Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json)
Hash identifier: /LY2I9du0qczHvxOi9LSXF8EVGvj/P/60h94vmki54U=
Subject key identifier: 48:88:CE:6A:01:AF:8D:B8:6A:A8:BE:6E:AF:39:A8:53:2D:7D:42:96
Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Certificate serial: 01976D3E77AF797BB4B5F3E5BE530D63F767
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
Manifest number: 0E2D
Signing time: Sat 14 Jun 2025 07:01:39 +0000
Manifest this update: Sat 14 Jun 2025 07:01:39 +0000
Manifest next update: Sun 15 Jun 2025 07:01:39 +0000
Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=)
2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: OSfXwsWbKa65RL/+C2iHopV2Z6cqMWS5N2YLX+JUVOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:77:af:79:7b:b4:b5:f3:e5:be:53:0d:63:f7:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2
Validity
Not Before: Jun 14 07:01:39 2025 GMT
Not After : Jun 15 07:01:39 2025 GMT
Subject: CN=4888ce6a01af8db86aa8be6eaf39a8532d7d4296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:46:bb:52:aa:6c:43:13:f4:c4:73:4e:bd:d8:
df:57:fe:ff:f5:45:5e:74:81:ab:08:bd:0b:2e:f9:
3a:57:c4:dd:ab:73:ab:7b:b1:31:a3:a3:a6:12:81:
d4:c2:e7:ba:f4:32:65:26:9f:2b:70:a7:8b:ee:bf:
18:86:35:bd:d2:36:53:97:29:ab:e1:22:db:35:fa:
da:20:ee:1d:ab:ae:b3:2d:1c:f3:9a:92:43:dd:3b:
dc:cf:98:a1:25:1b:b8:86:11:ba:aa:6f:0e:01:1c:
14:92:a7:2f:61:18:00:6f:07:bf:7c:79:ac:45:1c:
91:f5:17:16:11:59:a1:a4:e4:4d:1d:a5:fc:44:dd:
11:ff:5c:59:ae:39:c7:6b:e3:d6:90:07:de:5c:ba:
ec:43:4c:00:14:59:58:df:17:52:e6:fc:d4:bf:2f:
5c:dc:2a:86:4e:fa:5e:fe:d2:0b:83:8b:80:d1:43:
6e:bc:cb:b8:c7:f7:72:5d:1a:0e:34:18:d8:a8:9c:
74:e9:ce:fd:ef:9f:df:e9:7a:50:97:84:ba:de:7d:
0b:0f:f8:99:7b:77:57:df:af:d7:7b:81:05:14:89:
d9:95:73:95:a7:01:f5:81:1a:d7:6b:72:87:4d:bd:
34:29:c0:00:dc:d6:e9:5c:a2:21:8d:da:35:13:15:
7e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:88:CE:6A:01:AF:8D:B8:6A:A8:BE:6E:AF:39:A8:53:2D:7D:42:96
X509v3 Authority Key Identifier:
keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:55:22:96:72:c2:85:c7:06:cd:66:fe:d6:2b:d3:41:f8:4f:
bf:9c:42:5d:7e:96:8e:4a:58:10:00:46:ab:5b:c4:ea:1a:3b:
ef:9a:61:fe:0d:19:53:93:48:af:44:de:69:f3:0f:50:17:d8:
a3:36:f3:80:96:cf:c2:4e:f5:54:7c:de:9f:11:44:79:93:a4:
83:a0:60:73:96:2f:cc:d0:a8:87:e8:d9:cb:d8:eb:22:c9:00:
59:b8:73:ea:88:8d:31:bb:51:58:a3:5d:60:a6:27:90:b4:f9:
2f:13:66:6c:ee:89:e9:59:59:db:03:26:f2:9e:5c:b7:ca:d0:
c6:20:56:0d:4b:3b:35:91:d4:c3:b6:65:7e:de:f8:a6:a0:6e:
09:70:03:92:08:2f:6a:d6:46:6f:74:5f:9d:57:96:b9:35:10:
d1:8b:4a:89:36:14:0f:26:da:09:df:ce:fb:ec:00:a6:6b:af:
74:68:cb:85:ba:32:31:0f:44:75:ac:68:15:21:0a:95:2a:5d:
ec:00:4c:73:cb:34:87:fb:2f:5a:0a:4a:93:a0:97:6c:1f:31:
9c:cb:16:5b:11:9b:53:87:2c:21:2c:ff:cb:2e:62:14:4e:31:
e9:90:cb:1b:0e:a0:0f:25:9a:96:b3:e1:88:ca:b3:e0:25:7a:
81:d5:c1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:18:42 2025 by rpki-client