Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: wCJmWwIo0N7lLX1CcbWStSOsfHOhEDBs7dTtfpkiVrI=
Subject key identifier: B0:BA:29:09:11:D0:22:A9:5D:20:9B:DD:BA:C0:E1:67:88:4D:05:E3
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 0198D65F78F3C3A63E16185B61E150352CBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0EE8
Signing time: Sat 23 Aug 2025 10:00:37 +0000
Manifest this update: Sat 23 Aug 2025 10:00:37 +0000
Manifest next update: Sun 24 Aug 2025 10:00:37 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: q0Ir5HI4PDlEQLLASvP+u8nOZnwwS+n7G1pr35g7hfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:78:f3:c3:a6:3e:16:18:5b:61:e1:50:35:2c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Aug 23 10:00:37 2025 GMT
Not After : Aug 24 10:00:37 2025 GMT
Subject: CN=b0ba290911d022a95d209bddbac0e167884d05e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5b:fe:75:0c:93:e5:f3:9b:ac:87:95:5d:d7:
bb:cc:67:27:e5:a1:1e:0c:8b:09:bc:d9:c5:62:08:
d2:98:66:1c:17:ac:1e:a3:b1:90:17:ab:62:af:53:
35:16:2b:91:8e:5b:f2:6d:5f:29:ce:5e:50:2b:c2:
94:42:e2:26:1e:2b:87:30:bd:a9:85:ce:af:78:56:
64:6a:4b:c6:7d:cb:79:4a:8d:b7:34:36:f9:d2:b0:
13:3a:a9:93:87:a7:11:7b:a6:9c:d3:ac:7b:2b:8f:
8a:40:4d:0b:c6:fa:d3:0b:52:8a:f5:4f:49:c2:03:
67:a9:c2:3a:b7:dd:73:ee:8a:74:aa:3c:0c:06:4d:
0c:72:20:f0:3d:c8:53:44:d9:48:95:25:9c:88:ba:
95:7b:67:07:4b:27:b0:a8:46:f9:f8:bf:a5:7e:71:
2c:a2:8a:a9:32:50:96:8b:44:64:4a:e6:97:41:94:
f3:70:ea:ed:bd:6e:7a:f0:85:bb:57:82:10:ff:ec:
bf:03:d5:f2:c8:52:0f:a5:ec:c9:e8:13:df:82:c8:
e5:e5:4f:c4:1b:6d:dc:7f:e9:43:bd:44:9f:72:2d:
c3:4b:fb:3a:d9:3c:12:bd:9e:40:fc:91:22:8e:da:
42:58:dc:c0:32:e8:fe:26:2a:b8:7c:37:a6:ac:da:
3a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BA:29:09:11:D0:22:A9:5D:20:9B:DD:BA:C0:E1:67:88:4D:05:E3
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:01:58:40:ef:a6:77:3c:38:ac:b9:d8:05:f0:3c:ef:a9:43:
eb:3f:f1:f5:e8:b2:85:f1:5f:69:1f:58:69:18:ff:14:22:54:
a2:81:97:e5:ab:3e:cf:eb:ce:3b:09:b2:fb:26:89:80:73:4d:
4b:e8:16:0c:33:a2:94:fe:fe:41:7f:de:2d:ec:39:74:41:72:
73:6e:65:dc:b3:36:93:c8:96:d4:49:0c:b7:56:de:3e:79:c2:
04:5c:41:ff:a8:3a:65:cf:0c:42:f7:77:25:62:7a:03:29:a9:
5d:9a:39:78:92:c9:ac:a2:06:59:9b:aa:24:65:f7:8f:c2:71:
bb:24:fb:80:77:93:81:88:c5:b6:0d:d7:4a:b5:dd:87:bf:f8:
dd:17:42:25:23:02:a1:e8:79:47:a5:51:e4:e6:23:54:3f:87:
92:c8:af:e1:9d:1b:bb:2b:0e:95:5c:08:ce:7c:8d:2b:c0:fb:
99:a3:af:fa:21:59:d9:93:cf:b9:9b:b4:49:75:d4:45:38:f6:
34:02:ca:82:b7:e9:87:30:5d:89:63:29:d7:20:fe:c9:be:53:
98:4b:db:ef:56:14:41:54:5b:bd:b1:4d:9b:c6:ab:99:74:69:
60:67:60:b5:fe:1f:3a:35:89:6a:81:29:c0:06:7e:9e:54:5c:
dd:18:7d:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX3jzw6Y+FhhbYeFQNSy7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MDAwYjgxZTllZDRiMmE3MDJhMWVmNWY4NTJlMGU3Njll
ZTEwZTIwHhcNMjUwODIzMTAwMDM3WhcNMjUwODI0MTAwMDM3WjAzMTEwLwYDVQQD
EyhiMGJhMjkwOTExZDAyMmE5NWQyMDliZGRiYWMwZTE2Nzg4NGQwNWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFv+dQyT5fObrIeVXde7zGcn5aEe
DIsJvNnFYgjSmGYcF6weo7GQF6tir1M1FiuRjlvybV8pzl5QK8KUQuImHiuHML2p
hc6veFZkakvGfct5So23NDb50rATOqmTh6cRe6ac06x7K4+KQE0LxvrTC1KK9U9J
wgNnqcI6t91z7op0qjwMBk0MciDwPchTRNlIlSWciLqVe2cHSyewqEb5+L+lfnEs
ooqpMlCWi0RkSuaXQZTzcOrtvW568IW7V4IQ/+y/A9XyyFIPpezJ6BPfgsjl5U/E
G23cf+lDvUSfci3DS/s62TwSvZ5A/JEijtpCWNzAMuj+Jiq4fDemrNo69QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLC6KQkR0CKpXSCb3brA4WeITQXjMB8GA1UdIwQY
MBaAFLUAC4Hp7UsqcCoe9fhS4Odp7hDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYt
ZDQxZTAzNTkyMzM1LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYtZDQxZTAzNTkyMzM1
LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVwFYQO+m
dzw4rLnYBfA876lD6z/x9eiyhfFfaR9YaRj/FCJUooGX5as+z+vOOwmy+yaJgHNN
S+gWDDOilP7+QX/eLew5dEFyc25l3LM2k8iW1EkMt1bePnnCBFxB/6g6Zc8MQvd3
JWJ6AympXZo5eJLJrKIGWZuqJGX3j8JxuyT7gHeTgYjFtg3XSrXdh7/43RdCJSMC
oeh5R6VR5OYjVD+Hksiv4Z0buysOlVwIznyNK8D7maOv+iFZ2ZPPuZu0SXXURTj2
NALKgrfphzBdiWMp1yD+yb5TmEvb71YUQVRbvbFNm8armXRpYGdgtf4fOjWJaoEp
wAZ+nlRc3Rh9PQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:14:34 2025 by rpki-client