Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: 1wsxUmJzysvdN0fHcD6JIWkp71Y6ARL46BJ0+i68Ugc=
Subject key identifier: 0B:A0:93:94:75:30:B6:95:6F:F7:46:D1:8A:CD:CE:32:C3:A9:D5:C4
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 0197BA7DA30A1CEF33D2A8F23D4453EE5C8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0E55
Signing time: Sun 29 Jun 2025 07:01:25 +0000
Manifest this update: Sun 29 Jun 2025 07:01:25 +0000
Manifest next update: Mon 30 Jun 2025 07:01:25 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: kLA//D6NQ4jb31jkY/LmZ0yYb61qe7RWBaVDpVcp7XA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:a3:0a:1c:ef:33:d2:a8:f2:3d:44:53:ee:5c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Jun 29 07:01:25 2025 GMT
Not After : Jun 30 07:01:25 2025 GMT
Subject: CN=0ba093947530b6956ff746d18acdce32c3a9d5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:21:b6:32:4e:fa:d6:44:5d:5e:ed:12:a6:b2:
15:08:bb:36:f1:54:f1:ac:fa:11:f0:82:c4:85:fa:
e0:29:1b:2e:1e:1e:53:4e:13:ab:cb:5f:2e:76:7f:
c6:33:a8:3b:e2:b0:98:e0:fe:6e:ed:b7:c8:ea:5d:
3a:55:48:7c:d4:4d:55:cd:f6:80:d7:c8:40:27:9e:
aa:5e:66:1d:03:cc:90:7a:cb:fc:df:5e:df:a1:b9:
a6:95:5a:e0:89:dc:7a:6f:41:23:af:15:ac:41:c3:
29:63:c2:ae:c8:cf:fd:8d:ac:aa:c6:8a:4c:74:94:
ca:1c:68:2e:ab:20:7e:f0:c3:56:9a:7f:d2:b7:63:
c9:ec:41:85:79:f1:cf:b4:6f:6d:97:fb:e3:f9:51:
cc:02:cf:f9:10:12:51:a1:58:be:ab:00:71:a3:8c:
b6:a6:6a:65:71:5e:f2:22:e2:22:5b:da:a4:f1:28:
d0:5f:39:76:c1:16:1a:6b:27:55:45:a3:d3:57:78:
ef:1d:f9:b6:ec:0c:e3:1e:a8:4e:82:7d:68:68:be:
2e:41:1c:de:11:9b:a3:51:d0:03:48:91:5a:1a:10:
2f:e8:22:23:cc:12:62:ae:50:e2:3a:80:87:0d:07:
e7:99:6a:33:90:44:4f:0e:84:4c:b8:f4:6c:e0:95:
f2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A0:93:94:75:30:B6:95:6F:F7:46:D1:8A:CD:CE:32:C3:A9:D5:C4
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:35:1a:05:86:0f:b1:52:eb:18:df:7a:14:27:79:b9:09:72:
a7:09:eb:42:d6:91:22:41:a7:ff:66:8e:68:f7:f4:a6:dc:5c:
c7:45:8f:ff:e2:12:b7:b6:72:b6:bb:e5:98:e2:46:fa:bd:be:
f2:df:eb:78:88:bf:e9:18:52:b3:30:ff:a4:ab:ee:f9:92:87:
6e:77:02:44:00:2d:04:91:06:24:05:00:d7:d4:f1:f7:54:6d:
56:0f:1e:ef:b6:6b:5c:ac:b5:d0:0a:20:0f:34:38:98:8d:f6:
f7:70:cd:bd:be:50:4a:4b:b6:c7:b6:fd:bd:d9:b1:7d:dd:97:
31:40:2e:ec:58:ce:d7:5b:9c:3f:14:c6:1d:90:7a:2f:bd:b8:
98:6e:15:8c:42:ac:44:ce:28:9e:3b:c2:ea:3f:2a:ac:26:08:
36:47:f6:db:7d:12:12:17:ef:d7:cc:d5:4b:67:9e:f0:11:7e:
35:d9:a2:1e:09:b5:38:6e:2e:38:15:70:75:67:bb:18:7c:f9:
fd:53:d2:6c:ce:f4:06:8a:8e:66:e2:17:ce:6c:19:ff:cc:f1:
7e:7b:da:7d:25:bc:fa:e3:d0:ab:89:89:a5:ae:e4:18:09:fe:
39:a3:22:3b:db:c9:46:68:10:14:77:38:3b:a2:ae:44:0d:83:
43:e0:5c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:12:48 2025 by rpki-client