Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
File: LKYTd0lZnAPHtHLxQscZaAAGtuY.mft (raw, json)
Hash identifier: hTD7d/eHTChDVeBSwInjE7ve/lrQh2AuNPJ5HgL8GJY=
Subject key identifier: F5:D4:2A:34:6A:69:D7:D0:C3:1B:0F:36:D1:A0:72:A0:3B:36:9C:2D
Authority key identifier: 2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
Certificate issuer: /CN=2ca6137749599c03c7b472f142c719680006b6e6
Certificate serial: 019A4E4F5927062E598A0407E41C42188A5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
Manifest number: 13A0
Signing time: Tue 04 Nov 2025 10:00:14 +0000
Manifest this update: Tue 04 Nov 2025 10:00:14 +0000
Manifest next update: Wed 05 Nov 2025 10:00:14 +0000
Files and hashes: 1: LKYTd0lZnAPHtHLxQscZaAAGtuY.crl (hash: 5kh1kU+YHlKjmY3ySKUOouFAxqElD4u63Cr+OjYvuiQ=)
2: f7aLiKVHyM1OWvHdDt9KjBrOjRc.roa (hash: gXMbVjSWssRl5pUSyy0mfRaHyNZzTR/Z01nmT1EQCvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:59:27:06:2e:59:8a:04:07:e4:1c:42:18:8a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca6137749599c03c7b472f142c719680006b6e6
Validity
Not Before: Nov 4 10:00:14 2025 GMT
Not After : Nov 5 10:00:14 2025 GMT
Subject: CN=f5d42a346a69d7d0c31b0f36d1a072a03b369c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a3:1b:a4:51:b0:7d:46:8b:0f:8b:08:d2:1d:
e9:1e:86:a0:6e:62:80:05:3e:b1:1d:d7:28:63:35:
12:82:ac:dd:75:5c:73:a5:05:37:eb:50:80:16:27:
24:7a:d4:32:c7:af:7b:8f:35:24:4b:6c:9b:eb:64:
8c:fb:38:11:89:6f:f7:de:3d:a3:e6:1b:49:7e:27:
1b:29:d7:d1:8b:cd:06:f6:cb:b9:03:ac:5a:1f:63:
10:01:7e:0e:6e:73:4e:c8:b4:d1:89:07:c7:4a:bc:
b1:65:d6:5b:24:08:ed:a8:4f:5f:70:94:a5:be:88:
df:9a:b7:83:16:c2:24:15:64:a2:79:b5:c0:02:2b:
72:a1:8b:d1:5d:37:7e:11:05:75:a1:68:17:fe:37:
b2:90:4f:d8:5c:6a:14:ae:a4:20:81:de:d9:9b:8a:
ca:55:c2:1a:4b:ed:49:aa:bf:9d:20:08:a9:3f:95:
99:a8:34:a5:e4:a1:76:5c:e9:ce:3f:4d:3c:f5:59:
1c:c4:9c:4b:27:31:f3:8b:4e:ac:b8:77:36:6e:e4:
24:12:64:03:4c:1e:30:c3:9e:cc:f9:29:2b:6f:b5:
bb:cd:70:a4:88:7d:4b:83:bb:08:4b:50:6c:69:a9:
61:71:ca:68:db:03:30:8c:74:b9:9c:12:c6:54:ec:
84:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D4:2A:34:6A:69:D7:D0:C3:1B:0F:36:D1:A0:72:A0:3B:36:9C:2D
X509v3 Authority Key Identifier:
keyid:2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:61:ef:53:dc:2d:ee:b6:8f:3e:75:ea:b2:b3:8b:e9:56:f4:
7f:3f:40:f6:16:9a:bd:16:83:e5:de:e7:a6:e1:92:7d:e9:99:
b6:55:55:51:85:87:d6:3b:34:0d:5b:da:d4:21:46:f9:2f:11:
8d:d4:0d:69:0e:a6:13:8d:69:e6:ec:9e:53:20:d7:40:95:58:
fe:19:87:93:f7:39:cd:f3:4c:f3:ac:fb:79:f6:03:6a:fb:ea:
50:db:58:08:f1:55:c1:a6:5f:3b:60:0b:c2:1d:63:83:2f:1b:
26:a6:bf:38:07:71:ee:76:60:70:cd:36:ec:64:6d:f5:91:3b:
a3:9c:65:33:3a:09:08:d9:c2:9c:88:37:fc:29:b0:3b:e9:b8:
ec:ed:38:ac:57:00:e6:7d:47:54:d7:51:da:af:c1:9a:40:4f:
c8:9e:2a:87:ce:f5:c6:c9:57:37:55:5f:e7:18:3f:80:12:c0:
41:27:18:73:2d:20:d3:06:a5:7c:12:c9:e4:1c:8c:af:38:d6:
4c:17:af:0e:7d:46:6d:89:c6:6b:05:2e:f7:a9:f2:61:f1:37:
90:ae:d9:57:3a:01:20:23:6f:ce:16:e3:80:f5:39:01:db:94:
ec:9f:ac:a0:b2:10:62:3d:7e:92:6d:40:d1:cc:ba:19:9c:e0:
09:10:83:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:07:36 2025 by rpki-client