Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: Yri4KymJ1icjHWiEf789wISNv6YEd1JBCsl5I4lKTMs=
Subject key identifier: 35:B8:26:D8:39:29:E7:EA:06:19:5B:40:DA:4A:6D:B0:7E:A0:BD:D6
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 019893A419291ACCE57C2E73DB71495CFD12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1115
Signing time: Sun 10 Aug 2025 11:01:01 +0000
Manifest this update: Sun 10 Aug 2025 11:01:01 +0000
Manifest next update: Mon 11 Aug 2025 11:01:01 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: lqO4z6E14pW2/iETGqR/yu99Q30OQRqrVT6wOEVIVdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:a4:19:29:1a:cc:e5:7c:2e:73:db:71:49:5c:fd:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Aug 10 11:01:01 2025 GMT
Not After : Aug 11 11:01:01 2025 GMT
Subject: CN=35b826d83929e7ea06195b40da4a6db07ea0bdd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d9:b0:6b:fb:45:87:57:a7:b5:ef:b1:45:9d:
62:1f:92:58:f3:09:12:35:03:58:44:9e:b3:2e:6d:
7e:10:2e:36:4a:5a:b6:d4:a5:5b:11:49:b2:00:83:
9e:99:6d:80:15:01:0c:4c:53:b7:9b:ca:28:ee:bd:
2e:f6:c2:6b:62:48:82:bc:89:2a:33:35:43:14:1f:
1f:70:33:93:72:85:e5:14:7b:37:15:74:69:89:94:
39:cc:5a:ef:53:6d:7b:89:fe:86:31:c6:0b:0c:d9:
4b:b8:20:86:18:be:c8:2d:89:e2:a3:61:13:e9:f9:
5e:ea:75:b3:1a:e4:88:34:e8:23:3a:18:c4:4a:28:
d8:fb:fc:c4:b9:cc:7c:86:4a:1d:e7:36:a6:62:30:
60:4d:b8:27:e2:41:4f:0a:3b:a6:1b:dc:1f:bf:84:
12:d4:85:d5:f9:01:55:78:27:1e:cb:cf:19:f9:07:
4f:80:43:40:4b:43:75:8b:5e:e5:12:8f:84:c3:55:
89:64:ad:bb:90:c5:01:d7:d4:1c:47:89:13:29:02:
e3:49:fb:f8:7a:39:e2:53:25:29:aa:78:1b:99:56:
74:c8:ff:94:d5:19:4f:67:f9:c5:ad:d1:bb:33:0d:
60:09:a6:8c:02:68:7d:83:17:bc:d6:4f:63:27:bf:
14:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B8:26:D8:39:29:E7:EA:06:19:5B:40:DA:4A:6D:B0:7E:A0:BD:D6
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:c5:b4:5b:32:4b:54:5c:10:e6:db:3a:b6:ae:86:e1:c8:05:
1a:75:68:ea:1c:29:c4:f6:15:64:1f:70:18:6b:b8:d9:34:a2:
aa:5c:f4:76:d3:3d:36:0e:73:d1:8c:21:b8:76:5a:f5:a3:37:
6a:d9:b9:97:23:5f:f8:e5:7a:8b:1b:34:1f:50:61:9f:28:08:
30:3a:95:84:f1:63:c8:06:e5:64:97:ac:96:94:90:f8:e3:af:
4f:e3:50:ae:9f:0e:a3:ae:b3:6a:ba:8c:0a:1d:02:c1:ab:2d:
62:20:75:81:b1:8c:6f:af:80:99:b6:c7:c9:6e:37:24:6f:ca:
88:46:bc:af:1b:f6:c5:6c:37:e2:f5:c9:e1:34:37:b8:95:07:
21:7f:51:8b:9f:d5:15:27:72:73:c8:47:d1:36:02:d6:88:87:
ce:44:e7:cf:73:86:fb:b6:08:2f:43:a0:ca:33:cd:e9:ea:78:
f9:a4:34:7a:60:d3:b8:8b:fd:61:0b:95:88:7e:bc:9c:f1:98:
8e:ff:25:b2:70:07:8d:70:a6:5d:a3:8c:04:19:43:cc:42:9f:
10:95:fb:29:55:bc:d9:09:aa:c4:cf:2c:f1:2e:1c:55:8a:22:
59:7c:fc:d7:19:71:a7:b2:f9:aa:53:54:7b:1d:16:db:19:88:
24:0f:74:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:58:37 2025 by rpki-client