Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
File: SM83s2Rv2pPL3QuKrM__MTpvcY8.mft (raw, json)
Hash identifier: or+atTcPQJKVNMX12RmvOqpI46ZC5RTH8FDKlGOtneg=
Subject key identifier: C6:49:29:D4:FC:66:21:12:6C:30:B0:1E:AA:07:C0:69:48:88:8D:3C
Authority key identifier: 48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
Certificate issuer: /CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Certificate serial: 01989DB9FEC3AB1A69401EA557D8A03814F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
Manifest number: 15C5
Signing time: Tue 12 Aug 2025 10:01:08 +0000
Manifest this update: Tue 12 Aug 2025 10:01:08 +0000
Manifest next update: Wed 13 Aug 2025 10:01:08 +0000
Files and hashes: 1: Os6xDD1H4LsrEU2Pwmq0YT-o8IM.roa (hash: 9WTAK5WFdauUxfw4Aw74xq8JjOOgRjy/Qe/px+Cijao=)
2: SM83s2Rv2pPL3QuKrM__MTpvcY8.crl (hash: tfRUJ384/6YIUc6hmgor67hgBir5Y34MWMnijEoRUoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9d:b9:fe:c3:ab:1a:69:40:1e:a5:57:d8:a0:38:14:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Validity
Not Before: Aug 12 10:01:08 2025 GMT
Not After : Aug 13 10:01:08 2025 GMT
Subject: CN=c64929d4fc6621126c30b01eaa07c06948888d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f4:24:be:b2:33:a5:a2:66:49:9f:ed:74:99:
a6:84:25:fb:1c:23:42:53:98:19:95:85:72:0d:70:
8c:ed:c4:cb:1f:e5:a8:46:52:44:66:e5:99:af:11:
ba:f9:65:c4:71:61:ab:92:89:e7:e6:f8:0c:16:29:
dc:78:bd:62:4a:4f:db:70:32:20:98:3b:9d:41:95:
39:93:a8:59:7a:f0:65:6a:32:ac:60:4d:41:c5:40:
1f:a9:4a:74:1d:89:97:12:be:6e:aa:23:a5:37:46:
67:64:c8:3a:26:2f:43:1e:2c:aa:2b:59:14:a5:c3:
34:6d:93:c6:b7:cf:68:63:d7:1f:0e:80:99:e6:25:
22:a7:e9:37:cc:14:23:75:bd:84:e5:99:eb:a9:45:
36:ad:c0:64:38:0e:9a:96:9a:1f:78:12:7b:ec:8b:
40:9c:ab:42:f7:c7:bc:42:f1:0c:4b:97:a9:2d:52:
c6:f1:85:28:94:b4:39:53:df:bf:e7:27:79:a6:1d:
6c:c1:6a:90:72:f5:84:3f:62:bf:af:76:85:3e:d7:
95:59:99:60:39:6b:a8:ca:2c:a7:6f:b0:c1:37:ba:
01:b1:7a:d0:af:be:db:f5:19:3e:06:93:ee:b1:47:
e6:84:3b:70:d3:7c:31:63:39:60:bc:e7:2f:22:95:
03:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:49:29:D4:FC:66:21:12:6C:30:B0:1E:AA:07:C0:69:48:88:8D:3C
X509v3 Authority Key Identifier:
keyid:48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:4a:3e:b5:8e:5f:a3:c5:f7:fd:af:6c:38:58:54:fd:cb:32:
71:24:9e:86:3e:d7:ce:ed:6f:f5:6b:f7:6f:30:ac:25:ad:2e:
