Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: uwnJqmduC8b4sN4aXQlOPYT2ll7SjXIM+6xxgIoBX4A=
Subject key identifier: 30:62:85:CF:49:E7:6D:9D:7E:90:DE:35:A1:33:63:72:65:50:DF:AB
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 0197B77CA75D3214EBE205B3EC1D79841880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 10A3
Signing time: Sat 28 Jun 2025 17:01:29 +0000
Manifest this update: Sat 28 Jun 2025 17:01:29 +0000
Manifest next update: Sun 29 Jun 2025 17:01:29 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: iaXgLkiMcacMi9mck0ItTXW48CrcutdA+RmRne9ARKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:a7:5d:32:14:eb:e2:05:b3:ec:1d:79:84:18:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Jun 28 17:01:29 2025 GMT
Not After : Jun 29 17:01:29 2025 GMT
Subject: CN=306285cf49e76d9d7e90de35a13363726550dfab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:89:c4:31:4f:b0:1c:97:8d:26:ea:f5:12:
8c:59:a2:5f:ae:32:af:60:72:04:89:30:66:d2:14:
97:9e:56:2d:26:94:01:54:54:33:33:6a:a2:6a:c3:
32:b3:10:2a:f8:9c:e5:16:ea:1e:d7:cf:61:54:b4:
83:4e:9f:7f:70:cb:4b:d9:d7:fc:0f:19:90:af:85:
2b:cc:f9:3e:5c:8c:dc:e6:f0:16:ba:0b:46:d1:30:
84:b9:fd:e9:db:25:94:19:92:e6:1a:74:5e:0b:a4:
cf:1a:84:1d:4c:3b:e0:60:9d:c6:29:e7:13:62:9f:
b3:b5:11:36:bf:39:51:90:5e:65:14:cb:03:2b:59:
a9:ed:d6:4b:d5:69:a3:07:8d:7c:6b:1c:ef:77:20:
a8:99:6a:22:d8:93:db:94:a9:92:dc:bf:7b:c4:ce:
3f:43:d6:e7:d1:89:47:fd:09:a2:aa:60:a9:8a:c2:
8c:d2:47:78:c6:89:7b:76:54:47:ac:5a:3d:d8:f7:
cc:df:6c:4e:65:b3:87:66:0f:53:75:ad:f4:e5:6b:
5e:fe:74:5b:a7:50:9a:90:85:e8:58:19:14:fb:6e:
6b:85:60:0c:70:14:2f:8c:b2:36:31:60:8e:ec:f0:
0b:7c:71:53:98:00:35:ed:2f:4f:c3:84:84:d7:86:
01:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:62:85:CF:49:E7:6D:9D:7E:90:DE:35:A1:33:63:72:65:50:DF:AB
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:40:2a:a8:73:70:a1:13:9a:72:46:39:61:ad:da:fb:34:48:
f7:77:14:3a:d2:33:ff:e8:20:d1:27:1a:3e:5a:59:f4:37:cf:
41:a2:8a:11:78:ed:39:71:92:2a:8a:10:24:98:79:2b:02:d3:
6a:40:6a:26:15:ef:01:b9:43:b3:98:65:55:b2:db:8a:7c:e1:
8f:4c:a2:15:b5:7b:7c:53:ab:4e:b3:ed:50:8b:06:41:94:bb:
9f:00:3b:b7:57:57:61:9b:8f:57:9c:9f:4a:a1:bb:48:b1:b9:
21:0e:29:e3:08:dd:ac:eb:7b:7c:8e:39:9c:6b:c6:88:31:b8:
27:8c:72:2e:d6:22:3a:6f:54:1f:99:a1:be:b4:63:3e:26:5b:
77:f1:76:d9:53:f3:9b:c8:04:63:29:41:2b:e8:d8:e3:f5:85:
3f:1e:82:18:e5:37:31:c1:50:73:0c:83:8c:aa:70:19:2f:28:
02:65:a3:38:3f:b6:79:a3:72:85:f9:51:93:13:69:2a:e8:7e:
9f:32:b9:a5:69:be:eb:2e:b2:bf:2f:6e:81:8e:e1:a1:7d:e2:
7c:71:df:fc:ab:c7:50:12:c4:4e:dc:82:2b:19:0b:d9:7d:5f:
84:12:7c:c7:68:fe:ea:3e:3b:d0:df:00:26:9f:ef:7e:6a:bd:
ea:34:12:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:57 2025 by rpki-client