Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: iWuk0W02bEBJSquCQBOOWNAwSGwchvrSa5xp+mP9fMs=
Subject key identifier: 72:72:FA:1C:77:54:65:3E:4C:57:70:B0:13:54:3D:C0:EF:03:49:8D
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 019D26CDA1D60F731476703611232E435B19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 1124
Signing time: Wed 25 Mar 2026 21:01:43 +0000
Manifest this update: Wed 25 Mar 2026 21:01:43 +0000
Manifest next update: Thu 26 Mar 2026 21:01:43 +0000
Files and hashes: 1: a4A5NDE8Hb_awOZcK1yYV0BdNtA.roa (hash: UhcGtGUN3kq4pMX0CPL4BxWxePj3w7wSJak+OWjA2w4=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: +Zga3E/eQ5PQcH0IwiubY8nj03Cgw1cEMCjtjCVnxyw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:a1:d6:0f:73:14:76:70:36:11:23:2e:43:5b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Mar 25 21:01:43 2026 GMT
Not After : Mar 26 21:01:43 2026 GMT
Subject: CN=7272fa1c7754653e4c5770b013543dc0ef03498d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:66:da:9c:b2:d2:5d:b9:3a:af:c9:08:3c:cd:
45:97:be:fe:96:b1:db:f6:e5:4d:12:fd:27:c0:99:
2c:27:11:6c:5b:6a:d0:99:49:ec:e5:9c:30:41:98:
43:9f:a3:ee:a8:46:56:a5:3e:15:ea:87:db:f7:59:
cf:76:1c:b4:fb:b8:c7:e0:bb:50:c3:b3:09:f1:95:
56:cf:80:56:7f:27:79:ab:8b:74:dc:58:83:7c:92:
d0:df:b0:e5:7d:13:a3:4d:df:91:4e:21:c7:49:44:
40:d2:7a:52:40:dd:8c:92:f4:36:38:2d:09:97:29:
7f:c2:7a:a8:db:ef:7c:78:04:41:ff:e2:ba:0e:e3:
ce:d1:eb:50:d2:90:39:38:c8:2b:63:8b:5e:3c:21:
4c:f1:68:d6:33:41:ce:bd:c7:56:7a:24:a4:49:34:
9b:80:5e:05:c0:9b:42:52:09:1b:c4:d9:01:74:45:
84:9e:85:20:8b:ae:80:60:93:3a:42:a9:87:c5:c8:
ce:f7:28:9c:90:f0:39:df:86:93:09:d2:e4:d4:91:
1d:64:0f:27:30:a3:f4:42:55:8e:e2:8f:7c:16:38:
a9:0d:0b:9c:fa:ae:45:35:41:eb:b7:56:af:27:73:
c7:bd:8c:4d:e3:bc:e2:62:c3:b5:9d:39:d9:0f:59:
67:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:72:FA:1C:77:54:65:3E:4C:57:70:B0:13:54:3D:C0:EF:03:49:8D
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:92:81:c2:25:c7:b0:28:bc:62:3a:7f:cc:d2:bc:5a:df:82:
ec:b3:04:ce:32:ac:20:b1:69:73:98:02:e2:4f:17:d7:b9:4a:
2f:84:f5:90:31:d6:9d:51:77:bf:b4:56:bb:f4:56:31:01:d0:
44:a1:0c:2d:b8:01:14:28:cd:31:ad:5a:ad:65:eb:a4:8d:c9:
d2:c3:2a:b3:aa:0a:7c:c6:66:d6:eb:83:62:87:c0:cb:72:ca:
67:63:6a:08:b6:7c:15:7c:64:69:7e:2a:0a:4f:e5:44:51:02:
56:ac:1d:90:84:2e:d4:4d:53:7d:31:5f:93:e0:1d:e9:fe:e7:
fe:80:b5:c1:22:e3:76:ab:74:ea:90:93:4f:ad:21:ba:b6:01:
c4:2e:6a:5a:ed:eb:36:6c:d6:5b:3d:02:73:a3:fb:26:39:1e:
d8:45:0e:fa:ea:fc:df:5f:0d:a9:00:ef:cc:f7:5b:bb:90:b5:
a4:7b:96:79:9e:88:90:5b:91:82:de:53:0f:e4:74:f5:88:c0:
d3:eb:f7:05:9e:e6:32:91:6f:bb:f7:c6:0c:67:79:5b:2a:4d:
f8:6c:3b:34:ab:f2:1f:33:cb:ec:5f:06:64:9a:7b:79:e6:26:
a7:f2:6d:f5:be:eb:d5:a5:7a:80:e9:c5:c9:28:67:46:08:45:
e9:79:19:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:28 2026 by rpki-client