Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
File: SM83s2Rv2pPL3QuKrM__MTpvcY8.mft (raw, json)
Hash identifier: PKWn2wLKRG7IjcXJTPZp7Vz4Z9uAFkuYULJDQnEGKsA=
Subject key identifier: 66:63:46:0D:D3:FD:56:74:DD:DC:4A:8D:FC:45:3E:C9:92:06:03:9B
Authority key identifier: 48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
Certificate issuer: /CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Certificate serial: 019D98BD91453C7A89C52206E2D7F5A1D350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
Manifest number: 185A
Signing time: Fri 17 Apr 2026 00:00:53 +0000
Manifest this update: Fri 17 Apr 2026 00:00:53 +0000
Manifest next update: Sat 18 Apr 2026 00:00:53 +0000
Files and hashes: 1: JA6DG47aKcr2L7Ska7dQW2hz0OQ.roa (hash: SZmqmdymrljO2hpbQb1uMliK1C8iABzhCOgMWLG7xTw=)
2: SM83s2Rv2pPL3QuKrM__MTpvcY8.crl (hash: 2ELXizT/HrIWY6ejSeC3xNDJns26JpJ6OVXWUzb0w0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:91:45:3c:7a:89:c5:22:06:e2:d7:f5:a1:d3:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Validity
Not Before: Apr 17 00:00:53 2026 GMT
Not After : Apr 18 00:00:53 2026 GMT
Subject: CN=6663460dd3fd5674dddc4a8dfc453ec99206039b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ea:98:47:e8:49:ae:a3:80:b5:9f:e8:76:ff:
5b:55:e6:34:9a:ce:fa:49:e9:17:29:85:6f:5c:f6:
49:10:5f:81:e0:bd:e3:c6:68:ae:66:3a:98:7b:5f:
81:18:71:e3:24:4a:9c:08:ce:0a:47:e2:ed:8a:7a:
35:eb:c0:eb:fa:5b:77:ac:df:96:83:5f:a6:4b:1f:
20:9c:ed:c7:b8:00:dd:4c:2a:33:13:b4:a7:74:6c:
d7:10:2a:b7:4d:6e:27:85:9d:81:1a:3e:7b:05:9a:
b8:81:6f:fe:54:f9:c5:cf:e4:53:6f:38:3b:46:3f:
13:ca:51:89:67:7a:d9:0a:f2:c5:de:25:fa:a5:28:
2b:83:2c:e0:af:3f:d7:63:97:9c:8b:dc:01:86:c9:
58:d1:84:3c:89:dd:12:57:cf:cb:cd:78:8c:c4:ff:
32:2e:c1:be:d8:ff:d7:71:57:aa:e7:75:86:a0:29:
1c:e7:c1:22:e2:a6:33:d8:68:45:c9:8d:4b:72:d2:
72:b4:c9:36:77:72:b8:de:f7:47:c5:f1:73:4c:cb:
93:51:d9:2e:58:c2:3b:94:d2:48:4d:c8:56:9c:a4:
34:e9:42:2a:a8:0a:73:18:e2:fd:25:bd:af:dc:5e:
99:17:d8:28:27:ea:7b:d2:bb:35:be:e0:4a:1e:ba:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:63:46:0D:D3:FD:56:74:DD:DC:4A:8D:FC:45:3E:C9:92:06:03:9B
X509v3 Authority Key Identifier:
keyid:48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:50:07:44:82:95:0f:97:dc:19:55:89:b0:fd:04:96:e3:6e:
33:43:de:db:40:77:9b:9f:c7:c4:02:a5:4e:99:2e:00:5d:73:
62:0f:1a:7e:0b:50:6e:03:f3:75:3b:32:39:1c:28:7a:77:3b:
1a:c5:b2:4a:b2:7f:73:1b:84:3b:4b:0d:8a:50:16:3c:5e:cf:
65:e7:4e:ca:42:43:5b:bd:99:6c:37:a1:af:4b:71:1a:37:ed:
42:d7:e6:6c:75:02:c9:b4:b8:8d:8b:a5:98:16:9d:bc:52:58:
f4:24:fb:27:db:e0:8a:08:dd:d7:49:c9:22:c9:66:48:c5:32:
e2:ff:cf:63:81:2d:a9:35:fa:53:6a:4f:4e:06:82:3f:45:35:
e7:a0:95:ee:1c:6a:85:da:b0:7a:8b:13:75:4d:73:4c:cc:a1:
79:3c:45:ce:61:3d:bd:84:e1:cb:89:0b:b8:1e:ab:90:82:ec:
22:9a:89:d3:2d:e1:ac:0c:8a:08:44:70:fd:3c:3e:0f:c1:ad:
a5:74:1c:df:67:be:03:c6:b3:e9:30:23:3e:c4:f7:6f:4f:c2:
1e:be:00:34:bb:0f:d8:d3:6c:01:4e:74:45:08:19:fd:60:e1:
96:2a:02:de:10:19:ec:bc:51:92:76:dd:f3:ed:09:2f:5d:13:
fc:e7:d5:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:07:52 2026 by rpki-client