Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: NC3z/sUhIflUvD83A15htRe7EX3o8oO/UwuirmGuk7U=
Subject key identifier: 06:F7:11:6D:00:6A:89:40:A6:42:C7:40:2B:C7:FC:B9:C5:B8:E9:C5
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 0199FBEC6B6BEFAEF7A28940A7ED0BA2EA0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0F80
Signing time: Sun 19 Oct 2025 10:03:19 +0000
Manifest this update: Sun 19 Oct 2025 10:03:19 +0000
Manifest next update: Mon 20 Oct 2025 10:03:19 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: JJVKL6HS+oRdqPRjWoAU5GlSCRapQiT7KG9cnNxr+MQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:6b:6b:ef:ae:f7:a2:89:40:a7:ed:0b:a2:ea:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Oct 19 10:03:19 2025 GMT
Not After : Oct 20 10:03:19 2025 GMT
Subject: CN=06f7116d006a8940a642c7402bc7fcb9c5b8e9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8b:78:2c:b6:f1:7a:4f:88:57:f8:60:0d:af:
f4:0c:fb:79:d5:bb:66:ea:a0:25:3d:0b:fb:2f:00:
f5:df:cb:53:08:51:6b:07:ee:82:f3:a0:a9:fb:ff:
42:75:f3:9e:83:70:ba:3b:99:f7:48:a7:cf:b0:8d:
18:4d:83:9f:e8:84:d5:79:fa:cd:90:2f:23:23:3b:
b5:51:0e:16:3f:73:b6:01:20:03:1c:69:06:63:1f:
df:49:a8:0d:8f:a2:8f:27:95:28:04:f3:95:b9:31:
66:63:33:22:40:c2:1b:e6:05:a5:e8:e8:b5:05:b3:
28:8b:f9:df:22:02:13:f1:a5:a9:8a:68:74:7d:a0:
68:dd:9c:b2:db:95:b1:ea:52:9b:be:21:a5:5f:89:
a8:f4:de:56:c0:79:7c:18:bb:99:26:bc:ce:33:e1:
fd:e1:b8:74:af:c0:0b:91:29:7d:73:fd:02:d3:b9:
4c:fe:f1:90:78:05:92:72:e2:96:4d:78:a2:71:5b:
63:e7:94:d0:74:3a:bc:f5:df:7c:1e:fa:66:56:5c:
e3:0b:4d:a1:86:09:12:49:00:3c:66:6d:57:63:f5:
77:c2:1d:7c:88:bd:08:1f:86:1d:d7:2f:c1:2b:3c:
99:52:7c:22:bb:37:30:f0:42:6e:f9:d0:3c:d5:b8:
f8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F7:11:6D:00:6A:89:40:A6:42:C7:40:2B:C7:FC:B9:C5:B8:E9:C5
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:b3:9e:8d:ff:e7:54:6e:65:ac:e8:3c:2b:57:bf:e6:e7:3b:
6b:63:6e:10:9a:46:38:06:e7:4d:93:df:1b:da:a3:71:cb:7a:
8b:65:eb:c5:3b:b0:62:64:85:9a:04:7d:0d:c8:70:86:69:15:
43:b5:36:71:82:8a:3f:da:c3:1c:6a:1c:73:e5:70:84:ef:d9:
44:97:05:94:f1:74:4b:65:f2:a5:3a:da:87:9e:76:94:11:b5:
56:ec:17:9c:df:ed:28:da:e0:e3:31:38:cd:0d:4e:6a:51:96:
28:c3:b1:99:cd:30:9f:4f:27:39:8f:a0:b4:b0:3d:7a:7b:18:
e2:39:4b:aa:58:7a:3b:dd:22:a3:67:0a:1d:10:55:53:bd:ba:
9f:e2:ba:50:e8:41:5e:45:8e:ad:92:6d:af:93:4a:98:3a:12:
58:f2:c0:64:d0:19:73:e2:19:cf:ee:14:68:02:26:31:fa:e5:
53:70:66:2a:b9:81:ad:b9:ef:32:4d:b9:53:48:cc:cd:32:63:
c8:1e:ef:ab:58:b5:c5:e2:e9:21:98:00:90:56:49:0f:65:a5:
79:cf:5d:6b:d5:9a:06:24:00:04:79:0f:2a:da:ba:90:e8:23:
ec:a1:fc:c9:43:08:52:13:7d:16:26:da:da:29:c5:f1:11:04:
e8:d8:48:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn77Gtr7673oolAp+0LouoNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MDAwYjgxZTllZDRiMmE3MDJhMWVmNWY4NTJlMGU3Njll
ZTEwZTIwHhcNMjUxMDE5MTAwMzE5WhcNMjUxMDIwMTAwMzE5WjAzMTEwLwYDVQQD
EygwNmY3MTE2ZDAwNmE4OTQwYTY0MmM3NDAyYmM3ZmNiOWM1YjhlOWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIt4LLbxek+IV/hgDa/0DPt51btm
6qAlPQv7LwD138tTCFFrB+6C86Cp+/9CdfOeg3C6O5n3SKfPsI0YTYOf6ITVefrN
kC8jIzu1UQ4WP3O2ASADHGkGYx/fSagNj6KPJ5UoBPOVuTFmYzMiQMIb5gWl6Oi1
BbMoi/nfIgIT8aWpimh0faBo3Zyy25Wx6lKbviGlX4mo9N5WwHl8GLuZJrzOM+H9
4bh0r8ALkSl9c/0C07lM/vGQeAWScuKWTXiicVtj55TQdDq89d98HvpmVlzjC02h
hgkSSQA8Zm1XY/V3wh18iL0IH4Yd1y/BKzyZUnwiuzcw8EJu+dA81bj47wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAb3EW0AaolApkLHQCvH/LnFuOnFMB8GA1UdIwQY
MBaAFLUAC4Hp7UsqcCoe9fhS4Odp7hDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYt
ZDQxZTAzNTkyMzM1LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYtZDQxZTAzNTkyMzM1
LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB7Oejf/n
VG5lrOg8K1e/5uc7a2NuEJpGOAbnTZPfG9qjcct6i2XrxTuwYmSFmgR9DchwhmkV
Q7U2cYKKP9rDHGocc+VwhO/ZRJcFlPF0S2XypTrah552lBG1VuwXnN/tKNrg4zE4
zQ1OalGWKMOxmc0wn08nOY+gtLA9ensY4jlLqlh6O90io2cKHRBVU726n+K6UOhB
XkWOrZJtr5NKmDoSWPLAZNAZc+IZz+4UaAImMfrlU3BmKrmBrbnvMk25U0jMzTJj
yB7vq1i1xeLpIZgAkFZJD2Wlec9da9WaBiQABHkPKtq6kOgj7KH8yUMIUhN9Fiba
2inF8REE6NhI5g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:30:36 2025 by rpki-client