19:9c:d7:1b:ec:f7:e5:cc:5b:c3:e4:7e:37:39:32:61:ec:c0:
20:2a:97:5e:1d:b1:ba:3a:13:c4:6e:74:64:ba:1c:8b:db:16:
0e:6b:b2:39:5e:f0:87:77:ed:17:69:4f:fc:cb:59:40:0c:f7:
60:86:42:3a:0f:51:97:5e:3b:ef:f6:47:6f:62:7e:8a:00:36:
a2:b8:60:35:d0:78:c7:78:f8:43:bf:16:52:1b:3e:b9:16:b8:
2a:0b:c7:55:79:62:b2:33:25:bc:55:96:d4:9c:3e:bc:02:82:
93:fc:ab:d5:3e:d5:ae:a8:be:c6:97:f0:43:92:6a:8d:9e:57:
cf:61:d9:2d:cc:63:9b:cd:0f:cc:39:df:ea:6f:9a:07:9c:b6:
12:ce:34:65:99:b6:d6:ef:e9:14:1f:b0:da:c6:78:93:94:c6:
9c:93:77:98:89:07:37:b9:9e:ee:48:73:fb:d4:83:e1:d2:12:
5a:f7:1b:ed:36:39:9d:54:a5:83:cc:a1:1b:a6:c5:35:a1:ef:
97:e0:04:f5:1c:e8:e0:28:fe:93:0f:01:5a:0f:33:87:e1:28:
45:92:03:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiduf7DqxppQB6lV9igOBTyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4Y2YzN2IzNjQ2ZmRhOTNjYmRkMGI4YWFjY2ZmZjMxM2E2
ZjcxOGYwHhcNMjUwODEyMTAwMTA4WhcNMjUwODEzMTAwMTA4WjAzMTEwLwYDVQQD
EyhjNjQ5MjlkNGZjNjYyMTEyNmMzMGIwMWVhYTA3YzA2OTQ4ODg4ZDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfQkvrIzpaJmSZ/tdJmmhCX7HCNC
U5gZlYVyDXCM7cTLH+WoRlJEZuWZrxG6+WXEcWGrkonn5vgMFinceL1iSk/bcDIg
mDudQZU5k6hZevBlajKsYE1BxUAfqUp0HYmXEr5uqiOlN0ZnZMg6Ji9DHiyqK1kU
pcM0bZPGt89oY9cfDoCZ5iUip+k3zBQjdb2E5ZnrqUU2rcBkOA6alpofeBJ77ItA
nKtC98e8QvEMS5epLVLG8YUolLQ5U9+/5yd5ph1swWqQcvWEP2K/r3aFPteVWZlg
OWuoyiynb7DBN7oBsXrQr77b9Rk+BpPusUfmhDtw03wxYzlgvOcvIpUDrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMZJKdT8ZiESbDCwHqoHwGlIiI08MB8GA1UdIwQY
MBaAFEjPN7Nkb9qTy90LiqzP/zE6b3GPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU004M3MyUnYycFBMM1F1S3JNX19NVHB2Y1k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yMGQ1OTMtNzIzZi00OTYzLTkwMWQt
MTdlMzE1ODk1NGRhLzEvU004M3MyUnYycFBMM1F1S3JNX19NVHB2Y1k4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8yMGQ1OTMtNzIzZi00OTYzLTkwMWQtMTdlMzE1ODk1NGRh
LzEvU004M3MyUnYycFBMM1F1S3JNX19NVHB2Y1k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoUo+tY5f
o8X3/a9sOFhU/csycSSehj7Xzu1v9Wv3bzCsJa0uGZzXG+z35cxbw+R+NzkyYezA
ICqXXh2xujoTxG50ZLoci9sWDmuyOV7wh3ftF2lP/MtZQAz3YIZCOg9Rl1477/ZH
b2J+igA2orhgNdB4x3j4Q78WUhs+uRa4KgvHVXlisjMlvFWW1Jw+vAKCk/yr1T7V
rqi+xpfwQ5JqjZ5Xz2HZLcxjm80PzDnf6m+aB5y2Es40ZZm21u/pFB+w2sZ4k5TG
nJN3mIkHN7me7khz+9SD4dISWvcb7TY5nVSlg8yhG6bFNaHvl+AE9Rzo4Cj+kw8B
Wg8zh+EoRZID3Q==
-----END CERTIFICATE-----
Generated at Tue Aug 12 19:06:28 2025 by rpki-client