Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
File: Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json)
Hash identifier: prCZzc5imI9CiIV9zwVQxRuXH8Z5CmZzagSuJhmpO44=
Subject key identifier: FC:64:1E:56:22:2F:AD:53:48:52:28:C0:97:90:44:1D:F3:F4:17:26
Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
Certificate issuer: /CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Certificate serial: 019A4EF44F4534AD7198C218617AB3D14F3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
Manifest number: 0385
Signing time: Tue 04 Nov 2025 13:00:25 +0000
Manifest this update: Tue 04 Nov 2025 13:00:25 +0000
Manifest next update: Wed 05 Nov 2025 13:00:25 +0000
Files and hashes: 1: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: rWZCo78/xs5UNkTMV5iHH7Sq0+lElda7PlUicKTsH8U=)
2: PinfW_YHyw5uymC7Qg5_e_ihs1A.roa (hash: pxez1kR2olajgq0bPf5GWwA/2mx0CN85t2SDcizNJFk=)
3: q6pqSEbcTlqmRayyanV7tPyo7fs.roa (hash: EC2KtAOMCahopm9kPSQwxVqEk8+Lm5s50v5gQFz0rN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:4f:45:34:ad:71:98:c2:18:61:7a:b3:d1:4f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Validity
Not Before: Nov 4 13:00:25 2025 GMT
Not After : Nov 5 13:00:25 2025 GMT
Subject: CN=fc641e56222fad53485228c09790441df3f41726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1b:56:f9:cc:82:ab:e1:bf:05:27:98:97:6c:
78:7c:81:3b:0c:40:e6:63:83:a9:fd:20:31:4d:e9:
3d:dd:25:84:b8:98:32:92:d7:f7:b9:ca:a2:a8:cf:
c2:a5:cc:ba:59:74:03:74:32:dd:fb:c1:13:d1:30:
27:c0:a5:c7:51:8f:8d:f9:8a:cf:25:ef:b2:bb:e7:
b2:7e:cf:7a:2c:67:c9:e3:06:0c:6b:b4:44:c2:ff:
e7:37:e5:be:92:ab:e9:cf:72:76:e8:a6:6e:c8:1d:
56:ad:47:ac:4d:bd:00:b7:bd:47:95:df:95:fe:9b:
a8:22:99:fe:5c:93:5a:de:75:a2:29:e4:d5:bd:d0:
22:e5:cf:69:70:72:ef:5a:aa:49:f7:71:bd:56:60:
d7:1c:64:73:03:1e:6d:0f:4f:19:68:4d:b9:95:d6:
8c:56:b9:50:e2:b4:b1:84:91:ef:e6:d0:6f:07:d9:
14:b2:5e:9b:a6:84:39:71:26:1d:7a:ba:b3:46:f5:
46:d9:b2:04:c1:0c:a6:38:97:74:40:58:02:27:5d:
3b:4d:8d:f1:80:70:94:f0:5b:b0:40:22:24:85:44:
df:5e:c4:0c:ee:18:56:96:52:ab:e3:dd:a5:2b:bd:
e5:05:9f:81:a1:25:79:8f:e2:de:d3:87:9a:8b:6f:
bd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:64:1E:56:22:2F:AD:53:48:52:28:C0:97:90:44:1D:F3:F4:17:26
X509v3 Authority Key Identifier:
keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:cf:e4:f6:e4:3d:e2:a6:4a:52:71:1d:82:4a:20:7f:30:ac:
a8:8e:f8:e3:ef:66:3d:15:d4:cc:22:a3:bb:ca:4c:38:2e:3c:
7b:2f:3e:45:8e:03:ff:77:40:d0:04:66:48:5b:1c:fd:1b:03:
9f:84:9d:44:85:49:12:d9:c9:b7:05:70:d1:a5:5d:88:6b:da:
27:9b:d5:7c:d6:9b:cb:80:ed:ab:8e:ed:1f:85:04:81:28:4a:
31:9b:e2:62:cb:ac:42:b3:89:b0:c9:af:e0:ac:a4:1a:47:00:
75:bf:76:8d:b9:24:b4:0a:53:f8:b2:7d:0e:37:30:a5:17:d7:
9a:d4:01:58:65:a6:cb:b4:b8:4a:4c:10:17:3d:44:77:1e:43:
8e:c5:08:b7:9e:af:d3:86:14:e1:ca:a6:5f:e1:96:19:30:52:
f9:b9:b2:eb:d8:11:3b:30:16:b5:4e:47:f4:ea:85:eb:a7:60:
6a:36:ed:b0:36:0f:d2:2a:92:20:f0:e5:92:86:ab:eb:c6:5c:
47:ac:07:cc:4d:55:a1:2d:ff:01:d1:a5:2f:bc:d1:71:65:a5:
2b:a9:e1:ea:56:21:b1:ee:34:f8:1c:ed:1f:36:7b:02:66:9d:
e1:dc:af:4e:57:8d:33:d5:dd:30:4f:6a:05:09:a1:51:19:2a:
a4:b5:41:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:52 2025 by rpki-client