Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: Gjf6gTI6KKyf2udiOjuUzo5d37W1PdbLFAeyPLLuuP8=
Subject key identifier: E1:92:3C:0E:B7:B1:B3:68:63:2E:5E:0A:4E:F7:0C:0A:61:42:8E:8A
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 0196C239250CAC5E2AD08D68D96A891EB0FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1024
Signing time: Mon 12 May 2025 02:00:47 +0000
Manifest this update: Mon 12 May 2025 02:00:47 +0000
Manifest next update: Tue 13 May 2025 02:00:47 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: Tq7/WDnmTfFZ/0aFtJE1KokkCLtrIH2RG+Neb+oU0Cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:25:0c:ac:5e:2a:d0:8d:68:d9:6a:89:1e:b0:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: May 12 02:00:47 2025 GMT
Not After : May 13 02:00:47 2025 GMT
Subject: CN=e1923c0eb7b1b368632e5e0a4ef70c0a61428e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:eb:4b:88:f1:29:26:31:47:40:93:5a:01:11:
9b:1e:db:23:c3:f7:cd:13:cb:8c:8f:2d:7e:78:1d:
6b:72:5a:1f:64:be:d0:cb:a7:f1:c2:e7:c1:96:39:
7c:1e:39:9e:15:b2:25:80:c1:87:68:5a:ae:d4:f3:
fe:42:2f:61:0f:ce:24:b9:40:7e:d2:e6:03:40:b9:
eb:fb:fb:a9:c6:09:29:2e:dc:ac:6a:7f:4c:c2:5b:
2f:8c:33:9b:42:29:8f:81:e8:9d:45:27:0e:9c:44:
d5:bc:58:10:83:d5:ca:14:64:40:16:b7:74:4f:73:
80:98:e3:05:17:68:4a:b3:b3:29:47:f3:4e:58:eb:
01:97:df:ad:65:d7:3b:5e:97:38:a5:cd:d9:b2:e5:
47:87:55:65:52:0a:5a:bd:d0:15:f4:d0:85:dc:11:
86:48:75:62:d6:be:6e:3c:b5:55:d5:f5:c8:7f:ab:
2f:4d:18:e1:7c:74:9a:ab:a5:65:54:aa:64:15:96:
9d:4d:4a:b9:dd:eb:b8:4d:55:37:60:50:a9:93:e2:
89:3c:f7:2d:40:35:5a:ef:b9:ee:a6:03:d9:f2:22:
60:24:d3:69:05:1a:8a:d2:cc:a7:bb:12:1d:93:66:
bf:6e:f9:07:80:9a:3b:21:7e:64:00:ee:0b:2a:0c:
5d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:92:3C:0E:B7:B1:B3:68:63:2E:5E:0A:4E:F7:0C:0A:61:42:8E:8A
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:44:91:74:a1:45:13:30:28:3a:17:93:fb:13:2e:68:4e:92:
cd:d6:66:8b:ca:f4:d6:21:80:7c:ab:6b:aa:f0:2b:92:af:39:
c9:90:5d:a9:93:8a:00:31:d3:57:d1:ab:d2:6e:d8:31:5b:17:
cc:63:70:2d:74:1c:71:91:e4:96:94:2c:43:2e:f1:e8:7d:2a:
db:92:7c:0c:4e:c6:6d:d7:b7:e4:0f:85:49:0a:7d:49:95:32:
54:f4:ba:77:20:2b:e0:08:18:97:b6:dd:86:59:89:bb:8f:4a:
24:87:ac:c1:78:26:cb:c3:a9:48:c1:29:1d:29:7e:7a:e0:41:
53:b3:06:b1:61:ab:63:27:d2:5f:f9:df:a4:7d:d1:89:17:84:
bc:ec:71:10:b1:36:af:ea:c4:ea:c3:4a:04:a2:ee:a2:25:39:
b9:be:20:d8:5d:7e:e5:ad:aa:47:c5:7f:1d:c3:73:0f:30:65:
01:d6:54:4b:20:d1:40:f2:71:6c:b4:49:f4:33:7a:c5:db:e0:
bf:23:99:51:48:f9:58:e5:8a:34:7f:c8:09:6f:1a:30:37:96:
48:1e:6e:36:89:22:c7:94:69:c0:79:1c:6b:0e:80:13:57:52:
23:20:c8:0e:1b:0c:96:ce:04:ec:30:68:47:f4:38:79:21:fb:
1b:9b:40:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:30:26 2025 by rpki-client