Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
File: LKYTd0lZnAPHtHLxQscZaAAGtuY.mft (raw, json)
Hash identifier: RQaNvbYAS8ezkxyJZ4A8hiIuFaKKQpr1mub9q6LKCwo=
Subject key identifier: D0:2D:45:E8:DC:37:B7:07:8E:32:B1:C1:D0:00:A2:C4:E6:28:E7:8A
Authority key identifier: 2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
Certificate issuer: /CN=2ca6137749599c03c7b472f142c719680006b6e6
Certificate serial: 019DA29C262C712F4CAA2B129C2985DD91A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
Manifest number: 155A
Signing time: Sat 18 Apr 2026 22:00:35 +0000
Manifest this update: Sat 18 Apr 2026 22:00:35 +0000
Manifest next update: Sun 19 Apr 2026 22:00:35 +0000
Files and hashes: 1: DjKvHGkxm9JLkDzr5jJuPNohrKM.roa (hash: 4xyJPy+sZSw3rF0C0CNhWMzSFjnYCLyNFxo1nQPPkU4=)
2: LKYTd0lZnAPHtHLxQscZaAAGtuY.crl (hash: l3da/2aw5OEkebY+MHe7FW5xlKvXKi8R6N+f7WU1jFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:26:2c:71:2f:4c:aa:2b:12:9c:29:85:dd:91:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca6137749599c03c7b472f142c719680006b6e6
Validity
Not Before: Apr 18 22:00:35 2026 GMT
Not After : Apr 19 22:00:35 2026 GMT
Subject: CN=d02d45e8dc37b7078e32b1c1d000a2c4e628e78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ef:34:9f:e9:8c:2b:73:5e:54:9b:5c:d2:fd:
ca:63:31:2e:b3:a9:6a:55:9f:74:ad:bf:16:ac:f9:
cf:69:6a:8e:b9:54:19:96:dd:af:67:f1:3d:c7:1d:
57:f5:ce:52:1c:60:f6:93:a0:04:f3:59:09:83:1c:
e5:11:d4:39:f2:6d:4b:4b:bf:d4:3b:5b:6f:17:47:
40:3d:4f:17:25:be:c1:04:c2:13:2e:9a:91:ce:bc:
de:91:0c:5b:bb:b8:7b:ae:d9:be:21:29:e7:fe:00:
6b:5c:dc:8a:89:38:7f:41:a3:80:61:fe:b5:76:0a:
11:7a:48:ac:70:c2:eb:50:b2:c6:14:9b:a3:a1:f9:
c6:69:01:98:2d:73:a2:02:ff:75:11:1d:1c:3f:9b:
7c:c6:57:77:96:7a:12:c9:2e:93:f3:c4:b6:77:d9:
e8:87:18:87:6f:5b:9d:0d:93:15:39:0f:60:ff:ca:
df:e8:5d:05:a7:76:f8:a9:b8:fb:90:71:04:0d:3d:
e6:47:ce:fe:e6:40:14:2f:1e:65:da:e2:3e:63:d4:
4c:a5:c3:31:c9:26:00:7a:25:54:33:78:68:6f:82:
a3:9f:2b:f8:c2:ab:46:5c:27:be:4a:61:2e:64:e8:
1e:80:11:55:3e:85:24:af:9d:23:04:2e:ef:a9:c7:
d5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2D:45:E8:DC:37:B7:07:8E:32:B1:C1:D0:00:A2:C4:E6:28:E7:8A
X509v3 Authority Key Identifier:
keyid:2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:bb:7e:a9:41:19:d3:e9:6e:15:73:26:a9:ac:03:b1:25:0d:
5f:a6:bc:03:29:8f:db:f3:18:6e:4a:8f:b6:fa:8f:d8:ce:f7:
