Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
File: SM83s2Rv2pPL3QuKrM__MTpvcY8.mft (raw, json)
Hash identifier: Tv2ofYIUi011A9GmvR5EJ9SUxBGMi8YdvDNx9u6aFVI=
Subject key identifier: D0:ED:51:8E:1A:9D:93:A6:09:DC:7F:EF:98:2A:CF:76:A7:60:63:AC
Authority key identifier: 48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
Certificate issuer: /CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Certificate serial: 019A5608CF087198541396B417BCD6AC592F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
Manifest number: 16A9
Signing time: Wed 05 Nov 2025 22:00:09 +0000
Manifest this update: Wed 05 Nov 2025 22:00:09 +0000
Manifest next update: Thu 06 Nov 2025 22:00:09 +0000
Files and hashes: 1: Os6xDD1H4LsrEU2Pwmq0YT-o8IM.roa (hash: 9WTAK5WFdauUxfw4Aw74xq8JjOOgRjy/Qe/px+Cijao=)
2: SM83s2Rv2pPL3QuKrM__MTpvcY8.crl (hash: 8GcVA3/6saqQr13HiTPEssHX/XqJyskwIQyODRQEIHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:08:cf:08:71:98:54:13:96:b4:17:bc:d6:ac:59:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f
Validity
Not Before: Nov 5 22:00:09 2025 GMT
Not After : Nov 6 22:00:09 2025 GMT
Subject: CN=d0ed518e1a9d93a609dc7fef982acf76a76063ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0f:6f:c0:51:07:a5:d2:57:bb:b3:73:9e:3e:
c2:33:4c:17:1b:d6:64:04:48:83:d9:9e:ec:e7:b5:
bf:de:1f:5e:77:0e:ec:ed:88:dd:16:f4:75:3a:7c:
62:33:28:17:75:61:39:3f:2f:52:c3:9d:8c:cb:80:
5a:a6:ac:e7:41:da:84:85:35:fb:b2:bc:b3:30:97:
d6:f5:48:df:67:39:45:b6:cb:79:78:df:30:5a:db:
bd:e7:ae:15:6a:56:2e:4c:c1:52:47:44:0a:6e:d7:
18:a2:a6:42:7a:b8:30:f5:ed:86:19:71:c9:98:d5:
7d:64:d1:8c:ea:e6:74:f6:b3:33:56:c3:23:df:d2:
ac:4d:1a:7b:c4:8f:e2:77:fc:a7:a9:d9:41:b8:4e:
83:c9:2f:aa:9c:0b:74:f8:83:51:1d:b2:4c:e5:2d:
0e:2d:7c:51:63:e0:3d:9f:ba:95:33:1c:49:2c:c6:
51:cd:c0:0a:02:8a:14:07:d9:34:82:05:ed:18:a3:
1b:d6:9e:90:2d:bb:68:73:e4:30:40:49:07:5b:6d:
3c:ca:8d:bb:ac:b7:5b:f3:5a:9b:f0:6e:b2:de:b2:
ef:b5:d4:96:16:eb:6c:f4:aa:3b:74:1c:b3:fd:82:
ed:eb:8d:ed:e1:ae:85:34:2f:34:97:0f:96:e2:36:
bd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:ED:51:8E:1A:9D:93:A6:09:DC:7F:EF:98:2A:CF:76:A7:60:63:AC
X509v3 Authority Key Identifier:
keyid:48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:fe:5e:8f:56:ac:d5:01:cf:1b:a1:3c:09:03:14:b2:e1:7e:
3e:ee:c8:4e:b2:0e:1e:d5:09:5a:cc:d8:e5:5a:6f:2b:ce:52:
dd:4c:cb:6c:96:01:f5:50:99:aa:e5:57:ca:93:59:a3:de:df:
4e:99:82:83:75:04:40:ab:d1:d1:ce:b3:7e:2c:c2:c5:ea:61:
ff:99:d8:71:e3:a9:d9:48:45:34:f2:05:0d:11:ed:21:81:b8:
e0:cd:ca:d7:60:06:c6:91:f3:0f:02:d7:5a:b9:ce:f2:b7:1c:
a8:cf:7f:af:12:41:8e:08:61:01:58:12:0e:4d:78:81:1b:9c:
e0:ea:12:9c:98:ee:91:92:96:cd:aa:87:50:1e:56:a8:9f:d0:
0c:f3:ea:9f:57:a4:fd:0b:7c:04:56:25:8d:6b:ee:f1:64:03:
2d:07:57:6f:77:12:27:15:39:c2:31:c5:ea:db:9c:f5:62:56:
68:2c:ab:2f:c8:e8:4a:a7:65:09:a7:db:09:29:00:b9:5d:ae:
25:60:dd:91:ed:26:b4:5c:98:63:f0:36:f2:52:8e:76:d3:6a:
69:93:4e:a4:6f:f4:e7:7f:ae:ed:41:c4:38:1a:a1:2a:75:c1:
28:b4:1e:6a:49:7a:da:cd:be:57:16:ab:ab:86:d1:dd:6e:8b:
df:c4:e3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 23:48:18 2025 by rpki-client