Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
File: 18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json)
Hash identifier: oTM25ltOq4RLfRJDTYAPabJs+lSpyfzAiCww+NAKNU0=
Subject key identifier: 42:64:68:E9:29:82:E2:D7:7B:10:AF:2F:B9:2E:AB:CA:67:C4:5A:0D
Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
Certificate issuer: /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Certificate serial: 019A4FCFE0B1754879F528F4BAFB3FDEDBE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
Manifest number: 0E32
Signing time: Tue 04 Nov 2025 17:00:14 +0000
Manifest this update: Tue 04 Nov 2025 17:00:14 +0000
Manifest next update: Wed 05 Nov 2025 17:00:14 +0000
Files and hashes: 1: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: l+7BKJLd88BH9pOudZxP4tnPWURxC3oG14+Eg2BWWCk=)
2: 4YqKA_NWl67P1UUsYLLewOce3N4.roa (hash: jzpkFPCa8z2EEBKsdTK/EMaQenQwoVIoEp37mrkYSlo=)
3: IQytQDxkG6z6-hb3Iu6XIv8OQic.roa (hash: Fz8ORoLoUXIyDmykV9akqdIIcR0t067gq2FU4oUFIwY=)
4: OPYEfeaD4UG3_woKyPv1Wj7JrZg.roa (hash: iv8H/ObGNtJDTTAshveiukMxLvPbVXVjWuW+XjG+jWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:e0:b1:75:48:79:f5:28:f4:ba:fb:3f:de:db:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Validity
Not Before: Nov 4 17:00:14 2025 GMT
Not After : Nov 5 17:00:14 2025 GMT
Subject: CN=426468e92982e2d77b10af2fb92eabca67c45a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:64:f3:ec:54:91:d0:25:b6:a6:23:7f:49:ac:
aa:4e:13:52:9e:65:d5:74:f1:4d:fe:de:bd:1f:9c:
7a:33:21:a4:98:44:5e:e8:10:87:81:45:b5:a4:6d:
26:68:68:26:ed:23:bf:d4:25:db:5f:26:ad:c8:1d:
34:be:46:32:55:9e:a2:53:a9:99:db:ed:db:16:99:
2c:a9:c7:b4:4c:d0:96:82:21:d3:02:89:8e:14:b6:
f4:76:36:82:37:ae:e1:15:52:05:48:3c:23:d0:62:
da:56:54:bc:7c:ac:d1:da:bd:e3:a5:4f:02:fa:83:
70:fd:94:f3:ee:3c:c3:a1:f3:33:2f:bb:af:e9:98:
40:e3:dc:a1:1c:de:d4:f8:b2:35:78:31:38:e8:b7:
7f:96:fc:78:d8:ab:95:b8:f6:79:6d:2d:fe:09:61:
8e:70:da:9c:32:67:5b:12:68:33:37:12:40:0d:e8:
40:7f:2d:49:38:0c:b9:13:c0:da:fd:f6:7e:6b:2b:
50:a4:b2:65:50:d6:6e:fd:58:71:ac:63:58:c7:dd:
fa:00:a4:98:31:b1:21:ab:11:ed:02:cb:cc:78:63:
a5:95:f5:da:aa:78:14:81:29:51:1c:4d:b4:47:19:
37:46:60:dc:5c:db:9b:50:44:4b:fd:0c:b9:b8:93:
8b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:64:68:E9:29:82:E2:D7:7B:10:AF:2F:B9:2E:AB:CA:67:C4:5A:0D
X509v3 Authority Key Identifier:
keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:41:22:61:0b:50:d3:ef:58:ec:52:1a:96:1c:00:1b:3d:61:
2d:ec:c2:76:9a:ca:d0:f4:ca:f5:20:9f:4a:50:1a:2b:53:8f:
fd:16:79:35:69:99:b4:4c:29:f6:77:0f:95:eb:28:1e:21:4c:
96:e7:70:01:e1:60:c6:aa:f5:a7:c3:94:5f:c0:b5:05:c3:b5:
09:3e:0f:cc:40:bd:ad:22:87:ef:33:22:2e:a2:15:ef:b7:82:
e9:32:35:00:ad:af:d6:c0:fc:dd:1d:77:de:2b:65:09:97:80:
90:e5:0f:bc:8f:1b:26:06:0a:ec:25:90:98:bc:39:da:44:d2:
10:41:d5:f3:66:7f:ce:2b:ed:64:7e:38:3c:0a:58:17:b1:ab:
04:21:d8:46:34:57:b2:71:96:29:be:ae:f3:c1:6e:25:be:d6:
ed:3b:b6:8c:40:c8:40:6e:f6:84:74:59:7e:5f:7f:10:f0:6a:
0b:41:bd:d6:d0:b0:6d:8b:36:b1:23:1f:a9:87:08:26:a1:f7:
4b:e4:0e:2f:e0:cb:1f:3b:08:20:c1:2e:81:f3:83:a1:05:ce:
a1:b6:88:2d:8c:d8:bb:d4:01:e0:13:f4:a4:ac:77:fd:bb:e7:
9e:ba:ea:be:4f:fa:bd:49:97:4b:aa:df:ef:af:e3:2a:e6:9e:
04:8d:80:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:34:21 2025 by rpki-client