Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: XmRoug0NmxL/7y9FNIGV4GkvCA7QQcivDoZAUUnIK6w=
Subject key identifier: 61:7B:3C:AF:8A:80:B2:36:70:7B:34:47:9C:E0:1C:CF:1B:C0:C5:A7
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 0199FCC6CB012AF87A6B34F4E20AF76A1FDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 11D0
Signing time: Sun 19 Oct 2025 14:01:50 +0000
Manifest this update: Sun 19 Oct 2025 14:01:50 +0000
Manifest next update: Mon 20 Oct 2025 14:01:50 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: +hheHpzJPJz0FJZ0DVaPELM7N0XEbX7BUknXZYQ24c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:cb:01:2a:f8:7a:6b:34:f4:e2:0a:f7:6a:1f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Oct 19 14:01:50 2025 GMT
Not After : Oct 20 14:01:50 2025 GMT
Subject: CN=617b3caf8a80b236707b34479ce01ccf1bc0c5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:23:34:d5:11:ad:bf:b7:17:4c:2a:55:af:84:
b8:8d:75:ef:5e:1c:11:40:bf:5d:a5:d8:ae:4a:21:
52:b1:e8:5f:bf:83:69:32:ae:52:b5:a6:d4:ef:26:
f4:7b:67:e4:1b:9a:d7:f2:1f:1f:e6:f2:a4:bd:fe:
55:f7:86:cc:7f:22:0c:57:4a:ff:17:b0:c3:be:3e:
90:68:1a:01:35:10:67:d3:9b:d4:10:83:44:bd:cf:
5d:a7:0c:bc:95:b5:f7:41:03:2e:f3:49:df:a6:2d:
72:08:f2:c4:ff:9f:16:6c:ce:21:41:a0:8e:b1:19:
1f:7b:9b:0c:e2:38:93:3b:69:00:58:cf:6f:4f:6a:
07:f1:3e:f5:50:2f:33:57:68:8c:07:88:86:e3:3d:
3b:ae:00:0a:7b:5c:43:35:7f:e5:68:86:e4:69:6f:
9d:89:1b:30:1d:a7:aa:40:c3:af:5e:6b:91:4c:bd:
da:d6:9f:e7:47:03:77:38:14:ba:06:82:7a:42:4e:
98:05:0e:26:d0:a8:ef:d1:e8:dc:6a:e0:00:9f:00:
7f:98:11:70:74:4f:d9:ca:b2:fe:3b:0f:21:6b:b6:
d5:d1:84:7a:f8:39:d1:7e:ec:6a:72:7b:98:d2:b4:
7a:09:b1:a1:1b:7f:cb:af:bc:13:3e:1d:53:76:ba:
ac:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7B:3C:AF:8A:80:B2:36:70:7B:34:47:9C:E0:1C:CF:1B:C0:C5:A7
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:82:15:0e:dd:eb:6a:9b:79:22:e6:2a:0c:8a:df:4c:df:67:
d3:4d:a3:48:1e:8c:de:9a:48:bb:ee:fe:47:22:28:47:64:41:
8e:66:64:73:44:b7:a8:bc:f0:31:f6:57:63:d3:2b:7d:b5:92:
9e:dd:57:ec:bc:1c:f9:c6:3d:df:71:d3:63:09:f8:85:2a:77:
c7:b8:f0:95:d8:13:92:af:fa:b7:df:2b:97:41:07:aa:c3:e7:
fb:a8:22:b7:c9:84:61:43:53:43:95:52:ef:e4:d1:d0:e6:e9:
95:f7:26:94:6c:b2:8c:33:a7:7d:3f:6d:05:e2:e0:85:22:4f:
5a:49:4b:ba:36:07:35:e2:a8:0c:8b:a8:5c:70:1e:20:92:05:
d1:1a:10:b8:84:1c:f4:4f:57:57:87:1a:61:9b:63:95:22:57:
09:97:b7:56:d5:c9:f2:db:25:5a:de:1d:5e:c7:86:df:b5:dd:
44:82:85:44:74:d7:95:ed:1c:ed:21:6d:85:be:f7:86:31:34:
57:e3:0b:2a:fa:07:c2:8b:b8:d8:66:6e:83:2a:ab:db:4f:d4:
6c:c0:3e:08:52:ab:3a:16:8b:5c:b4:1c:e6:95:db:d0:85:ee:
f1:35:e5:e4:d5:8c:73:01:b6:40:ad:af:50:51:bf:41:a5:66:
6d:fa:66:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:28:27 2025 by rpki-client