Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: vVjyyXNxTWHrVtQ2+LeZZdMhgrLEvViZD8isMnaHCSw=
Subject key identifier: 14:38:E2:9F:C8:25:93:49:C8:18:D4:5E:9B:DF:DD:D4:69:AC:10:41
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 01958B4DD6C143AF324E1FDB08739940BA0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 0F83
Signing time: Wed 12 Mar 2025 17:01:29 +0000
Manifest this update: Wed 12 Mar 2025 17:01:29 +0000
Manifest next update: Thu 13 Mar 2025 17:01:29 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: +AzYzE4z0K2tZAMAli1KlVj7iapOOUZtDv08LS2Xpyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:d6:c1:43:af:32:4e:1f:db:08:73:99:40:ba:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Mar 12 17:01:29 2025 GMT
Not After : Mar 13 17:01:29 2025 GMT
Subject: CN=1438e29fc8259349c818d45e9bdfddd469ac1041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d3:5e:cf:e2:62:e0:ea:4d:d0:a8:61:d6:81:
3c:e1:77:71:53:d4:23:f9:57:57:83:4e:90:b5:d1:
c4:4d:26:f0:f0:da:2c:10:e4:d8:27:15:a4:12:40:
fd:0a:12:e2:82:d2:35:10:df:b7:9b:54:d7:79:3f:
5b:f6:24:c3:17:ff:47:e5:35:85:40:03:ca:c7:8b:
60:35:08:d8:d0:ef:12:01:35:4f:76:64:ba:53:33:
10:e1:5a:16:80:31:9a:48:da:47:0b:d3:40:36:cd:
94:45:9a:c5:b3:3c:bf:8d:19:3a:aa:a9:01:85:47:
6c:99:5d:d3:07:54:09:b4:11:44:a0:af:ff:04:9d:
af:a3:4e:c7:f7:25:f8:28:d2:3a:94:4c:f4:56:f0:
31:22:60:93:d3:22:37:48:d5:dd:b0:23:a9:23:96:
75:50:67:36:55:1d:38:18:49:aa:d0:f7:a4:56:7a:
70:41:f7:73:7f:3c:52:4e:dd:bd:d3:51:78:5f:98:
c4:5a:0a:53:86:52:66:57:36:41:97:53:ae:91:4e:
03:b9:d4:73:e2:60:88:3d:7c:03:b0:6c:67:38:42:
cd:d4:59:84:7a:ad:27:92:16:58:d7:e0:b3:ad:d4:
03:09:4d:5c:43:87:7c:13:a9:08:a1:5c:66:56:b9:
23:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:38:E2:9F:C8:25:93:49:C8:18:D4:5E:9B:DF:DD:D4:69:AC:10:41
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:09:cd:19:5e:a1:49:77:f6:91:f5:53:e3:a3:94:28:08:1c:
b4:7c:ac:1c:f7:e0:e7:b5:10:e7:6a:27:cf:c3:e5:69:69:11:
32:0e:6e:84:ec:89:c1:d6:86:d1:4d:79:82:61:39:d7:95:a1:
91:aa:dc:04:ff:66:d5:00:ca:29:8e:ce:d4:6a:83:8f:01:f8:
d4:56:ab:2c:f9:f0:c4:5b:3b:70:95:65:10:76:9a:21:a9:da:
37:ef:3c:8f:8e:44:c1:6c:fa:32:9c:db:eb:eb:de:66:8e:32:
54:c1:ce:7e:a0:ff:a5:55:eb:97:df:40:82:71:c2:3b:77:bc:
a1:39:c5:a2:97:49:97:4a:66:ec:15:4d:53:b2:9a:46:cd:ba:
a8:af:76:da:e6:70:96:7d:68:46:c8:8d:0e:09:6c:36:55:26:
ad:96:72:a8:e4:e3:05:60:ab:b9:f3:ad:00:57:74:4d:1b:d5:
b7:ec:0e:ab:3a:b7:40:72:36:f1:81:73:93:2a:3b:22:35:c8:
30:b4:7f:46:9f:43:3c:ab:b8:9d:00:a7:72:c9:9c:58:14:2a:
6e:92:5d:b9:48:aa:9d:82:ee:49:ad:d3:9a:a1:5d:bb:61:84:
3a:32:a5:bb:1c:79:b0:63:80:96:bb:47:53:81:37:e9:71:60:
ef:0f:05:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:49 2025 by rpki-client