Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
File: 18FIdhtnAFMpqokTXTWtI1FzvEg.mft (raw, json)
Hash identifier: g9hJoskLf2FJfAqEIah1vREWjc4ib4rgWOThRxiF0zo=
Subject key identifier: FE:24:B0:D2:6E:A4:D7:F2:BE:A9:FE:E7:56:80:73:FC:79:84:F8:94
Authority key identifier: D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
Certificate issuer: /CN=d7c148761b67005329aa89135d35ad235173bc48
Certificate serial: 019923A01DF043A8264FCB0E8124BB0BDFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 10:01:59 +0000
Manifest this update: Sun 07 Sep 2025 10:01:59 +0000
Manifest next update: Mon 08 Sep 2025 10:01:59 +0000
Files and hashes: 1: 18FIdhtnAFMpqokTXTWtI1FzvEg.crl (hash: jv79iWPRsuOZWsK3VBrfP7Nq7wiuh323vWNOwjycGP8=)
2: BLbhril53MDVDeifZO2SL2UKKFM.roa (hash: UsTWzBHrl9dfEtBG/7NjUZNeMJlhyin0Rp6YIFRWYAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:1d:f0:43:a8:26:4f:cb:0e:81:24:bb:0b:df:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c148761b67005329aa89135d35ad235173bc48
Validity
Not Before: Sep 7 10:01:59 2025 GMT
Not After : Sep 8 10:01:59 2025 GMT
Subject: CN=fe24b0d26ea4d7f2bea9fee7568073fc7984f894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:c8:42:d0:64:32:64:cb:45:53:eb:50:60:
c1:67:2b:c9:91:7f:c1:1a:e5:8d:31:b2:c2:7a:82:
48:50:33:1e:a9:74:af:15:56:f6:bc:21:17:29:c7:
cd:ed:9e:f9:b3:d2:bc:9a:74:11:f5:c1:80:12:89:
1b:61:43:e5:8e:67:1b:ad:4b:11:00:04:2c:ba:7c:
96:40:68:fb:98:27:39:41:22:28:f5:9e:3f:84:79:
ad:9f:f8:dc:d3:3a:fe:55:cd:c7:66:c0:78:99:0b:
1c:ef:d9:80:4d:6c:61:2d:51:e0:a2:59:09:04:58:
38:77:99:ab:1c:9d:10:c0:4e:f6:58:86:d2:54:0d:
7d:4f:5c:53:5a:56:4c:ab:cc:e7:ca:e2:5b:e9:54:
51:0d:7e:d6:79:70:e7:8a:00:75:ab:08:03:03:21:
05:37:fa:2f:9c:16:fc:04:09:e9:ec:25:c1:4c:c9:
f5:4e:31:20:7b:ec:5e:88:e2:55:7b:c5:13:66:6a:
d3:a0:f4:7c:2e:23:03:b6:51:e7:1d:82:4a:7c:44:
74:df:0b:60:64:6c:d6:62:a8:1c:93:cc:24:56:7e:
1d:50:6a:bc:41:9c:f1:60:1d:ed:e0:05:53:97:67:
ce:32:08:6c:f1:37:1a:33:d1:5d:37:f3:6d:61:4c:
57:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:24:B0:D2:6E:A4:D7:F2:BE:A9:FE:E7:56:80:73:FC:79:84:F8:94
X509v3 Authority Key Identifier:
keyid:D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:b7:50:c2:85:ec:25:95:94:53:d3:6e:09:ac:e5:fb:40:d2:
b6:94:d0:b2:9d:36:b2:7d:8f:2f:1e:76:11:98:dd:a4:a2:4a:
61:47:40:a1:00:3b:04:f8:a4:7c:d4:e3:3f:de:12:62:ca:ac:
39:07:8b:24:43:9b:2a:1d:ec:fb:49:37:4d:5c:75:bd:aa:a2:
1b:65:8f:bc:ef:6e:b5:1a:b0:d8:01:b8:f0:9a:02:7d:87:f9:
d4:9e:58:1c:be:4f:ad:c0:b2:32:da:6c:31:15:cc:66:ac:c5:
30:b7:9d:1b:78:e1:f9:7f:70:e1:cc:51:74:78:6b:91:15:4e:
3e:0c:a8:0c:40:e9:3e:49:50:2f:81:ca:34:7a:c5:88:41:57:
b5:b9:44:01:f3:cd:24:78:e7:8a:39:b6:4e:55:cd:10:3d:16:
c2:c3:39:51:eb:3f:9e:92:72:06:50:da:72:e0:0e:2b:53:bf:
95:2a:8c:5f:c3:d3:56:d5:02:c6:f5:1d:42:41:7d:36:fa:20:
55:11:d3:c7:03:1f:7c:73:db:20:04:aa:3c:8f:df:71:13:88:
76:0b:93:bd:af:b8:8a:bb:78:3f:64:3f:83:08:5f:d8:f2:29:
b7:0a:35:30:b8:3d:4b:32:77:c5:bd:10:0b:69:d7:a8:a5:69:
37:bc:6c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:36 2025 by rpki-client