Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: 9ppPfkxn+JtQExAWYwe0Cvq/aO5juMi7qPse7+ZGmsM=
Subject key identifier: AA:3C:F5:C6:9B:30:81:A9:A6:00:E7:7E:D1:5E:06:56:67:CB:91:57
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 01988B0FE0258137A5869837BE949D8936C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0EC1
Signing time: Fri 08 Aug 2025 19:02:10 +0000
Manifest this update: Fri 08 Aug 2025 19:02:10 +0000
Manifest next update: Sat 09 Aug 2025 19:02:10 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: MIsn8Ypvu/jX8CJ5dDyTFpSo+dCSVV7grLu9cAk8KhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:e0:25:81:37:a5:86:98:37:be:94:9d:89:36:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Aug 8 19:02:10 2025 GMT
Not After : Aug 9 19:02:10 2025 GMT
Subject: CN=aa3cf5c69b3081a9a600e77ed15e065667cb9157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:40:e2:6c:4f:a9:04:3d:d9:e8:51:67:8f:
a7:9d:54:ae:8b:23:6e:8d:2b:de:17:ad:a5:11:66:
1a:4e:b7:66:ec:82:6b:d7:86:fc:ea:c3:68:12:36:
eb:5b:9b:16:4c:e0:63:cc:8c:78:e1:e5:c2:e7:e3:
38:4e:8b:91:e5:a3:a9:ad:c7:29:4a:e4:ef:db:06:
e0:82:51:8c:72:54:5f:31:a3:a8:67:1d:63:e0:c8:
b0:d6:46:52:48:77:42:64:9a:2e:92:c6:7b:df:ba:
02:fa:75:66:ca:b9:18:a0:63:44:14:61:b1:3e:24:
66:43:4c:37:b8:57:21:fa:6e:41:20:68:d4:89:42:
f6:9b:67:2b:9f:b8:ef:9d:3d:0e:ba:a0:fd:65:f7:
2f:0d:99:fb:b1:c0:fd:b8:fc:39:04:d9:fa:03:c1:
70:b7:a1:b4:cf:f1:5d:e9:af:58:e8:92:22:94:dc:
85:b3:4e:4e:d8:e2:86:83:87:96:de:68:86:79:d4:
e7:98:47:f0:cb:b8:23:fa:7f:a2:c5:c0:d8:ba:20:
8a:cc:ed:d3:b9:6f:e8:a1:0a:fb:0d:13:08:a8:08:
d6:e8:b0:14:32:cd:a5:0f:61:15:db:2f:8d:ba:a5:
20:57:f4:a4:23:ee:9d:49:2a:a6:cf:88:41:53:69:
54:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3C:F5:C6:9B:30:81:A9:A6:00:E7:7E:D1:5E:06:56:67:CB:91:57
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ec:3d:40:c5:7f:11:d5:49:ff:e7:d7:49:fc:ee:92:20:8e:
6d:4b:0a:79:87:e0:8a:ff:66:da:2e:85:06:f2:21:a1:86:1d:
f5:d3:b0:11:9b:49:3f:5f:5b:80:4f:05:a7:39:27:85:f6:a3:
0c:bf:ee:ee:98:14:4f:26:18:41:77:7b:65:1b:0e:66:b4:c4:
31:b4:63:e6:a8:83:f6:99:3c:b9:9e:2a:41:3d:a1:0d:79:40:
67:61:18:e6:91:f9:2f:85:f6:45:d9:4d:a4:86:51:53:61:cc:
ac:2f:3c:84:a0:29:c3:47:97:5f:f2:ba:50:fc:2f:50:70:8c:
9c:ee:81:47:98:bf:59:31:52:d9:40:e3:99:4b:cd:ed:3e:55:
9f:f2:d6:3b:76:70:2b:53:b7:d7:d8:4b:6c:e4:86:66:55:d3:
21:0a:1d:5b:9f:7f:de:e3:f3:2d:0d:f2:4c:d8:64:60:c3:27:
c5:ca:99:4f:38:51:ec:94:3e:eb:04:7f:92:ee:13:df:94:e7:
bf:27:8e:90:7e:ba:a1:09:f4:5a:de:c2:77:2f:71:c6:2a:d0:
8b:fd:eb:f1:7d:44:89:b2:6a:9d:43:6e:61:07:b5:a5:a7:7c:
0f:eb:b9:96:a3:5b:bb:c5:ba:97:16:db:46:be:2a:eb:4b:c1:
aa:f1:64:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:15 2025 by rpki-client