Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
File: LKVMSc_kyVm2nIriZoMm8QX2K50.mft (raw, json)
Hash identifier: qIpoxxWQGvmzc1Wk2EJtjYVIm9Mesc0Hs3ygh++QXzc=
Subject key identifier: BE:49:2A:D7:A2:66:94:BB:74:27:0B:12:64:41:73:F0:AA:7A:E0:72
Authority key identifier: 2C:A5:4C:49:CF:E4:C9:59:B6:9C:8A:E2:66:83:26:F1:05:F6:2B:9D
Certificate issuer: /CN=2ca54c49cfe4c959b69c8ae2668326f105f62b9d
Certificate serial: 019A70DC824DC0BBDA7798759EE624072B27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
Manifest number: 0700
Signing time: Tue 11 Nov 2025 03:01:30 +0000
Manifest this update: Tue 11 Nov 2025 03:01:30 +0000
Manifest next update: Wed 12 Nov 2025 03:01:30 +0000
Files and hashes: 1: LKVMSc_kyVm2nIriZoMm8QX2K50.crl (hash: 3vYYlJd9Y2fbKPSkQOwkn27T8deRWGHazc5eKissxiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:82:4d:c0:bb:da:77:98:75:9e:e6:24:07:2b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca54c49cfe4c959b69c8ae2668326f105f62b9d
Validity
Not Before: Nov 11 03:01:30 2025 GMT
Not After : Nov 12 03:01:30 2025 GMT
Subject: CN=be492ad7a26694bb74270b12644173f0aa7ae072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:83:31:7d:80:44:01:2c:97:51:4c:97:3f:d0:
9b:3c:93:06:0f:63:55:d3:9b:8f:e9:0e:a9:28:18:
97:ec:5e:0d:81:b1:a4:a5:58:ba:1d:c0:3e:41:80:
50:5c:27:a5:13:b9:ce:e9:d2:df:27:a8:12:16:a2:
d4:4e:2c:e6:3c:3b:df:6b:88:aa:9c:fb:91:f0:12:
13:fa:14:84:60:ea:cc:de:7f:f6:9e:64:ce:b7:78:
9e:79:27:c6:5f:f8:f5:a1:64:ce:74:2b:ca:b7:29:
a1:d2:60:d9:81:a6:3f:b8:5d:ec:0c:1b:a0:8d:96:
a7:06:7a:2e:6d:fb:6e:b4:6f:64:9d:d0:87:2f:3c:
7d:41:c4:11:e6:15:bf:a5:a3:39:68:48:47:55:5b:
f9:f0:d3:80:34:6b:96:3f:87:11:71:23:49:b2:48:
79:49:05:6f:0d:8c:cb:07:0f:70:74:bc:a1:8a:3e:
5f:58:77:a1:3c:38:76:ef:76:f7:72:8a:cf:60:10:
ab:5b:09:d8:d2:48:e9:e4:d7:2b:84:40:25:34:64:
e0:f0:98:18:e4:92:9d:f6:75:9d:2f:f1:8a:e9:b5:
0b:d3:f4:f1:5d:d8:bf:9e:76:9c:52:df:38:57:e1:
cd:d4:41:8e:39:73:8a:31:9f:9b:3d:68:6a:7d:9a:
cc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:49:2A:D7:A2:66:94:BB:74:27:0B:12:64:41:73:F0:AA:7A:E0:72
X509v3 Authority Key Identifier:
keyid:2C:A5:4C:49:CF:E4:C9:59:B6:9C:8A:E2:66:83:26:F1:05:F6:2B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:97:21:c2:bd:3f:fb:97:82:90:7e:cd:13:e0:8c:da:7a:d5:
9b:d2:13:43:64:6f:fb:d2:2c:5f:1b:03:16:80:98:22:c6:b5:
44:95:56:49:84:ff:8c:98:43:b3:81:d4:8c:03:2f:c1:e2:f1:
4e:95:eb:5e:d9:5c:43:29:14:3d:64:d4:c9:92:76:0a:e8:74:
e6:05:7e:9c:66:d9:41:0b:24:2d:87:4a:ab:e7:53:54:e8:3d:
b5:64:41:ff:0b:41:97:1c:5c:1a:d4:4c:00:ae:6e:47:2b:32:
c1:33:06:39:ef:21:c9:8f:9d:c6:4f:fc:a4:79:24:f3:c1:50:
d1:f9:1f:04:ba:3b:90:55:43:bb:90:77:5b:9d:9d:c0:e1:9d:
c4:99:17:00:4e:b9:8b:0d:6e:fe:50:04:cd:b9:a5:c8:18:68:
ac:22:85:8d:6a:6d:65:e9:ff:a5:17:3d:f9:a3:80:46:ff:ee:
eb:97:fe:c6:75:96:b5:18:22:b5:d3:9d:83:40:b2:fa:6d:d5:
3e:29:4b:4f:47:77:34:c2:a7:48:3c:e0:07:40:1f:fd:d2:ea:
76:ed:e1:a2:17:03:76:7f:df:9f:60:6f:2a:0b:8e:b6:40:f8:
1d:ce:0e:67:66:2e:9d:e2:25:25:00:39:73:f6:4b:2b:3f:7a:
c2:9f:71:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:53 2025 by rpki-client