Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
File: 18FIdhtnAFMpqokTXTWtI1FzvEg.mft (raw, json)
Hash identifier: bmxov5WRDEw3s0dvSkdivmZAEKrq24N5T4FhWJwbQRc=
Subject key identifier: 22:72:0E:A8:A7:0F:2C:A2:74:61:20:E3:7E:82:15:86:E7:3C:AA:7D
Authority key identifier: D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
Certificate issuer: /CN=d7c148761b67005329aa89135d35ad235173bc48
Certificate serial: 019A71B7D4091740E58A4882A6C2AB28F899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:01:03 +0000
Manifest this update: Tue 11 Nov 2025 07:01:03 +0000
Manifest next update: Wed 12 Nov 2025 07:01:03 +0000
Files and hashes: 1: 18FIdhtnAFMpqokTXTWtI1FzvEg.crl (hash: bMVGOnHasU8tAyTO9s2bFyDLhm5OnNG3ryStbuoebdU=)
2: BLbhril53MDVDeifZO2SL2UKKFM.roa (hash: UsTWzBHrl9dfEtBG/7NjUZNeMJlhyin0Rp6YIFRWYAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:d4:09:17:40:e5:8a:48:82:a6:c2:ab:28:f8:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c148761b67005329aa89135d35ad235173bc48
Validity
Not Before: Nov 11 07:01:03 2025 GMT
Not After : Nov 12 07:01:03 2025 GMT
Subject: CN=22720ea8a70f2ca2746120e37e821586e73caa7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ef:73:95:14:79:06:58:b1:dc:11:3b:47:48:
4b:ad:f4:ee:6b:3e:22:8b:33:af:06:20:5a:89:76:
36:f1:ba:03:e9:af:74:8e:93:04:a6:d7:4a:2b:37:
02:26:13:93:80:8d:90:9d:30:88:f3:9e:04:12:48:
8f:7c:bc:4d:07:96:c3:9e:78:dd:d9:af:a4:e5:36:
99:d1:99:8b:aa:b9:74:d9:e7:02:fc:33:ee:50:bd:
f4:e2:7d:16:5d:91:d0:2f:ce:50:a0:92:2e:4e:d4:
95:37:d0:98:7c:f1:75:ec:12:be:18:ae:0a:14:4c:
f0:01:d0:07:a1:37:dc:4c:b2:b7:3f:f3:3a:85:6b:
fe:ba:48:23:96:24:11:1f:6f:64:06:37:0f:96:53:
1d:17:9e:fe:7d:64:11:a0:7d:b0:37:68:90:bf:ee:
2d:2a:87:0d:1b:14:40:0f:e3:98:cf:c9:f7:03:00:
e5:cd:d8:4e:92:79:4a:f9:1e:51:68:07:e7:4c:8e:
c8:44:4e:bb:00:d0:2c:aa:da:86:1f:62:9a:21:60:
ed:bc:f8:41:d8:37:0f:49:fe:f0:a4:83:70:8c:02:
18:84:65:a2:80:05:31:17:da:d5:64:02:0c:36:e1:
08:a6:15:32:e6:34:b0:d1:6b:b4:7c:24:f8:b1:0f:
58:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:72:0E:A8:A7:0F:2C:A2:74:61:20:E3:7E:82:15:86:E7:3C:AA:7D
X509v3 Authority Key Identifier:
keyid:D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ed:e0:8f:31:f0:14:83:d4:aa:fe:c0:fd:35:a7:55:06:86:
c3:44:3a:58:12:ec:70:ad:53:0b:06:0a:e3:9e:30:54:9d:fc:
06:c7:57:6c:e5:b6:c2:d1:b6:21:22:2a:b5:9f:a5:c7:4a:18:
f2:d2:6e:17:f9:23:c2:67:a0:89:18:b5:61:fc:ef:a4:84:07:
e3:0d:f6:45:fc:44:0d:c1:03:4d:bb:63:5e:3b:ab:39:04:bf:
99:08:ea:1e:3f:7a:f8:73:88:c4:6f:d7:e5:d6:70:50:cc:60:
b7:73:fe:1c:e2:14:4d:ea:49:6e:58:c6:27:8a:86:38:8c:01:
fc:06:5d:a4:3f:01:ea:60:ba:96:4e:a7:d1:18:22:af:82:0f:
aa:0d:fd:54:81:a2:77:33:9b:9a:c1:d4:05:cd:15:5c:6f:39:
8b:36:b4:f2:3a:86:1e:f7:09:85:90:dc:73:68:f1:15:6d:d2:
1c:7c:a7:bf:22:a0:e5:61:a9:ce:0f:20:4f:21:3e:eb:a2:d9:
c9:48:f9:1e:94:5d:3d:58:b3:bc:26:02:48:8b:18:c7:3b:8e:
39:5f:61:de:d7:68:16:06:06:22:d7:a8:da:cc:bc:9f:b0:18:
01:5e:36:a4:a9:f5:a5:34:c3:eb:7f:c8:30:6e:38:fa:29:d6:
9c:29:c0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:12:28 2025 by rpki-client