Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
File: 18FIdhtnAFMpqokTXTWtI1FzvEg.mft (raw, json)
Hash identifier: oPLBPXJX6mjOOYxoi3Kah5vJ9315St7qaf7hC64f9u4=
Subject key identifier: 83:EB:47:6F:99:C3:31:B2:B6:E7:1C:3C:37:7E:A5:A9:85:AA:AF:25
Authority key identifier: D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
Certificate issuer: /CN=d7c148761b67005329aa89135d35ad235173bc48
Certificate serial: 019D37C11B64F61A3A917C0F59BF47727144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 04:01:35 +0000
Manifest this update: Sun 29 Mar 2026 04:01:35 +0000
Manifest next update: Mon 30 Mar 2026 04:01:35 +0000
Files and hashes: 1: 18FIdhtnAFMpqokTXTWtI1FzvEg.crl (hash: VSxVepEoiZVumVU2vFki1tGOalT2W6R4woSCtuCTkRA=)
2: 5ciuQMaVJ-5SoFgsbKpQDlCeXpQ.roa (hash: esrOMmA+0Y4Owzn/Tp8QtyowPBDFA761U7pC1R7xerw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:1b:64:f6:1a:3a:91:7c:0f:59:bf:47:72:71:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c148761b67005329aa89135d35ad235173bc48
Validity
Not Before: Mar 29 04:01:35 2026 GMT
Not After : Mar 30 04:01:35 2026 GMT
Subject: CN=83eb476f99c331b2b6e71c3c377ea5a985aaaf25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6a:5d:79:23:1a:20:19:24:f5:f8:a7:8b:fe:
65:7b:81:47:2f:4e:d2:fb:08:98:82:e5:05:1e:1d:
16:b0:43:72:46:5e:16:ac:8c:93:5b:02:d5:ae:a0:
b9:03:be:dd:83:18:63:62:a3:a0:7c:ea:da:08:1d:
66:c8:de:41:27:03:10:2b:1d:75:b2:b4:4d:75:bb:
87:28:fb:68:31:66:2d:21:96:47:69:d4:e2:69:85:
f2:3e:b8:f9:c2:c0:0c:4c:5a:da:8c:d6:ce:ff:8b:
be:8b:e3:a7:57:02:43:e2:43:54:93:2a:61:6d:fd:
13:03:d9:14:76:f5:84:8d:42:31:71:03:07:2b:70:
43:45:a2:99:e7:40:1d:ce:cc:6f:47:b6:fe:92:49:
42:cc:1c:07:13:9a:ca:ce:57:89:e8:b4:08:c7:3b:
00:64:8e:6c:ae:11:30:9a:16:a3:b2:96:c4:d2:72:
f7:1c:4a:6c:bd:bf:80:7e:a6:8a:e9:50:d0:51:30:
d8:b7:b9:ba:92:dd:27:10:be:ec:be:11:f2:75:a6:
6b:66:e0:38:3f:a0:b4:34:2f:d4:f7:87:6f:aa:dc:
38:aa:39:75:c9:80:bc:c7:79:a3:ba:4d:3b:7f:2c:
cc:03:ec:72:fe:8f:71:63:1a:3b:bc:d5:dd:d9:87:
d0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EB:47:6F:99:C3:31:B2:B6:E7:1C:3C:37:7E:A5:A9:85:AA:AF:25
X509v3 Authority Key Identifier:
keyid:D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:34:85:5e:b4:4c:76:36:6d:29:ee:4b:b6:9c:f8:e0:5d:12:
bc:e2:bb:b9:66:a7:33:aa:26:4b:6f:d5:33:89:a5:77:d2:86:
cb:31:ac:ac:1a:be:0c:bb:13:8e:ed:10:63:cc:be:ed:64:8a:
69:65:17:ce:a5:35:fa:e1:ce:b2:ff:38:ab:4b:c1:3d:06:df:
55:54:b9:6f:8a:57:18:13:94:fe:13:b6:37:d1:6b:41:9e:b5:
80:ff:a5:70:d3:8d:14:e1:30:8f:a6:7c:fc:a6:fe:4d:69:2e:
45:c0:23:ff:8d:81:41:fc:6c:66:3b:75:b4:95:af:b2:2c:21:
6a:06:fc:2e:04:de:56:03:ac:5d:9d:d8:50:47:b0:0e:6a:a3:
a0:28:9b:f8:c0:87:a7:90:42:3d:32:a6:32:e3:dc:d9:0c:a5:
d6:4d:6a:1e:0a:3f:7a:56:09:c9:c0:a5:9b:e8:70:33:eb:86:
ca:bf:53:33:2f:7a:dd:24:54:51:67:c1:21:42:09:c2:c9:b1:
37:28:b8:b4:d9:44:eb:c2:33:d0:53:a0:e8:cf:54:a9:a9:7f:
99:59:64:26:92:08:70:e9:c9:3d:91:00:0f:4b:c5:90:44:e9:
9c:5e:d5:2b:70:dd:73:88:33:53:ba:33:7e:e3:84:94:89:21:
96:f2:ea:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:16 2026 by rpki-client