:f5:2f:a2:ad:bd:74:7f:0b:f4:b3:79:85:
18:9d:0b:95:b6:f0:d3:a4:56:c7:bb:6a:d7:a0:13:ce:ce:e1:
c9:b9:20:a1:e2:a4:bb:ce:c0:c5:ab:cb:5f:56:cb:f8:43:66:
6a:4f:8f:60:f9:d6:17:34:dc:dc:cd:be:d6:12:b1:21:cf:e9:
3b:5b:21:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:41 2025 by rpki-client