Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: pEWpBHzr5tdKZeATkc6K5m1Q2X1dfO69Nw2CgYnefuU=
Subject key identifier: 56:AF:45:F5:62:16:E8:30:C2:AC:18:9F:48:8C:E1:16:B6:88:56:3F
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 0198D73B6A91C38524F0D8FC5937B46F73B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1138
Signing time: Sat 23 Aug 2025 14:00:51 +0000
Manifest this update: Sat 23 Aug 2025 14:00:51 +0000
Manifest next update: Sun 24 Aug 2025 14:00:51 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: pPYetL+W+JNmCP7Mdek89TGNNV866Q+f80qwE00k7fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:6a:91:c3:85:24:f0:d8:fc:59:37:b4:6f:73:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Aug 23 14:00:51 2025 GMT
Not After : Aug 24 14:00:51 2025 GMT
Subject: CN=56af45f56216e830c2ac189f488ce116b688563f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e4:c9:5f:77:4b:49:36:01:e8:af:9d:58:60:
5e:32:a4:ba:50:10:49:bf:42:c0:12:26:2f:f0:ad:
4a:6a:2a:c0:7e:9a:81:c6:8a:34:2f:ab:87:3d:fe:
82:56:cf:c9:b6:9f:d8:ea:25:ec:f6:63:f9:aa:5d:
b5:82:72:1f:9d:18:65:43:26:5a:fb:2d:3f:e1:ca:
32:1a:66:04:cf:b2:41:53:f9:0b:d9:93:e1:91:13:
8f:ab:6c:06:73:68:61:bc:c2:2f:b4:b4:b5:81:2a:
af:d3:5f:5a:af:cd:11:c9:5d:c4:dd:d6:a5:96:33:
54:80:7d:4b:f4:27:33:a2:fe:43:32:c4:0b:c1:6d:
d1:8a:ea:c6:52:98:67:e8:96:2e:f3:b9:f4:bb:19:
1e:41:88:af:04:5c:77:9c:f4:27:be:05:78:0d:88:
a1:0c:46:69:16:10:a5:f9:4b:40:28:58:40:b7:ca:
60:fb:05:88:5d:0e:b8:85:a4:dc:d1:ea:6b:36:a5:
9d:cb:0e:cd:84:67:c5:e2:31:c7:82:81:80:5a:9b:
e2:95:b9:26:ed:e1:64:0e:91:4c:cd:2c:b8:38:b1:
4f:fb:7a:a9:3c:9e:73:26:65:ec:bd:7e:7b:ab:3b:
bb:68:b1:d8:3a:40:6f:fc:ba:20:67:28:3d:03:0e:
90:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AF:45:F5:62:16:E8:30:C2:AC:18:9F:48:8C:E1:16:B6:88:56:3F
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:8b:c3:03:a3:af:21:b0:de:22:75:e3:22:2f:f2:82:57:b5:
37:35:ca:eb:81:5f:e5:66:22:96:e0:f3:09:4c:14:8c:fa:23:
84:eb:a9:c8:01:bc:64:5f:0b:99:7e:3b:29:fc:a4:23:9b:03:
e0:18:19:79:b8:c1:ba:ab:3c:ab:2a:37:84:5e:5f:30:0b:d4:
8a:4f:9c:b6:cd:84:44:96:fa:fc:8e:bd:33:96:2d:51:68:16:
59:57:94:0f:4a:82:e4:eb:a7:ab:cf:75:c2:73:e1:fb:6b:39:
81:9c:fe:35:6b:c2:fc:f8:45:c1:fc:eb:55:e8:67:58:30:12:
13:04:2f:78:85:52:7d:0a:8d:19:9f:38:f8:78:09:7f:ef:15:
b8:31:b8:5d:29:39:08:b2:8b:d2:db:44:10:bf:d2:b5:68:25:
97:d9:33:0e:83:36:f0:6b:1a:ad:f6:53:60:eb:5b:20:d7:da:
49:b4:7f:01:3f:25:16:dd:11:64:fc:a6:1f:78:08:05:4c:73:
21:0d:f2:f9:35:4f:75:4e:c0:a6:37:e7:8d:c4:3e:f9:31:18:
6f:7a:29:8c:20:25:96:86:72:f5:bd:e9:cb:79:b5:53:f6:f3:
b1:80:d1:42:07:2c:7e:cf:fb:97:fa:79:77:48:df:01:58:a2:
ef:70:67:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:27:20 2025 by rpki-client