Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: 4s/80fhduP/oLHQPBWwJspzchq2rSWpO/tuJuk5Ql7s=
Subject key identifier: 00:89:7B:76:00:54:A2:75:3E:4A:F7:8F:4E:4F:E8:3B:65:D2:FD:B4
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 01976C2A904DE788E2F1266AB2EA261DD558
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 107C
Signing time: Sat 14 Jun 2025 02:00:17 +0000
Manifest this update: Sat 14 Jun 2025 02:00:17 +0000
Manifest next update: Sun 15 Jun 2025 02:00:17 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: otOCwL9dJWUO/bk+4Cq1kpR6xrmeLUs9fWZtZGDA9wQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:90:4d:e7:88:e2:f1:26:6a:b2:ea:26:1d:d5:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Jun 14 02:00:17 2025 GMT
Not After : Jun 15 02:00:17 2025 GMT
Subject: CN=00897b760054a2753e4af78f4e4fe83b65d2fdb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e2:7d:c5:2c:ac:8c:a6:86:7e:a7:b5:b4:cd:
38:9b:01:71:72:ec:81:20:a3:ba:37:c4:41:54:0d:
7a:03:86:ac:75:b9:68:4f:fc:55:f3:8f:9b:6c:d9:
7b:a0:17:5e:16:48:61:5c:bb:d8:d0:ff:63:60:c1:
07:17:e2:55:8c:80:b1:61:d3:d8:57:c4:09:c1:f2:
aa:5d:e0:24:4e:76:69:70:02:b7:1e:5d:5f:15:68:
f2:f1:11:f4:0b:39:53:1a:11:28:b3:6d:10:0e:fe:
4c:f5:a5:76:c4:7b:9a:20:f6:b3:67:2c:a3:27:8e:
19:9c:d3:79:31:de:3c:3d:f3:87:f6:ef:d1:39:6d:
0a:c3:64:ed:a3:00:69:8f:51:bd:0e:75:ca:43:c0:
ca:d7:e0:fe:20:11:bb:6d:81:36:4e:b0:c8:e3:8e:
11:bc:1b:26:c6:39:59:37:51:74:0f:18:2f:f6:b6:
ac:4f:37:4e:9b:f4:b9:33:4e:be:13:12:8f:77:90:
e4:4f:b4:94:6f:83:db:f2:fc:54:21:fe:7d:b7:a1:
35:60:f6:c2:7e:5c:0e:27:19:ab:28:33:e8:22:90:
ac:2d:26:21:d5:00:09:9d:bf:f1:af:b8:df:1e:a8:
43:b1:16:02:3b:c3:b2:1a:94:b7:56:81:25:e4:35:
e9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:89:7B:76:00:54:A2:75:3E:4A:F7:8F:4E:4F:E8:3B:65:D2:FD:B4
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:4d:01:e8:ff:75:36:f4:be:81:80:00:df:c6:b8:39:41:d4:
f0:28:1c:52:52:eb:77:4b:c0:cb:21:c1:bc:ad:54:a3:d2:3f:
9e:8b:b9:7d:a9:1f:71:71:d0:9b:77:f8:96:53:9d:01:b8:0d:
88:06:81:34:34:f2:7d:cd:c8:28:b0:d5:0c:27:cc:94:c9:44:
d0:2b:74:09:fc:23:e2:0f:cf:2b:12:26:7a:d3:6d:06:11:54:
21:76:df:9e:da:a7:7a:6b:4d:93:7f:47:85:3b:7f:bc:b7:10:
92:d5:1b:91:ca:4a:bc:ef:7b:39:cf:90:23:af:44:f0:10:55:
e7:43:a3:c4:53:5e:c0:04:2f:13:df:49:26:31:14:8d:59:2d:
88:24:07:98:2e:f5:bd:af:4f:c6:0b:6e:8c:11:f2:37:20:16:
b9:80:1e:d1:0c:2a:5d:ef:6d:b3:76:59:ba:c8:52:f0:c6:d9:
58:10:ea:1d:19:e6:ae:49:bf:86:c7:45:20:25:b4:01:9e:b3:
67:5b:06:53:0e:e0:b9:f3:5f:14:b0:c9:5c:85:4c:7e:a8:e4:
34:42:10:53:35:92:3f:b7:66:3a:0f:02:07:7f:ef:4a:b5:f5:
77:f8:44:e1:34:11:94:b8:c8:d5:32:e8:cc:97:72:fb:ce:fb:
20:7f:aa:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKpBN54ji8SZqsuomHdVYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmZTQxNzM2MjZmNDYwMjY0MGU4ZDRlOTZiNTRhMWEwOTZh
YmU3OGIwHhcNMjUwNjE0MDIwMDE3WhcNMjUwNjE1MDIwMDE3WjAzMTEwLwYDVQQD
EygwMDg5N2I3NjAwNTRhMjc1M2U0YWY3OGY0ZTRmZTgzYjY1ZDJmZGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5uJ9xSysjKaGfqe1tM04mwFxcuyB
IKO6N8RBVA16A4asdbloT/xV84+bbNl7oBdeFkhhXLvY0P9jYMEHF+JVjICxYdPY
V8QJwfKqXeAkTnZpcAK3Hl1fFWjy8RH0CzlTGhEos20QDv5M9aV2xHuaIPazZyyj
J44ZnNN5Md48PfOH9u/ROW0Kw2TtowBpj1G9DnXKQ8DK1+D+IBG7bYE2TrDI444R
vBsmxjlZN1F0Dxgv9rasTzdOm/S5M06+ExKPd5DkT7SUb4Pb8vxUIf59t6E1YPbC
flwOJxmrKDPoIpCsLSYh1QAJnb/xr7jfHqhDsRYCO8OyGpS3VoEl5DXpzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFACJe3YAVKJ1Pkr3j05P6Dtl0v20MB8GA1UdIwQY
MBaAFC/kFzYm9GAmQOjU6WtUoaCWq+eLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTC1RWE5pYjBZQ1pBNk5UcGExU2hvSmFyNTRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9hNGNkMGQtYWYxNC00OWMzLTk0ODEt
MzU0NzljNTRkY2JkLzEvTC1RWE5pYjBZQ1pBNk5UcGExU2hvSmFyNTRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9hNGNkMGQtYWYxNC00OWMzLTk0ODEtMzU0NzljNTRkY2Jk
LzEvTC1RWE5pYjBZQ1pBNk5UcGExU2hvSmFyNTRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFE0B6P91
NvS+gYAA38a4OUHU8CgcUlLrd0vAyyHBvK1Uo9I/nou5fakfcXHQm3f4llOdAbgN
iAaBNDTyfc3IKLDVDCfMlMlE0Ct0Cfwj4g/PKxImetNtBhFUIXbfntqnemtNk39H
hTt/vLcQktUbkcpKvO97Oc+QI69E8BBV50OjxFNewAQvE99JJjEUjVktiCQHmC71
va9PxgtujBHyNyAWuYAe0QwqXe9ts3ZZushS8MbZWBDqHRnmrkm/hsdFICW0AZ6z
Z1sGUw7gufNfFLDJXIVMfqjkNEIQUzWSP7dmOg8CB3/vSrX1d/hE4TQRlLjI1TLo
zJdy+877IH+qxA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 08:22:06 2025 by rpki-client