Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: SdHVA1FBZVkFb2sLX+FNelhLbETrvO6A09ReyanzjaQ=
Subject key identifier: CF:99:A7:F5:7C:8F:19:BD:B3:20:D4:C0:AF:8C:1D:E0:85:B1:0F:36
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 019923317DF46E14B275096C1DBBCE759A40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 075A
Signing time: Sun 07 Sep 2025 08:01:10 +0000
Manifest this update: Sun 07 Sep 2025 08:01:10 +0000
Manifest next update: Mon 08 Sep 2025 08:01:10 +0000
Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: Fxu0jCCNHDFZaTZxa3nHXAG2iPsFUMX9/ys4+0amId8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:7d:f4:6e:14:b2:75:09:6c:1d:bb:ce:75:9a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Sep 7 08:01:10 2025 GMT
Not After : Sep 8 08:01:10 2025 GMT
Subject: CN=cf99a7f57c8f19bdb320d4c0af8c1de085b10f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b6:42:7a:1f:98:48:4f:7a:7c:78:4c:d1:77:
dd:3a:ae:9c:5d:df:6a:28:fa:75:24:23:1b:c5:97:
6f:cc:83:3e:0b:92:28:b1:91:18:95:ab:a1:25:71:
eb:48:4a:0e:fd:5f:d8:8e:64:03:0c:ae:f7:58:eb:
c5:39:6f:bd:0b:52:95:86:f8:6b:5b:f9:08:08:c3:
b7:80:a6:34:2d:80:f4:c6:d5:9e:d3:d1:84:af:9d:
38:ba:dd:41:51:fd:0a:d9:52:9c:dd:51:5a:41:ea:
34:37:bd:f7:60:3d:58:ff:a0:b3:10:9c:9d:e5:bd:
6d:3d:d6:4a:44:4e:54:cf:06:04:42:ab:71:5b:3f:
56:2c:01:85:ed:31:63:e6:73:41:e8:be:82:bb:44:
a4:36:59:67:64:36:ad:3b:38:b3:fc:8c:7f:a1:c6:
e3:c5:b4:10:54:4a:45:c5:e4:54:37:e7:e7:7d:0d:
6b:bd:3c:91:04:23:91:96:8d:f6:0a:58:fc:d8:c1:
7c:d4:c8:2f:3b:08:1c:bc:dd:3a:78:4a:c3:18:32:
1e:1a:20:f7:b8:2d:a5:71:22:9f:ae:ad:b5:8c:09:
90:33:8f:6a:4a:f7:70:8b:67:c9:4a:f2:ee:f7:6d:
ef:69:e0:c5:85:d5:f8:16:93:de:6b:26:11:ff:89:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:99:A7:F5:7C:8F:19:BD:B3:20:D4:C0:AF:8C:1D:E0:85:B1:0F:36
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:1c:f8:d8:5a:c7:3b:95:95:48:7b:a1:4e:52:e2:3b:30:e9:
ca:a4:36:c4:b1:9b:b3:e8:fc:ac:ee:76:9b:00:70:03:6c:48:
7b:7d:ae:aa:41:41:61:47:bb:24:22:70:50:cd:f8:89:58:5f:
a4:84:15:8a:1c:cf:b0:5b:a9:df:00:d0:90:0f:c4:a2:cd:3c:
e6:16:a2:4c:6d:38:6d:c6:39:21:1d:2b:44:f4:15:8d:4d:82:
33:c5:84:28:58:d4:02:43:77:ec:b4:99:b4:07:1c:b1:b0:d7:
9f:0f:e6:de:01:3a:f5:75:2e:09:a1:a8:f4:a8:6b:bf:4d:eb:
18:70:7a:2d:40:ae:f0:a8:39:ae:c1:e8:5b:67:ba:63:00:02:
84:56:e3:c6:80:15:b8:5f:47:fd:f2:55:a6:df:32:10:90:79:
dc:22:f9:4c:24:12:28:68:4d:d5:2c:58:77:d6:4d:ea:34:c2:
42:13:a4:6f:94:1d:c4:95:3a:48:02:e8:b8:9c:ba:c7:3c:44:
ca:6b:64:a2:db:11:2e:11:8a:29:74:72:66:a1:6f:26:4b:c8:
22:a9:98:77:93:e2:cf:83:9c:25:56:7e:03:8e:e1:ea:db:45:
3f:60:14:42:e0:ba:bb:27:82:cd:d2:f8:b5:9f:ec:a6:e4:8d:
4b:c7:1b:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMX30bhSydQlsHbvOdZpAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YThhNjkwMDlhZDJlODkwOTg2YmRkNzZjNjMzYzFiMzFm
MDZmM2EwHhcNMjUwOTA3MDgwMTEwWhcNMjUwOTA4MDgwMTEwWjAzMTEwLwYDVQQD
EyhjZjk5YTdmNTdjOGYxOWJkYjMyMGQ0YzBhZjhjMWRlMDg1YjEwZjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLZCeh+YSE96fHhM0XfdOq6cXd9q
KPp1JCMbxZdvzIM+C5IosZEYlauhJXHrSEoO/V/YjmQDDK73WOvFOW+9C1KVhvhr
W/kICMO3gKY0LYD0xtWe09GEr504ut1BUf0K2VKc3VFaQeo0N733YD1Y/6CzEJyd
5b1tPdZKRE5UzwYEQqtxWz9WLAGF7TFj5nNB6L6Cu0SkNllnZDatOziz/Ix/ocbj
xbQQVEpFxeRUN+fnfQ1rvTyRBCORlo32Clj82MF81MgvOwgcvN06eErDGDIeGiD3
uC2lcSKfrq21jAmQM49qSvdwi2fJSvLu923vaeDFhdX4FpPeayYR/4kx1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM+Zp/V8jxm9syDUwK+MHeCFsQ82MB8GA1UdIwQY
MBaAFKWoppAJrS6JCYa912xjPBsx8G86MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9jNGRhZGEtMWEyOS00NDlhLTlhYzYt
YjEyZWJmMzQ1YmMzLzEvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy9jNGRhZGEtMWEyOS00NDlhLTlhYzYtYjEyZWJmMzQ1YmMz
LzEvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcRz42FrH
O5WVSHuhTlLiOzDpyqQ2xLGbs+j8rO52mwBwA2xIe32uqkFBYUe7JCJwUM34iVhf
pIQVihzPsFup3wDQkA/Eos085haiTG04bcY5IR0rRPQVjU2CM8WEKFjUAkN37LSZ
tAccsbDXnw/m3gE69XUuCaGo9Khrv03rGHB6LUCu8Kg5rsHoW2e6YwAChFbjxoAV
uF9H/fJVpt8yEJB53CL5TCQSKGhN1SxYd9ZN6jTCQhOkb5QdxJU6SALouJy6xzxE
ymtkotsRLhGKKXRyZqFvJkvIIqmYd5Piz4OcJVZ+A47h6ttFP2AUQuC6uyeCzdL4
tZ/spuSNS8cbag==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:51 2025 by rpki-client