Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: Iac4ARJ14V7xpk5WG1laDEv8LbGHWKtEwyZT5LWIGT8=
Subject key identifier: 0B:D6:2B:3D:3D:4A:7D:07:60:17:61:99:5A:56:45:5F:9E:33:EB:B0
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 019CABD97BB81B53CBDF51B6F2D448166CC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1334
Signing time: Mon 02 Mar 2026 00:01:22 +0000
Manifest this update: Mon 02 Mar 2026 00:01:22 +0000
Manifest next update: Tue 03 Mar 2026 00:01:22 +0000
Files and hashes: 1: DQDusfxjlUfsx_jYQ2_QIlod900.roa (hash: w5lQk1AHZADVNhIU1Bs+67ehT2OLHgD2oIHKthafOJo=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: rOScrnB8zqmGe6E6JDwzC+Ld1B2R5/rhnjoxfT7kz7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:7b:b8:1b:53:cb:df:51:b6:f2:d4:48:16:6c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Mar 2 00:01:22 2026 GMT
Not After : Mar 3 00:01:22 2026 GMT
Subject: CN=0bd62b3d3d4a7d07601761995a56455f9e33ebb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fc:ed:55:58:d5:49:07:a5:2f:55:89:3c:8a:
95:ed:d7:8a:9d:7c:b3:8c:56:df:60:27:bc:dd:2d:
4b:61:db:ea:90:8e:31:b3:e0:3d:d6:db:63:52:c3:
aa:56:5d:9c:e0:df:f9:63:23:ce:37:08:58:f9:c9:
4d:08:81:87:5c:50:42:f5:a5:dc:86:e1:e4:41:38:
e5:68:40:5b:c1:e1:37:6c:64:90:33:da:59:43:c2:
62:98:d2:79:73:a4:b4:2d:88:82:92:56:dc:24:94:
7d:c7:42:46:1b:12:58:f9:9d:30:15:8d:c9:f3:50:
06:63:57:f9:64:6d:94:dd:e6:d9:6f:c3:cb:76:c8:
ca:1f:bc:8c:66:23:df:d0:a7:7c:15:f6:0f:85:78:
e4:ba:2c:ca:3b:17:4a:e4:2d:d4:d6:20:ad:23:66:
d7:3c:a7:91:a9:1f:f0:70:af:99:e9:61:48:2f:31:
5e:91:76:87:eb:09:8b:fc:9d:91:70:a1:0d:3a:cc:
15:8c:6f:02:e8:f5:1b:c3:04:b9:5b:2f:f4:07:4d:
61:96:ba:26:40:0a:d7:b9:2d:24:9a:f4:c3:16:5f:
55:c2:f3:c9:a7:93:86:96:2b:cd:ec:3e:a9:0b:6a:
e5:42:36:64:c3:7a:ce:37:73:b0:6f:ca:23:eb:64:
8e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D6:2B:3D:3D:4A:7D:07:60:17:61:99:5A:56:45:5F:9E:33:EB:B0
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:01:34:3f:75:ee:4a:f2:98:44:c1:b5:e8:17:f9:ee:51:94:
36:10:0d:c4:e3:9d:a3:b0:74:7c:69:47:da:90:8e:d8:86:6e:
e9:b9:0e:49:90:2f:1a:11:8a:d6:57:21:a4:5a:6a:47:84:42:
fe:6b:53:d7:16:30:09:c0:85:c2:10:5f:3b:c8:02:a5:85:5e:
cf:60:77:d1:d6:9f:c1:24:30:64:93:0c:7f:9a:15:48:a3:c2:
96:85:fa:ab:b3:f0:1e:e3:f2:6f:87:30:ee:9a:ce:14:d0:b2:
21:f2:20:58:09:21:1a:6e:77:85:09:fc:89:06:63:42:27:05:
cf:03:6a:59:95:ea:e5:32:bc:09:f3:ef:56:37:2f:0b:c2:98:
06:d9:b3:64:82:dd:8a:70:e9:2b:a7:ad:e7:87:d3:f3:ee:98:
75:66:4c:2e:f2:b8:69:e2:97:24:55:2a:d4:01:50:fa:f5:c1:
9c:f0:b3:d3:a9:8a:59:f2:6c:9e:72:f7:49:81:07:54:4c:84:
c9:17:ab:4e:bf:e8:ad:c8:97:c6:6c:e5:6f:4d:dc:09:1a:27:
cb:56:3f:f3:cd:6f:3d:b8:d4:38:5a:58:28:c3:5b:9e:84:ce:
86:18:b4:b7:b1:d7:6a:7d:26:1d:98:0b:99:31:f5:c2:e8:9e:
30:04:95:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:21:40 2026 by rpki-client