Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: Oayjy/5qt4EuSE/ECrTPJzZdyeLUlCWfUIaYS/mR84U=
Subject key identifier: 42:24:C5:6F:61:24:11:77:DB:73:13:B0:91:2B:C5:CF:E3:2A:EB:33
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 0197647178891248EB98476514C8B27340D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1078
Signing time: Thu 12 Jun 2025 14:00:47 +0000
Manifest this update: Thu 12 Jun 2025 14:00:47 +0000
Manifest next update: Fri 13 Jun 2025 14:00:47 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: bFfCsGiphKbDK7c3e39RQ3IMVmsjkkvobuU1pHXfI8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:78:89:12:48:eb:98:47:65:14:c8:b2:73:40:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Jun 12 14:00:47 2025 GMT
Not After : Jun 13 14:00:47 2025 GMT
Subject: CN=4224c56f61241177db7313b0912bc5cfe32aeb33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:17:42:1e:ee:de:44:dd:e3:09:bc:ed:4a:29:
50:0c:81:8c:5c:1f:d0:17:7e:ee:20:3d:58:f8:cd:
5a:10:cc:22:0f:50:da:60:95:a1:04:82:bf:e8:ae:
31:20:f6:7a:ef:75:b2:dd:5c:87:16:51:e4:2e:99:
e8:10:a0:87:5e:8a:ec:24:d3:15:4d:84:b1:3a:25:
f8:9b:8b:be:c5:0d:88:26:55:88:14:ad:0d:c5:77:
7f:80:06:00:65:c2:ef:ae:9d:3d:cb:1f:85:36:4b:
b5:c6:9b:f6:58:04:87:11:71:68:10:ab:c5:ff:e1:
68:0a:0d:0e:8f:cc:ee:c1:67:6f:ae:4d:02:c6:67:
31:e4:7c:d0:0d:a8:d2:ad:09:36:6d:bb:cd:66:0b:
64:2d:2b:4e:6b:f9:78:f1:27:0c:75:55:68:01:50:
2b:b7:36:53:ca:c2:35:ec:fe:6b:c5:53:94:ee:36:
ef:8f:71:16:4f:a8:ab:89:5a:b7:e7:ee:0e:95:dd:
3e:d9:1f:07:43:e9:15:13:33:98:71:66:a7:47:ff:
5e:51:54:fa:55:fb:50:a8:89:68:fc:54:3e:3c:ee:
36:3b:d4:5e:ec:fd:1f:c0:5c:fb:c4:cd:7a:09:ca:
ed:88:fe:a2:4b:f3:5a:9a:32:e7:b2:0c:98:f4:10:
94:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:24:C5:6F:61:24:11:77:DB:73:13:B0:91:2B:C5:CF:E3:2A:EB:33
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:0a:93:a3:fc:42:e6:9f:a4:d6:79:b7:93:2a:84:85:81:d9:
ce:40:83:e2:33:6f:3e:ec:8c:ff:0b:d6:00:fc:8d:66:7b:f1:
20:ca:55:a3:f8:a9:a5:06:53:81:68:56:61:41:54:fc:9a:9c:
6b:75:20:13:e3:9c:c0:a6:79:5f:89:e0:a2:7a:89:56:1d:a5:
e9:c8:ae:91:ff:36:e6:f0:51:44:65:32:23:77:4d:a9:e5:74:
37:9b:f6:90:47:8a:b6:4d:f7:85:2a:82:64:ad:74:4f:6d:36:
4f:b0:ff:e9:fc:62:ae:8e:4e:7e:b8:fa:3b:f4:9a:97:7d:f7:
e2:ac:63:2a:b1:f6:1c:3e:95:80:d6:74:a9:8b:81:29:14:cd:
b1:47:c2:a0:f9:b7:06:fd:3c:b7:eb:bb:fa:67:6d:cc:c3:eb:
11:f2:c1:66:3c:e6:8d:ed:99:e1:78:74:b0:80:1c:3b:7a:a0:
72:6a:4c:76:12:15:9d:1b:f8:be:00:f7:16:06:07:82:ff:b6:
94:b8:6c:d5:b7:60:fe:68:54:6c:8a:55:45:f6:a1:c6:a1:ad:
89:f8:34:4b:93:fd:41:64:c3:55:7f:3a:cc:f7:24:81:f1:86:
9f:13:17:43:ee:75:40:53:26:ed:05:1f:f1:9a:0b:ae:ef:d7:
f0:7d:8b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:53:57 2025 by rpki-client