Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
File: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft (raw, json)
Hash identifier: KNFHI/tBTdl5VdIfbXU3gMn+7ObAwjDrcBYCpc5o9+w=
Subject key identifier: 0A:9B:7E:8A:55:1A:77:ED:4B:67:0E:AE:BD:7E:E1:E9:61:82:7B:7A
Authority key identifier: 02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
Certificate issuer: /CN=02640bccb7171f199c43a0a974cab827ed18e750
Certificate serial: 0198D404C418D120DE1726D3B778F7A3F74D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
Manifest number: 1649
Signing time: Fri 22 Aug 2025 23:02:18 +0000
Manifest this update: Fri 22 Aug 2025 23:02:18 +0000
Manifest next update: Sat 23 Aug 2025 23:02:18 +0000
Files and hashes: 1: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl (hash: lBt3AaZbT+bYKMbS2FPxqVSfxMhhqnzs1ZYl5M3tvbM=)
2: oyTiWJ913wVTjnCcw6Q4RBUZbq8.roa (hash: /NMMdoNH5sZWYkg6OnNqyz5087fDkPkdrRkbme1onLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:c4:18:d1:20:de:17:26:d3:b7:78:f7:a3:f7:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02640bccb7171f199c43a0a974cab827ed18e750
Validity
Not Before: Aug 22 23:02:18 2025 GMT
Not After : Aug 23 23:02:18 2025 GMT
Subject: CN=0a9b7e8a551a77ed4b670eaebd7ee1e961827b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ea:e5:64:2f:5a:e4:fb:17:fb:a5:ce:e5:e0:
61:bb:68:4b:a4:8d:3f:93:22:4e:7b:7b:b1:e8:3d:
91:45:20:4d:72:7e:20:73:f3:6f:c5:ce:62:f9:28:
47:41:f6:45:e6:a4:e6:d7:e4:3a:60:db:f3:5d:e2:
44:b1:d2:1a:7f:a5:08:5c:8e:7a:d3:bd:a8:94:37:
3e:80:5a:fe:39:53:ab:d7:bb:6b:9c:c1:c0:0d:e3:
b9:9a:de:1f:b2:93:66:c7:9a:b3:18:7c:00:bd:bc:
28:8b:a8:49:3b:31:fd:3d:d6:fc:8a:32:ee:05:50:
00:74:82:26:6a:8e:bc:ad:99:5f:ba:e5:ff:11:1e:
91:d7:80:09:a3:cb:f1:d3:d3:79:d0:03:a8:94:f1:
f1:41:09:6d:75:e8:0b:8f:ed:ff:1d:41:52:0c:ff:
2b:a8:35:03:be:cb:80:fd:ee:72:52:b7:d3:ee:e7:
84:a0:59:17:01:13:b8:6c:65:ae:08:58:8f:8e:47:
c3:2a:a2:5a:26:91:e4:97:88:b8:40:5a:e3:36:80:
e5:f7:91:c2:f6:81:36:0f:f0:b3:69:89:29:c5:42:
ee:18:21:12:19:2d:0c:f6:65:5f:56:cc:e5:cf:a9:
21:c9:ea:94:13:32:60:6c:c3:4f:d7:9f:f7:84:5d:
e8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9B:7E:8A:55:1A:77:ED:4B:67:0E:AE:BD:7E:E1:E9:61:82:7B:7A
X509v3 Authority Key Identifier:
keyid:02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:cc:22:a4:f7:c5:4b:8c:7f:39:c5:58:c0:26:50:ab:9b:65:
5f:f9:06:c4:0e:62:b9:3c:7c:18:0a:e7:e7:f4:a2:57:40:fd:
76:a7:7f:96:fb:55:6d:fa:df:94:b1:33:82:56:93:3d:9d:4f:
c9:13:69:15:bc:f1:0c:8c:0f:c5:57:53:53:5b:93:93:3f:50:
62:96:70:12:c4:bd:bf:b1:10:51:53:bf:b9:cc:81:22:1b:b5:
e8:40:06:8d:2a:d9:ee:31:86:39:6a:b5:fa:f3:3c:70:40:3c:
01:c3:85:9f:65:4c:de:65:de:60:e7:0f:9d:29:9b:e4:34:13:
51:69:34:d2:49:16:9e:8e:d5:20:cf:08:d8:77:cf:7b:ae:9c:
cf:92:ee:e4:2f:1f:f2:3a:01:6d:bc:85:9b:b4:e0:fa:97:37:
5d:79:a3:9a:d3:cf:60:fd:b8:75:de:97:27:4e:d5:4e:06:0a:
e4:71:d4:10:b9:76:5b:41:9d:00:6f:cd:f5:af:f0:c1:77:c7:
18:9b:70:23:4e:79:e1:39:6f:bb:ec:0b:50:ab:47:08:ba:84:
c3:51:0c:af:d2:25:27:d2:91:2f:9a:f0:25:92:42:e8:8f:f9:
f7:47:0d:1d:33:22:94:6e:52:7a:e0:06:63:a2:68:c1:8d:39:
03:42:73:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:12 2025 by rpki-client