Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: iM+8WnDG1GZduOTngWA9Fn0IylJMWjY3q+XHvY7Bby0=
Subject key identifier: 43:7E:41:CD:01:4B:88:3E:69:D4:DA:4E:0D:7F:3A:82:E7:18:AB:85
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 019D2771FC9FCD2F743F5DE833D859A5C295
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1374
Signing time: Thu 26 Mar 2026 00:01:14 +0000
Manifest this update: Thu 26 Mar 2026 00:01:14 +0000
Manifest next update: Fri 27 Mar 2026 00:01:14 +0000
Files and hashes: 1: DQDusfxjlUfsx_jYQ2_QIlod900.roa (hash: w5lQk1AHZADVNhIU1Bs+67ehT2OLHgD2oIHKthafOJo=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: P4pyXY0da4zQmIaB7qzYpwPJz30F3rWawo7M8LO52qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:fc:9f:cd:2f:74:3f:5d:e8:33:d8:59:a5:c2:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Mar 26 00:01:14 2026 GMT
Not After : Mar 27 00:01:14 2026 GMT
Subject: CN=437e41cd014b883e69d4da4e0d7f3a82e718ab85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:57:0f:14:03:a6:f5:d3:db:fc:33:1f:c1:14:
5a:cb:b0:46:0d:39:b1:c1:5c:aa:10:c5:db:0e:a6:
8d:93:d9:74:81:40:72:c8:cf:20:6e:92:9f:f9:27:
b3:1f:74:e9:c5:a0:d1:61:8c:ff:96:af:cd:4f:69:
fd:43:15:70:7f:ea:53:86:54:b7:af:59:9e:b7:fb:
4d:a1:4f:80:07:af:37:6c:bb:53:f9:b0:9a:05:a4:
3f:56:ba:b5:ed:6c:a2:bf:10:42:ac:ea:11:8d:a1:
6c:13:32:08:cd:b4:a2:68:77:71:d4:dd:4b:e1:63:
62:8b:ab:c1:2d:10:41:71:b3:2e:08:f2:13:2c:e1:
56:91:c6:6a:13:eb:18:cb:bc:74:49:d3:9f:e0:f9:
d8:78:36:22:14:f9:f1:c0:15:b5:0a:60:d3:e5:9a:
64:47:cc:9b:5b:c6:61:e1:10:cf:ba:b7:43:3d:b3:
98:52:1b:41:a2:a0:0f:c4:8d:fe:60:b3:e0:2f:c3:
f3:9e:3d:2f:ec:1b:2f:55:d4:b4:17:23:6a:a8:bb:
75:1e:c6:c6:ba:ad:4e:4b:30:5e:43:e9:3d:9f:37:
38:ce:32:0a:2c:c9:67:b8:be:09:a3:af:fc:81:bc:
f1:74:5a:a2:08:56:d4:21:7d:2a:db:ab:d1:da:bf:
fd:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7E:41:CD:01:4B:88:3E:69:D4:DA:4E:0D:7F:3A:82:E7:18:AB:85
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:3b:27:63:a5:c7:ac:f2:92:66:81:18:2e:b5:dc:5d:e7:85:
eb:47:35:34:3b:3a:26:90:4b:a8:62:6d:46:5f:14:c2:2e:1b:
77:d7:e4:77:34:56:e4:5f:29:56:0d:68:60:20:35:2a:6b:89:
6a:9e:4a:9b:9f:5b:f3:3a:53:8d:55:74:93:d2:c2:fa:a7:b4:
02:ae:ee:b7:83:d8:f0:24:3f:11:b2:6f:ce:40:13:e2:3e:4e:
b5:09:f2:86:7d:27:9b:f2:fe:00:6f:32:60:64:3d:f0:81:1c:
22:a7:85:27:fa:7c:3a:43:15:c5:5c:1b:2c:44:97:50:f6:0b:
76:ff:6f:c3:da:a5:46:36:ba:d1:48:ae:ab:33:89:3e:6b:68:
15:29:c4:18:e1:84:6e:f3:65:d8:01:46:ee:55:eb:f7:fd:eb:
a1:7c:d8:fc:a5:7f:3f:04:09:80:9f:6f:a9:e5:cf:cf:fb:d6:
61:4b:5c:59:c2:04:b9:f4:c4:cc:1b:f5:c2:8f:65:66:24:d5:
00:88:01:20:4e:8e:c0:4b:bc:5b:34:c7:69:76:2e:93:36:0b:
d3:58:dd:7e:25:d4:15:9d:ff:ba:2d:29:dd:f5:1d:04:88:bc:
0a:9e:be:21:d2:97:bc:11:dc:af:40:9c:fd:d3:4c:30:e9:77:
9b:2a:98:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:02:51 2026 by rpki-client