Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: ICVlBw813a4qd85jc8j1piFxHxLDGX2DCgRRgnlPVTA=
Subject key identifier: 02:5B:5C:05:F3:88:BC:AF:92:BF:22:DA:8A:B6:B9:DF:48:3D:FE:89
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 0196C53AA90EC4D8C736575606B62ABA988F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0DD6
Signing time: Mon 12 May 2025 16:01:17 +0000
Manifest this update: Mon 12 May 2025 16:01:17 +0000
Manifest next update: Tue 13 May 2025 16:01:17 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: kGpUHxz3iGpIX74uC/mTyFm8BXvdcSvKuBNpdKcUIAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:a9:0e:c4:d8:c7:36:57:56:06:b6:2a:ba:98:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: May 12 16:01:17 2025 GMT
Not After : May 13 16:01:17 2025 GMT
Subject: CN=025b5c05f388bcaf92bf22da8ab6b9df483dfe89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0c:f1:b3:dd:27:fc:d7:b9:e2:59:e6:cd:d8:
21:09:c1:29:af:07:e6:6c:44:7a:91:9e:e3:9d:fc:
f6:e4:63:1d:31:e9:5f:0c:0b:97:c6:8f:17:38:8c:
95:34:2f:13:08:a0:37:d0:05:fc:ed:d9:c7:65:26:
7e:26:1f:ac:37:f8:c7:13:c2:6e:ae:a9:ef:af:42:
3b:bf:98:3d:17:67:c3:a6:66:17:91:dd:b7:30:ed:
e4:29:61:05:5e:81:d8:ac:94:9e:29:5d:2f:90:b4:
66:79:91:ab:d9:86:18:90:2b:21:57:55:e8:45:b4:
16:ba:24:53:fd:0c:5c:62:64:e5:76:bf:38:d8:92:
5c:71:c9:9d:25:10:98:37:b8:46:c6:5a:04:f8:a3:
ca:33:f0:f6:f9:88:c9:a7:78:fa:d0:19:b1:7a:c5:
54:00:07:e2:70:fc:23:3a:ea:35:70:73:c3:a4:4e:
52:67:1a:8f:4a:cc:47:15:18:bd:e2:2a:73:35:70:
ca:e6:5d:55:a6:ec:e3:d4:4f:6a:f3:03:57:0f:35:
b4:13:a3:63:33:31:45:ff:06:9a:ac:4e:b8:ae:3d:
bc:af:03:cf:d4:e8:e1:8f:ff:e4:97:3f:8c:36:73:
f6:11:aa:24:4b:85:cb:b9:cf:11:a6:10:fb:95:ed:
88:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5B:5C:05:F3:88:BC:AF:92:BF:22:DA:8A:B6:B9:DF:48:3D:FE:89
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:0e:e7:1e:91:db:e1:72:55:ee:60:58:f7:41:1c:56:5f:aa:
76:de:ba:fc:38:61:93:80:b0:bc:e2:8d:76:ed:7c:6d:c4:50:
c9:a9:fa:c1:7e:ba:e6:8e:ce:62:7d:8d:07:f9:44:fb:31:01:
1a:60:9b:07:38:e9:f8:aa:3a:33:16:69:3e:ad:2f:ae:b1:1e:
b6:72:8f:d3:de:18:8a:2f:a9:cd:02:1d:d2:77:01:92:de:9a:
52:73:6c:a3:46:c1:df:b4:3a:cc:c9:e8:e7:b0:df:61:cc:73:
71:69:05:1f:97:a2:4a:ff:f7:51:71:1a:73:87:e3:85:b7:17:
78:3f:18:47:15:d7:78:8d:27:25:ca:90:30:8a:61:78:e3:7d:
21:a5:ec:16:5f:c9:74:5b:61:17:2a:34:c8:0f:4e:2b:14:4b:
30:c1:4b:2e:cf:02:d3:2a:bb:6c:f3:41:d0:15:f5:9c:61:93:
b2:57:69:e9:5a:bf:9f:f2:3b:c6:b3:11:ce:90:ed:37:bd:6d:
61:0d:18:12:be:c2:ce:3c:ee:b7:b7:97:a4:aa:00:82:43:25:
ea:24:79:63:6f:1a:d4:be:14:a4:9b:d5:9f:b4:b5:6c:5e:38:
ea:1a:88:a7:57:5b:51:18:45:14:c0:7c:ad:2b:c0:27:fe:e1:
c4:2f:3e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:25:26 2025 by rpki-client