5c:b7:28:e7:f6:80:9a:16:1e:c1:65:32:dd:4f:9b:40:ea:aa:
37:39:f9:e9:58:d1:0e:af:c6:47:81:cd:ba:29:af:8d:4c:ea:
fa:0e:c4:9d:da:5d:ab:41:99:62:67:c7:86:c8:76:8f:9b:5c:
25:7f:4d:4f:0d:f4:e1:67:b7:f5:93:44:eb:db:82:e3:90:43:
3e:d4:97:69:42:05:16:f9:e3:2d:d1:86:01:7c:f0:69:30:01:
5b:59:4f:ff:f6:f6:a3:a4:b7:84:89:27:5c:e4:99:4c:74:d3:
7e:dd:fb:c0:92:ea:54:3f:48:62:7f:34:85:56:ab:ad:07:58:
69:5a:0b:d4:ca:b4:50:fd:c6:59:ec:2c:f5:07:0f:89:ba:18:
26:89:cb:e5:f4:35:31:91:85:27:08:3b:4a:00:ff:cf:da:c2:
93:5a:da:b2:32:d8:ee:36:f6:bc:6b:05:f1:18:1f:26:0f:ac:
fe:4d:dd:85:88:73:3e:cc:62:2e:d5:56:9b:c5:c0:09:80:7e:
6d:57:83:1c:a7:9b:21:c8:d2:0d:d1:36:2a:33:2c:6e:0f:69:
6d:36:a9:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2inCYscS9MqisSnCmF3ZGlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjYTYxMzc3NDk1OTljMDNjN2I0NzJmMTQyYzcxOTY4MDAw
NmI2ZTYwHhcNMjYwNDE4MjIwMDM1WhcNMjYwNDE5MjIwMDM1WjAzMTEwLwYDVQQD
EyhkMDJkNDVlOGRjMzdiNzA3OGUzMmIxYzFkMDAwYTJjNGU2MjhlNzhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyu80n+mMK3NeVJtc0v3KYzEus6lq
VZ90rb8WrPnPaWqOuVQZlt2vZ/E9xx1X9c5SHGD2k6AE81kJgxzlEdQ58m1LS7/U
O1tvF0dAPU8XJb7BBMITLpqRzrzekQxbu7h7rtm+ISnn/gBrXNyKiTh/QaOAYf61
dgoRekiscMLrULLGFJujofnGaQGYLXOiAv91ER0cP5t8xld3lnoSyS6T88S2d9no
hxiHb1udDZMVOQ9g/8rf6F0Fp3b4qbj7kHEEDT3mR87+5kAULx5l2uI+Y9RMpcMx
ySYAeiVUM3hob4Kjnyv4wqtGXCe+SmEuZOgegBFVPoUkr50jBC7vqcfVvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNAtRejcN7cHjjKxwdAAosTmKOeKMB8GA1UdIwQY
MBaAFCymE3dJWZwDx7Ry8ULHGWgABrbmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEtZVGQwbFpuQVBIdEhMeFFzY1phQUFHdHVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS82ZmNmNjYtOGU4Yy00ZGJiLThjZjAt
NTAxOWQyYzM4OGRiLzEvTEtZVGQwbFpuQVBIdEhMeFFzY1phQUFHdHVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS82ZmNmNjYtOGU4Yy00ZGJiLThjZjAtNTAxOWQyYzM4OGRi
LzEvTEtZVGQwbFpuQVBIdEhMeFFzY1phQUFHdHVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgrt+qUEZ
0+luFXMmqawDsSUNX6a8AymP2/MYbkqPtvqP2M73XLco5/aAmhYewWUy3U+bQOqq
Nzn56VjRDq/GR4HNuimvjUzq+g7Endpdq0GZYmfHhsh2j5tcJX9NTw304We39ZNE
69uC45BDPtSXaUIFFvnjLdGGAXzwaTABW1lP//b2o6S3hIknXOSZTHTTft37wJLq
VD9IYn80hVarrQdYaVoL1Mq0UP3GWews9QcPiboYJonL5fQ1MZGFJwg7SgD/z9rC
k1rasjLY7jb2vGsF8RgfJg+s/k3dhYhzPsxiLtVWm8XACYB+bVeDHKebIcjSDdE2
KjMsbg9pbTapcA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:28:02 2026 by rpki-client