Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: vmpngXjVrr/SkI7zCIf+XcGz6gDXuEuJoMQ2aBQvQDA=
Subject key identifier: 80:8A:09:DD:64:8D:F7:EA:FC:F2:1F:CC:56:8B:09:5E:77:5E:D9:59
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 019E1DFECB388FB1B856C60DEE63DB07F51C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 11A4
Signing time: Tue 12 May 2026 21:01:37 +0000
Manifest this update: Tue 12 May 2026 21:01:37 +0000
Manifest next update: Wed 13 May 2026 21:01:37 +0000
Files and hashes: 1: a4A5NDE8Hb_awOZcK1yYV0BdNtA.roa (hash: UhcGtGUN3kq4pMX0CPL4BxWxePj3w7wSJak+OWjA2w4=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: ZJFw0BkO5fD6k6qdgnLsY3XqkaVlN5LcVrFVpB9czlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:cb:38:8f:b1:b8:56:c6:0d:ee:63:db:07:f5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: May 12 21:01:37 2026 GMT
Not After : May 13 21:01:37 2026 GMT
Subject: CN=808a09dd648df7eafcf21fcc568b095e775ed959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:40:3f:69:17:d6:5e:a1:57:9f:55:fb:5f:6a:
75:fd:70:2c:2c:04:a2:85:b9:03:9f:ee:71:f5:e0:
3e:b6:01:ba:ef:47:b6:7f:a4:a4:1f:c4:31:85:a9:
03:cc:fb:13:a3:9b:bb:ba:19:b5:c0:f1:9e:94:7b:
57:7a:10:50:bb:a7:d5:59:7f:20:5f:ac:df:f3:9d:
5a:d5:62:e1:c7:4b:17:52:27:8c:e0:19:f7:86:3a:
32:3c:59:e9:3d:5c:23:5e:dd:56:26:a0:28:9c:ef:
7a:fc:54:02:1a:f6:65:78:cf:f4:99:a0:ce:33:74:
5d:15:47:96:f7:d8:45:2b:a1:c0:76:5e:d7:57:72:
ea:f8:07:cf:41:53:0d:81:8c:16:10:f7:ad:13:55:
06:6b:36:37:91:34:f3:31:61:41:62:4c:22:3a:d5:
75:d1:59:1f:54:8d:13:45:82:3f:30:42:bd:77:9f:
2d:80:c9:4e:4b:7a:6b:cf:5a:00:04:7e:ac:35:a9:
2f:b2:b9:34:8c:d8:9d:64:74:0c:0d:b8:77:b0:4b:
4d:af:94:70:a1:58:74:05:86:07:96:8d:82:3f:cd:
f0:38:0f:51:9d:5e:8d:ba:15:32:ff:41:4c:64:d3:
ba:24:81:d9:05:9a:58:f0:42:5c:9f:2c:ea:bd:25:
74:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8A:09:DD:64:8D:F7:EA:FC:F2:1F:CC:56:8B:09:5E:77:5E:D9:59
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:88:6f:9c:12:2c:16:20:6c:3a:f1:9c:d3:36:33:02:43:82:
72:96:9c:40:ef:2c:12:5b:a5:9b:23:89:e8:85:28:8e:2d:75:
09:45:8f:23:bd:2c:13:56:a1:fb:1a:a9:03:2d:dc:39:6a:ba:
50:79:fb:9d:12:da:14:25:da:55:47:d8:79:7d:23:49:bf:54:
63:a4:fc:3d:86:7f:b9:98:44:3b:91:03:01:91:75:66:0a:5f:
d5:ac:fa:db:5c:6b:5b:4a:be:7f:3a:bc:8f:e2:e7:df:8a:6f:
32:ba:fa:6d:99:93:62:cd:15:45:50:98:1c:83:85:d0:2d:59:
dd:2f:0c:7d:d5:76:6a:e2:78:d2:83:ff:4b:20:52:f3:02:e4:
c3:4b:62:7d:27:09:14:50:5e:ee:d2:d8:eb:ca:6f:c6:eb:da:
58:3c:39:b2:e8:48:83:86:4f:e6:da:d8:2f:cc:ba:62:16:d2:
fe:4f:2f:6f:84:96:f1:4d:e2:bd:ad:03:24:71:37:ef:1e:07:
56:d0:63:fa:f6:04:9a:c8:39:d3:3b:07:1a:84:31:00:56:e6:
f2:d9:6c:d6:d6:c2:be:36:e4:f5:e6:f8:70:5f:fc:cd:c2:f9:
49:2e:8c:ab:f9:67:3e:2b:6b:a3:fd:74:56:bb:65:ba:ad:86:
10:1f:32:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4d/ss4j7G4VsYN7mPbB/UcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MDAwYjgxZTllZDRiMmE3MDJhMWVmNWY4NTJlMGU3Njll
ZTEwZTIwHhcNMjYwNTEyMjEwMTM3WhcNMjYwNTEzMjEwMTM3WjAzMTEwLwYDVQQD
Eyg4MDhhMDlkZDY0OGRmN2VhZmNmMjFmY2M1NjhiMDk1ZTc3NWVkOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10A/aRfWXqFXn1X7X2p1/XAsLASi
hbkDn+5x9eA+tgG670e2f6SkH8QxhakDzPsTo5u7uhm1wPGelHtXehBQu6fVWX8g
X6zf851a1WLhx0sXUieM4Bn3hjoyPFnpPVwjXt1WJqAonO96/FQCGvZleM/0maDO
M3RdFUeW99hFK6HAdl7XV3Lq+AfPQVMNgYwWEPetE1UGazY3kTTzMWFBYkwiOtV1
0VkfVI0TRYI/MEK9d58tgMlOS3prz1oABH6sNakvsrk0jNidZHQMDbh3sEtNr5Rw
oVh0BYYHlo2CP83wOA9RnV6NuhUy/0FMZNO6JIHZBZpY8EJcnyzqvSV0gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFICKCd1kjffq/PIfzFaLCV53XtlZMB8GA1UdIwQY
MBaAFLUAC4Hp7UsqcCoe9fhS4Odp7hDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYt
ZDQxZTAzNTkyMzM1LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYtZDQxZTAzNTkyMzM1
LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaohvnBIs
FiBsOvGc0zYzAkOCcpacQO8sElulmyOJ6IUoji11CUWPI70sE1ah+xqpAy3cOWq6
UHn7nRLaFCXaVUfYeX0jSb9UY6T8PYZ/uZhEO5EDAZF1Zgpf1az621xrW0q+fzq8
j+Ln34pvMrr6bZmTYs0VRVCYHIOF0C1Z3S8MfdV2auJ40oP/SyBS8wLkw0tifScJ
FFBe7tLY68pvxuvaWDw5suhIg4ZP5trYL8y6YhbS/k8vb4SW8U3iva0DJHE37x4H
VtBj+vYEmsg50zsHGoQxAFbm8tls1tbCvjbk9eb4cF/8zcL5SS6Mq/lnPitro/10
Vrtluq2GEB8yPA==
-----END CERTIFICATE-----
Generated at Wed May 13 09:10:39 2026 by rpki-client