Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
File: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft (raw, json)
Hash identifier: LiiXKg7zoObI+ZAy1Vb4FtwTZARlR/0CjC1UwOj/isM=
Subject key identifier: 37:FE:5D:45:31:57:F9:2D:07:7F:1D:53:86:87:2F:D1:5A:8B:A2:5C
Authority key identifier: 02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
Certificate issuer: /CN=02640bccb7171f199c43a0a974cab827ed18e750
Certificate serial: 019D25F18FE65B97611A5EC7B23ADBC21E58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 17:01:20 +0000
Manifest this update: Wed 25 Mar 2026 17:01:20 +0000
Manifest next update: Thu 26 Mar 2026 17:01:20 +0000
Files and hashes: 1: 3_0WZ7tcEt9l7JCeqM_XLJKrQAI.roa (hash: 7OfgraftH18MfCmboAvi66Dsa4X9nEMWe7jgzn7VuiE=)
2: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl (hash: DJ/5BJpJ4RLBAeSUExkowAs7L70qw1wfwSHBkHP1Clg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:8f:e6:5b:97:61:1a:5e:c7:b2:3a:db:c2:1e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02640bccb7171f199c43a0a974cab827ed18e750
Validity
Not Before: Mar 25 17:01:20 2026 GMT
Not After : Mar 26 17:01:20 2026 GMT
Subject: CN=37fe5d453157f92d077f1d5386872fd15a8ba25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9e:2d:33:2f:b8:21:04:c6:86:e4:55:f8:ad:
4f:66:74:38:84:4c:c0:d4:4b:ca:78:22:60:cb:1f:
85:fd:08:66:24:51:51:8a:05:a4:c9:97:77:f4:25:
db:5f:00:eb:4d:a9:3b:c8:8c:fa:9c:f8:5f:46:92:
3d:a9:d1:ed:cd:29:3c:95:bd:78:23:ea:42:54:ca:
50:89:85:92:80:0a:3c:38:a3:0c:a7:83:e4:60:c5:
3e:5b:8a:e6:5c:e3:0f:6c:f5:99:08:b9:f6:60:62:
a5:8c:cf:3a:49:a6:79:dd:db:72:11:6b:f0:d7:65:
aa:c0:ed:dd:ed:f3:64:8b:ee:f7:50:c9:15:a8:f3:
fc:13:85:65:c7:ed:96:0a:8e:79:82:e0:68:16:d0:
a0:a4:ff:ad:53:89:a7:07:5e:f2:89:2d:59:b9:62:
c4:58:22:18:9a:8a:9e:43:9d:9a:64:99:a3:f1:b6:
f5:e4:61:72:0d:fa:0a:38:46:bd:50:d2:c6:99:c7:
00:b9:04:20:e2:3e:f1:86:c3:7d:ff:04:10:4d:54:
03:a8:d7:10:12:d2:88:90:f6:0d:1d:00:15:b5:3c:
f1:ef:58:05:ea:c2:f9:10:38:5b:6b:ff:88:ac:39:
e4:3d:76:0e:16:2d:84:e4:8e:05:e1:cf:0d:71:04:
18:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FE:5D:45:31:57:F9:2D:07:7F:1D:53:86:87:2F:D1:5A:8B:A2:5C
X509v3 Authority Key Identifier:
keyid:02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:cf:74:98:58:a2:80:30:e7:52:77:dd:5b:ff:f3:79:2c:95:
f7:69:73:80:04:6d:3d:81:51:b0:6c:6e:c9:d5:12:a6:d4:49:
5c:02:18:83:d4:4e:23:0d:6e:63:0d:21:4e:71:1d:9e:3c:66:
43:e7:53:73:26:f6:19:bb:e4:5f:42:b4:4c:99:40:0e:e9:89:
ba:8b:5a:e8:5f:8b:70:09:0f:51:d1:a6:e0:cf:2e:f5:c6:95:
be:b9:e6:8f:3a:40:97:9e:cd:7a:17:76:f4:9d:47:b2:a8:93:
f5:bb:c8:da:64:ae:ea:50:5b:1a:20:e8:b8:63:15:80:4a:d4:
2c:60:eb:4e:a0:99:24:5c:40:af:e3:d5:f5:eb:ba:24:1f:b2:
95:08:af:33:e6:be:76:60:b6:2e:c5:7c:f0:1a:24:ec:28:e6:
af:79:08:ed:29:03:9a:dd:6a:ab:ce:9c:a5:2d:02:83:a4:4a:
aa:b1:62:b7:02:38:dd:7c:95:67:22:05:ce:b8:a7:f1:57:46:
db:65:85:2f:26:ff:43:05:e8:55:2a:0a:bb:3d:16:3a:01:12:
a7:45:c6:d8:a2:6d:99:91:62:b8:10:c8:6a:f4:e5:5b:5e:0c:
d7:ae:fd:80:ca:6c:d9:a2:7a:28:50:0c:75:18:4a:f0:19:22:
a9:00:27:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8Y/mW5dhGl7Hsjrbwh5YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNjQwYmNjYjcxNzFmMTk5YzQzYTBhOTc0Y2FiODI3ZWQx
OGU3NTAwHhcNMjYwMzI1MTcwMTIwWhcNMjYwMzI2MTcwMTIwWjAzMTEwLwYDVQQD
EygzN2ZlNWQ0NTMxNTdmOTJkMDc3ZjFkNTM4Njg3MmZkMTVhOGJhMjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ4tMy+4IQTGhuRV+K1PZnQ4hEzA
1EvKeCJgyx+F/QhmJFFRigWkyZd39CXbXwDrTak7yIz6nPhfRpI9qdHtzSk8lb14
I+pCVMpQiYWSgAo8OKMMp4PkYMU+W4rmXOMPbPWZCLn2YGKljM86SaZ53dtyEWvw
12WqwO3d7fNki+73UMkVqPP8E4Vlx+2WCo55guBoFtCgpP+tU4mnB17yiS1ZuWLE
WCIYmoqeQ52aZJmj8bb15GFyDfoKOEa9UNLGmccAuQQg4j7xhsN9/wQQTVQDqNcQ
EtKIkPYNHQAVtTzx71gF6sL5EDhba/+IrDnkPXYOFi2E5I4F4c8NcQQY2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDf+XUUxV/ktB38dU4aHL9Fai6JcMB8GA1UdIwQY
MBaAFAJkC8y3Fx8ZnEOgqXTKuCftGOdQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYt
YzdiZjk1ZTVhYjdiLzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYtYzdiZjk1ZTVhYjdi
LzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr890mFii
gDDnUnfdW//zeSyV92lzgARtPYFRsGxuydUSptRJXAIYg9ROIw1uYw0hTnEdnjxm
Q+dTcyb2GbvkX0K0TJlADumJuota6F+LcAkPUdGm4M8u9caVvrnmjzpAl57Nehd2
9J1HsqiT9bvI2mSu6lBbGiDouGMVgErULGDrTqCZJFxAr+PV9eu6JB+ylQivM+a+
dmC2LsV88Bok7Cjmr3kI7SkDmt1qq86cpS0Cg6RKqrFitwI43XyVZyIFzrin8VdG
22WFLyb/QwXoVSoKuz0WOgESp0XG2KJtmZFiuBDIavTlW14M1679gMps2aJ6KFAM
dRhK8BkiqQAnDQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:04:17 2026 by rpki-client