Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
File: SM83s2Rv2pPL3QuKrM__MTpvcY8.mft (raw, json)
Hash identifier: 9bszDEE1nuD9bBN+9OP66dnLH09eYzpfAyJtAybJ/gE=
Subject key identifier: FD:C8:A2:F9:7B:38:2B:12:09:0B:32:7A:69:29:DD:20:8F:EF:83:6C
Authority key identifier: 48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
Certificate issuer: /CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Certificate serial: 019CAB343FDE065E977C3B049FA87D71E2A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
Manifest number: 17DF
Signing time: Sun 01 Mar 2026 21:00:53 +0000
Manifest this update: Sun 01 Mar 2026 21:00:53 +0000
Manifest next update: Mon 02 Mar 2026 21:00:53 +0000
Files and hashes: 1: JA6DG47aKcr2L7Ska7dQW2hz0OQ.roa (hash: SZmqmdymrljO2hpbQb1uMliK1C8iABzhCOgMWLG7xTw=)
2: SM83s2Rv2pPL3QuKrM__MTpvcY8.crl (hash: ha7KLTNtoc/RVD8ILy7afZstEcf+qugSc6YxoEJc8NM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:3f:de:06:5e:97:7c:3b:04:9f:a8:7d:71:e2:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Validity
Not Before: Mar 1 21:00:53 2026 GMT
Not After : Mar 2 21:00:53 2026 GMT
Subject: CN=fdc8a2f97b382b12090b327a6929dd208fef836c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:71:aa:c4:bb:b9:a8:0a:25:2b:6c:df:6e:
ac:85:b2:7f:81:55:60:d8:58:ee:1b:b9:1c:fb:53:
07:81:b0:bd:b1:2d:27:97:a1:98:0a:7f:03:a5:4c:
c6:8d:60:76:aa:61:f8:c2:17:e4:1e:17:eb:ae:e8:
0a:56:30:b2:a8:a3:43:2f:8f:6f:11:9b:11:d1:92:
b1:3a:f8:82:9b:fd:c1:f4:f5:f7:c1:83:9f:a3:33:
1d:e0:5a:c0:1f:35:2f:2d:7f:4b:16:f6:24:44:57:
c2:ef:87:5a:8e:08:05:7c:f0:e9:8b:6c:27:60:bd:
f1:98:42:5a:ee:54:ab:0b:cc:e1:2e:9b:0d:d8:b1:
84:95:07:fe:48:c3:72:30:f0:ff:1d:5c:86:08:7b:
b8:2a:01:6c:c0:df:be:80:ae:96:10:d0:45:87:dd:
25:14:b3:a9:85:9d:dd:8f:89:45:79:6a:56:a4:79:
17:b1:8b:d7:6a:56:1b:9f:5b:22:78:19:0d:fa:9e:
af:d0:9c:c5:26:e0:9f:2c:aa:1a:14:7b:bf:74:88:
b4:da:7b:1e:57:ce:70:6e:9a:19:c1:dc:72:26:0a:
d5:84:e3:41:96:b8:a9:e7:34:23:a9:3e:e4:a3:0e:
28:ce:5a:b0:6d:d1:26:f6:ae:05:d1:8a:4f:1e:a7:
b1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C8:A2:F9:7B:38:2B:12:09:0B:32:7A:69:29:DD:20:8F:EF:83:6C
X509v3 Authority Key Identifier:
keyid:48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:6b:6a:9f:73:96:12:26:01:b4:78:6e:49:5e:37:91:95:45:
97:e0:0d:80:8e:97:6d:fc:59:73:45:10:53:6a:7e:a3:f3:a8:
97:3a:f7:6e:00:45:40:13:54:b5:67:04:96:92:b0:58:02:d0:
25:72:cb:e4:2e:94:0e:d8:57:9e:a5:81:ab:83:67:51:be:3a:
84:32:77:cb:99:8e:25:7a:58:c3:a0:63:5c:08:d9:54:5d:9b:
77:7f:bb:31:8f:f6:ed:26:83:b1:28:ef:e1:77:7d:56:b7:03:
d4:58:02:a2:fc:e6:6a:b0:da:3b:41:96:fc:a4:0c:4f:0b:d0:
0b:3b:28:bf:58:37:74:38:93:d8:40:ed:fb:a4:14:99:84:6f:
e0:cd:43:91:ec:56:e0:90:49:db:be:08:02:7c:cb:86:f3:3f:
ef:6b:af:69:b2:2c:61:29:65:c7:2b:17:7a:33:48:51:a8:35:
9f:b2:20:d7:ee:a3:8e:d9:e9:6e:6f:20:6c:a7:88:32:c5:d2:
32:cd:97:34:a5:47:e4:79:8c:e6:57:11:63:7f:90:f5:94:10:
98:cb:bc:7f:61:76:6c:35:7b:a7:94:1e:6e:e4:f6:8a:3f:96:
f4:30:de:18:11:49:47:17:5b:ef:ad:ec:b8:ff:73:18:89:7c:
23:cd:5e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:16:18 2026 by rpki-client