Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
File: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft (raw, json)
Hash identifier: QwA1UDctaaxNy78FciXUAciOZb5pWnSXQjrw7nu1hYQ=
Subject key identifier: 48:8B:B3:7E:9F:4B:56:79:2A:96:C3:B3:48:9E:B2:6E:DF:03:FC:85
Authority key identifier: 02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
Certificate issuer: /CN=02640bccb7171f199c43a0a974cab827ed18e750
Certificate serial: 0197B632D3111F5DAD4EC155F3DE29721B37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 11:01:13 +0000
Manifest this update: Sat 28 Jun 2025 11:01:13 +0000
Manifest next update: Sun 29 Jun 2025 11:01:13 +0000
Files and hashes: 1: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl (hash: vXN295oW6va2qvaMQ33T8bmGXuNvskiHTrvV5qS6KEk=)
2: oyTiWJ913wVTjnCcw6Q4RBUZbq8.roa (hash: /NMMdoNH5sZWYkg6OnNqyz5087fDkPkdrRkbme1onLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:d3:11:1f:5d:ad:4e:c1:55:f3:de:29:72:1b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02640bccb7171f199c43a0a974cab827ed18e750
Validity
Not Before: Jun 28 11:01:13 2025 GMT
Not After : Jun 29 11:01:13 2025 GMT
Subject: CN=488bb37e9f4b56792a96c3b3489eb26edf03fc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2a:35:c9:0c:5e:00:de:bb:e2:39:1a:74:44:
26:05:67:8b:aa:6c:0d:d0:e1:1a:90:0f:f4:e6:aa:
2a:dd:dd:70:25:34:c4:fa:b9:e9:c5:20:4d:25:07:
f3:ef:97:60:30:42:a6:a2:fc:a4:21:ec:7e:e3:09:
6f:aa:8c:74:68:a6:e3:e7:db:d6:2f:f9:57:1f:79:
72:fd:00:e4:ce:2d:b6:06:13:75:f4:ef:f3:bf:24:
e2:71:10:e8:0c:ef:c8:e3:28:4e:2a:8d:48:18:02:
35:1f:64:f1:4f:e7:4a:b1:4f:e1:4c:fd:ea:06:f4:
f4:b5:11:47:9f:64:63:3c:59:d4:df:86:53:ff:52:
4c:04:c4:9e:94:b0:7d:1d:78:c1:14:7f:47:83:12:
d6:a7:08:e3:5c:ea:9b:e0:a6:98:ac:f6:14:29:4c:
03:26:81:4a:c3:9f:2e:66:1e:c7:0e:30:c4:f2:18:
97:ed:e9:53:52:f3:e8:d8:b5:45:f3:40:40:5b:78:
6a:9d:4a:63:61:93:e8:3f:a9:5b:3f:c2:56:db:2a:
d3:40:82:4d:11:ef:82:46:11:64:0f:02:9a:86:e6:
d2:c3:23:d1:63:fb:35:4d:56:2a:44:00:a9:b4:2c:
1f:3f:94:9e:7e:66:d7:11:89:2d:a2:52:52:1e:3c:
f7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8B:B3:7E:9F:4B:56:79:2A:96:C3:B3:48:9E:B2:6E:DF:03:FC:85
X509v3 Authority Key Identifier:
keyid:02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:fa:5d:98:2e:e2:fa:44:fb:9d:39:2f:6d:d0:bf:78:75:ed:
5b:32:82:6e:50:bf:a7:18:d1:7b:bb:bb:46:29:03:4e:7a:f5:
5f:c7:87:c8:9a:50:c9:11:ad:30:bd:44:89:d0:c2:69:a2:39:
cc:67:52:94:1f:7d:31:e2:b6:25:47:95:af:33:af:54:7b:b0:
ba:f3:64:34:a2:d4:c9:d8:ef:d7:6a:6a:ad:14:68:d1:ab:4e:
a2:9c:8e:f3:a2:e5:11:94:6f:8d:48:b5:8b:f6:0f:e6:97:73:
d3:44:bd:60:03:aa:83:af:e8:66:db:73:e3:38:21:15:c9:cd:
3d:97:a5:bd:81:eb:96:9e:02:e7:ca:d4:ac:e2:7b:f2:1c:b8:
7b:b6:1d:f2:5c:b4:78:b5:42:4e:bf:82:58:03:34:8b:48:ef:
73:ef:34:aa:07:22:eb:f4:0d:8c:ff:9a:4f:2b:7e:52:ed:7d:
d1:3a:6b:da:f0:cd:32:f0:31:95:b3:06:5f:81:de:de:bb:f8:
3d:8a:28:9f:0f:af:25:f4:e7:cb:7e:a2:3a:ed:b8:a8:0c:96:
35:cb:8d:69:d1:98:83:c5:f9:ac:21:73:94:9f:83:f0:1e:96:
1e:04:f1:ec:62:e0:fe:38:4e:f4:f3:96:b4:47:d2:a3:eb:f9:
1e:36:38:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2MtMRH12tTsFV894pchs3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNjQwYmNjYjcxNzFmMTk5YzQzYTBhOTc0Y2FiODI3ZWQx
OGU3NTAwHhcNMjUwNjI4MTEwMTEzWhcNMjUwNjI5MTEwMTEzWjAzMTEwLwYDVQQD
Eyg0ODhiYjM3ZTlmNGI1Njc5MmE5NmMzYjM0ODllYjI2ZWRmMDNmYzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4io1yQxeAN674jkadEQmBWeLqmwN
0OEakA/05qoq3d1wJTTE+rnpxSBNJQfz75dgMEKmovykIex+4wlvqox0aKbj59vW
L/lXH3ly/QDkzi22BhN19O/zvyTicRDoDO/I4yhOKo1IGAI1H2TxT+dKsU/hTP3q
BvT0tRFHn2RjPFnU34ZT/1JMBMSelLB9HXjBFH9HgxLWpwjjXOqb4KaYrPYUKUwD
JoFKw58uZh7HDjDE8hiX7elTUvPo2LVF80BAW3hqnUpjYZPoP6lbP8JW2yrTQIJN
Ee+CRhFkDwKahubSwyPRY/s1TVYqRACptCwfP5SefmbXEYktolJSHjz38wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEiLs36fS1Z5KpbDs0iesm7fA/yFMB8GA1UdIwQY
MBaAFAJkC8y3Fx8ZnEOgqXTKuCftGOdQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYt
YzdiZjk1ZTVhYjdiLzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYtYzdiZjk1ZTVhYjdi
LzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM/pdmC7i
+kT7nTkvbdC/eHXtWzKCblC/pxjRe7u7RikDTnr1X8eHyJpQyRGtML1EidDCaaI5
zGdSlB99MeK2JUeVrzOvVHuwuvNkNKLUydjv12pqrRRo0atOopyO86LlEZRvjUi1
i/YP5pdz00S9YAOqg6/oZttz4zghFcnNPZelvYHrlp4C58rUrOJ78hy4e7Yd8ly0
eLVCTr+CWAM0i0jvc+80qgci6/QNjP+aTyt+Uu190Tpr2vDNMvAxlbMGX4He3rv4
PYoonw+vJfTny36iOu24qAyWNcuNadGYg8X5rCFzlJ+D8B6WHgTx7GLg/jhO9POW
tEfSo+v5HjY4qw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:24 2025 by rpki-client