Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
File: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft (raw, json)
Hash identifier: DFOdhBb5uXGLMZ+FuCPbEIBw1Olpm8BO4I1LFGmXehc=
Subject key identifier: 70:DD:10:03:C4:DE:60:71:8B:24:3E:73:9A:AF:B5:B4:F3:11:96:7B
Authority key identifier: 02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
Certificate issuer: /CN=02640bccb7171f199c43a0a974cab827ed18e750
Certificate serial: 0199FD6B260A7F0CC20B729967B9D36A5A97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 17:01:21 +0000
Manifest this update: Sun 19 Oct 2025 17:01:21 +0000
Manifest next update: Mon 20 Oct 2025 17:01:21 +0000
Files and hashes: 1: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl (hash: Ptoe25T09XPcyR5bKGdauK94CYcKB+X7yAQP2ZJEWz0=)
2: oyTiWJ913wVTjnCcw6Q4RBUZbq8.roa (hash: /NMMdoNH5sZWYkg6OnNqyz5087fDkPkdrRkbme1onLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:26:0a:7f:0c:c2:0b:72:99:67:b9:d3:6a:5a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02640bccb7171f199c43a0a974cab827ed18e750
Validity
Not Before: Oct 19 17:01:21 2025 GMT
Not After : Oct 20 17:01:21 2025 GMT
Subject: CN=70dd1003c4de60718b243e739aafb5b4f311967b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e7:c9:0d:98:31:12:d3:d5:0d:fd:b1:30:5a:
88:9f:e1:54:23:b5:04:77:25:f0:db:a1:97:81:a5:
a6:63:43:1f:64:ff:4a:76:56:4f:91:12:06:4d:32:
84:da:11:f9:09:d2:96:d6:bf:a8:ff:60:f1:40:a2:
df:e7:9c:6c:a3:b0:eb:6d:1f:2a:f1:7a:87:f6:01:
b3:b5:d1:53:77:59:57:b2:1e:10:6a:64:24:fe:ee:
72:dd:a4:dc:c3:05:6b:fd:9e:bc:f0:9f:e3:43:6f:
7b:32:84:39:0f:e6:fd:4a:43:e1:b8:a2:db:dc:00:
51:8d:6b:04:ca:5e:3e:f4:fe:a8:07:6d:4c:7d:6c:
a5:cf:35:ac:6f:4e:90:6a:1e:41:a7:7b:72:6c:d8:
b6:34:0e:84:be:53:12:c2:7b:f9:44:fb:82:82:20:
71:af:93:3a:f2:e8:33:d5:af:db:9a:b4:11:34:c9:
35:8e:55:e2:9c:81:71:ca:81:c3:da:9a:e9:81:e1:
9f:f4:9e:bf:a0:70:e6:f3:42:52:4f:d4:a6:98:6c:
64:e6:79:5f:98:61:78:a8:08:cb:a7:70:55:14:af:
e6:6c:ee:74:05:11:dd:6a:c9:27:29:3f:8d:51:28:
5a:04:38:97:75:f7:e8:11:38:35:29:34:55:e5:bf:
17:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:DD:10:03:C4:DE:60:71:8B:24:3E:73:9A:AF:B5:B4:F3:11:96:7B
X509v3 Authority Key Identifier:
keyid:02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:aa:c0:e9:e0:65:bf:95:38:b3:9d:29:cf:c1:a8:94:14:b5:
5b:8a:b7:57:3c:cb:98:45:36:a4:3e:e7:19:90:71:08:4a:d8:
9a:6f:a0:1f:6e:d5:a0:e6:19:3f:ad:39:81:31:f9:da:fb:86:
f0:c5:ef:85:a4:ab:b5:76:4c:58:cd:ee:65:40:62:c5:18:f9:
23:03:cf:2c:d7:d2:36:5e:bd:79:be:86:7a:49:03:3d:15:d2:
e7:46:28:d9:f0:c4:14:a1:bd:fc:95:d0:58:aa:e5:9b:35:a2:
58:47:8b:98:bb:34:42:51:f3:f9:b3:ff:ee:ac:50:15:c2:c6:
50:8e:88:c8:c4:db:4f:aa:82:05:dc:70:bd:9b:c8:ac:3b:41:
3f:52:42:65:e7:78:fc:78:ef:39:3a:2c:c1:79:91:2b:c0:ae:
7c:66:30:9b:14:c8:c7:d8:69:bc:13:b5:15:ce:60:e2:51:62:
81:87:95:5c:ed:30:1d:8e:df:dd:32:95:94:12:a3:3f:49:3b:
91:81:d9:01:1d:03:37:1e:69:29:b7:d5:79:3b:8e:d4:53:62:
59:60:2f:ca:84:b7:a7:04:d3:9d:c5:78:6c:40:f5:35:50:3a:
f5:ac:d3:27:2b:1b:e7:0f:a0:09:d8:e3:a4:2b:f1:3f:d3:1d:
66:0a:d7:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9ayYKfwzCC3KZZ7nTalqXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNjQwYmNjYjcxNzFmMTk5YzQzYTBhOTc0Y2FiODI3ZWQx
OGU3NTAwHhcNMjUxMDE5MTcwMTIxWhcNMjUxMDIwMTcwMTIxWjAzMTEwLwYDVQQD
Eyg3MGRkMTAwM2M0ZGU2MDcxOGIyNDNlNzM5YWFmYjViNGYzMTE5NjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4+fJDZgxEtPVDf2xMFqIn+FUI7UE
dyXw26GXgaWmY0MfZP9KdlZPkRIGTTKE2hH5CdKW1r+o/2DxQKLf55xso7DrbR8q
8XqH9gGztdFTd1lXsh4QamQk/u5y3aTcwwVr/Z688J/jQ297MoQ5D+b9SkPhuKLb
3ABRjWsEyl4+9P6oB21MfWylzzWsb06Qah5Bp3tybNi2NA6EvlMSwnv5RPuCgiBx
r5M68ugz1a/bmrQRNMk1jlXinIFxyoHD2prpgeGf9J6/oHDm80JST9SmmGxk5nlf
mGF4qAjLp3BVFK/mbO50BRHdasknKT+NUShaBDiXdffoETg1KTRV5b8XewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHDdEAPE3mBxiyQ+c5qvtbTzEZZ7MB8GA1UdIwQY
MBaAFAJkC8y3Fx8ZnEOgqXTKuCftGOdQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYt
YzdiZjk1ZTVhYjdiLzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYtYzdiZjk1ZTVhYjdi
LzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWqrA6eBl
v5U4s50pz8GolBS1W4q3VzzLmEU2pD7nGZBxCErYmm+gH27VoOYZP605gTH52vuG
8MXvhaSrtXZMWM3uZUBixRj5IwPPLNfSNl69eb6GekkDPRXS50Yo2fDEFKG9/JXQ
WKrlmzWiWEeLmLs0QlHz+bP/7qxQFcLGUI6IyMTbT6qCBdxwvZvIrDtBP1JCZed4
/HjvOToswXmRK8CufGYwmxTIx9hpvBO1Fc5g4lFigYeVXO0wHY7f3TKVlBKjP0k7
kYHZAR0DNx5pKbfVeTuO1FNiWWAvyoS3pwTTncV4bED1NVA69azTJysb5w+gCdjj
pCvxP9MdZgrXzw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:47 2025 by rpki-client