Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
File: LKYTd0lZnAPHtHLxQscZaAAGtuY.mft (raw, json)
Hash identifier: kPue/RYO8s7FBtY0z2lg43F2x9SG9Gg+0/vc5pAHwiM=
Subject key identifier: E4:38:01:4E:F4:8C:4B:96:5F:B1:90:94:71:31:3D:79:06:F2:04:BF
Authority key identifier: 2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
Certificate issuer: /CN=2ca6137749599c03c7b472f142c719680006b6e6
Certificate serial: 01989034FF00C07534A113160A4F7A0CEBE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
Manifest number: 12B9
Signing time: Sat 09 Aug 2025 19:00:48 +0000
Manifest this update: Sat 09 Aug 2025 19:00:48 +0000
Manifest next update: Sun 10 Aug 2025 19:00:48 +0000
Files and hashes: 1: LKYTd0lZnAPHtHLxQscZaAAGtuY.crl (hash: ow2o2fazUb9WIyvzKdjXhgnUck0DmVgZeYuxHFRlak4=)
2: f7aLiKVHyM1OWvHdDt9KjBrOjRc.roa (hash: gXMbVjSWssRl5pUSyy0mfRaHyNZzTR/Z01nmT1EQCvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:34:ff:00:c0:75:34:a1:13:16:0a:4f:7a:0c:eb:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca6137749599c03c7b472f142c719680006b6e6
Validity
Not Before: Aug 9 19:00:48 2025 GMT
Not After : Aug 10 19:00:48 2025 GMT
Subject: CN=e438014ef48c4b965fb1909471313d7906f204bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:02:f4:cd:ac:86:f1:a3:1d:56:2d:35:cf:
94:7c:ee:47:a7:b5:88:5c:41:89:1f:bf:f2:f8:0b:
15:d7:68:88:f0:f1:c9:40:54:39:3a:73:03:a8:75:
8b:36:de:c8:83:c6:75:94:db:bd:e5:83:8f:4b:b4:
18:38:44:26:dc:ed:5d:55:5a:b9:26:28:b6:cd:ab:
13:b9:51:80:ce:52:3b:20:ff:2d:4a:03:8d:4e:a6:
b2:c2:d7:d4:7c:1f:b4:27:47:e4:75:26:69:27:3b:
8f:dc:ea:a4:f1:d1:ec:5d:21:5f:25:63:c1:ee:f6:
8f:c9:3a:c7:a0:68:06:b7:07:27:37:4e:aa:bf:67:
7b:37:fc:1a:75:76:83:91:34:27:72:42:5f:c4:f9:
ea:b5:92:a8:0b:79:32:06:e9:80:88:b5:d1:16:58:
c0:22:fd:7c:38:f3:68:f6:cc:82:b9:e1:5f:f1:4b:
d9:76:58:49:f4:38:43:e5:29:3e:80:5b:be:22:7a:
70:98:92:19:92:19:0a:b9:74:33:70:c2:2a:98:8f:
09:2d:77:80:25:78:b2:41:aa:7d:23:16:9e:74:97:
cb:6d:68:f4:0c:5f:27:71:7d:b2:97:a1:a6:91:01:
40:0a:05:18:e6:68:ea:38:23:f7:4c:9c:39:58:32:
28:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:38:01:4E:F4:8C:4B:96:5F:B1:90:94:71:31:3D:79:06:F2:04:BF
X509v3 Authority Key Identifier:
keyid:2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:ef:8e:82:24:50:9e:8a:f9:f5:40:95:e0:e8:5b:0b:75:9a:
56:2f:a6:99:bf:55:be:bc:6d:45:ce:23:a8:b8:09:b9:d8:5d:
a5:d9:88:96:d5:15:3d:ef:2e:41:e4:d6:9e:22:39:40:bf:0d:
4f:80:a1:3d:b7:c7:30:af:ba:3f:9f:f7:33:fc:16:d2:d9:da:
99:91:3f:00:14:bf:ff:7c:ba:3b:24:f7:f9:0e:a2:1a:50:89:
aa:d8:72:12:3e:53:b4:4b:2d:22:07:c8:6a:8f:81:d7:76:54:
04:ba:f0:90:81:1b:41:29:90:7f:1a:ed:1b:86:44:d1:2a:4f:
20:0b:96:14:d0:27:53:1f:cd:4b:dd:3b:16:a3:4f:ab:04:69:
eb:e5:12:53:21:aa:31:0c:56:83:06:b1:8a:fd:c7:07:cd:4d:
1c:5c:70:3a:05:6a:7c:04:87:a9:75:e8:51:84:94:82:2b:25:
93:fc:19:bf:2d:53:0e:c5:99:7d:75:cf:91:97:55:a9:b5:cd:
e8:12:a8:21:cc:98:bb:dc:82:1b:c3:3a:83:d4:ba:24:96:62:
75:f8:b1:8e:40:ca:1b:01:2b:ff:2e:9f:90:be:08:36:bb:42:
45:45:22:92:b8:7b:b9:0a:4f:fd:67:9a:b0:41:7c:3f:23:4f:
1a:f4:ab:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:35:51 2025 by rpki-client