Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
File: LKYTd0lZnAPHtHLxQscZaAAGtuY.mft (raw, json)
Hash identifier: 564mQZrH9QFkPfV2flZ5G7ew0hxlafFSI1GtrmGIprM=
Subject key identifier: AB:AE:BD:93:14:92:C7:82:4D:7B:8A:18:A7:AA:99:80:CF:00:94:7F
Authority key identifier: 2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
Certificate issuer: /CN=2ca6137749599c03c7b472f142c719680006b6e6
Certificate serial: 01976C99050F49C837A2770AAFDBF9DE6BF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
Manifest number: 1222
Signing time: Sat 14 Jun 2025 04:00:56 +0000
Manifest this update: Sat 14 Jun 2025 04:00:56 +0000
Manifest next update: Sun 15 Jun 2025 04:00:56 +0000
Files and hashes: 1: LKYTd0lZnAPHtHLxQscZaAAGtuY.crl (hash: HFD1K4JjaTGZqr+3oeOpFUg4ewuVsH+XKmWRqRmwFv4=)
2: f7aLiKVHyM1OWvHdDt9KjBrOjRc.roa (hash: gXMbVjSWssRl5pUSyy0mfRaHyNZzTR/Z01nmT1EQCvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:05:0f:49:c8:37:a2:77:0a:af:db:f9:de:6b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca6137749599c03c7b472f142c719680006b6e6
Validity
Not Before: Jun 14 04:00:56 2025 GMT
Not After : Jun 15 04:00:56 2025 GMT
Subject: CN=abaebd931492c7824d7b8a18a7aa9980cf00947f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c3:3d:03:51:32:45:11:8f:8e:cf:20:4e:65:
c8:d1:37:67:07:19:63:9b:c6:3b:21:47:b8:a8:82:
a3:54:85:52:68:ae:6d:19:10:97:3f:eb:0d:35:c6:
44:75:d6:59:d2:6f:eb:13:ea:17:40:c7:98:e2:10:
ae:0f:33:30:39:ff:2e:b9:bd:df:5d:61:76:d9:59:
15:6b:8b:a9:ab:df:fc:bf:22:18:09:b8:c7:f0:cf:
3e:c6:3a:b0:98:0b:1a:56:69:18:80:a1:c9:89:31:
96:6d:ec:60:64:86:ae:3a:18:da:14:71:d6:f9:e5:
26:82:d5:12:58:f1:bc:0e:61:96:34:27:e5:7d:d1:
76:48:48:78:2d:2a:9f:bc:c5:5a:cd:30:6d:cb:c5:
50:38:f9:55:60:35:7b:a4:cf:93:8e:20:1c:e6:96:
0e:6e:f2:f8:64:a7:87:5e:03:0f:02:d0:9b:1a:bf:
bc:89:c2:b3:75:86:5c:a7:d5:d8:cf:c9:9f:ed:47:
f8:2a:fe:68:59:dd:2f:1c:54:f7:13:8c:ee:71:b2:
18:61:2e:6c:b6:db:e9:6f:3a:b4:53:d0:14:75:d8:
f8:90:f8:60:4f:9a:fe:28:24:a6:78:08:0c:c6:a8:
9e:de:db:f5:59:1a:48:22:41:a1:a9:c5:6b:45:58:
cf:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AE:BD:93:14:92:C7:82:4D:7B:8A:18:A7:AA:99:80:CF:00:94:7F
X509v3 Authority Key Identifier:
keyid:2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:60:f4:5d:6b:ca:34:75:47:07:da:9f:2e:94:aa:e1:af:c5:
2f:ff:cc:8d:e0:c4:c8:5f:e7:4a:73:c3:bd:41:65:90:87:b0:
7d:ff:c3:1a:f6:83:aa:e0:75:03:ec:86:9e:4b:07:f5:21:5b:
67:42:64:94:45:66:73:12:c0:8e:e6:1e:62:f8:5a:9d:29:69:
7f:de:8c:47:04:45:64:89:ff:ab:4b:fa:44:8c:c3:7f:b6:13:
a2:8a:f3:93:45:41:fc:ca:c1:76:8b:0e:57:43:5e:8c:91:8a:
e4:5a:e7:23:fb:66:b6:8d:77:d5:9d:e5:9a:23:07:3f:47:24:
96:a6:39:09:3d:63:a9:d7:33:d6:f2:50:68:ba:37:6c:ee:d0:
dd:8a:e4:88:f1:3f:69:8e:8f:19:a5:e4:12:34:68:ee:d4:8a:
a5:16:df:2d:c3:d2:a7:89:e8:59:cb:b6:76:37:e6:73:98:1f:
4c:95:d7:05:81:6c:8f:c9:96:7b:8b:e9:70:6c:a0:53:4c:8f:
3e:8c:51:b3:94:cf:e9:42:33:b1:c7:a6:d9:16:cc:8f:79:02:
56:c7:d4:b1:b6:d8:d2:6e:1b:35:99:3b:83:24:01:f5:ac:19:
7d:09:01:25:16:04:f7:66:4b:77:7b:f9:23:33:cc:e1:3c:94:
9c:41:8a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:05:14 2025 by rpki-client