Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/64dabc-6564-4ca0-802f-ca9790080716/1/SmO14kps7e29L-j2bXl6s9jqpMk.mft
File: SmO14kps7e29L-j2bXl6s9jqpMk.mft (raw, json)
Hash identifier: cQw45A47qxTAmC7P9nXidnK5CqkkA+HHxY0IBOLchC0=
Subject key identifier: B0:E1:81:2B:EF:B2:7D:C8:97:51:B5:6D:B4:B5:C3:EE:C5:0A:55:DE
Authority key identifier: 4A:63:B5:E2:4A:6C:ED:ED:BD:2F:E8:F6:6D:79:7A:B3:D8:EA:A4:C9
Certificate issuer: /CN=4a63b5e24a6cededbd2fe8f66d797ab3d8eaa4c9
Certificate serial: 0198D6614464CB960C28FCA3EFE5991CB2E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmO14kps7e29L-j2bXl6s9jqpMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/64dabc-6564-4ca0-802f-ca9790080716/1/SmO14kps7e29L-j2bXl6s9jqpMk.mft
Manifest number: 1644
Signing time: Sat 23 Aug 2025 10:02:35 +0000
Manifest this update: Sat 23 Aug 2025 10:02:35 +0000
Manifest next update: Sun 24 Aug 2025 10:02:35 +0000
Files and hashes: 1: SmO14kps7e29L-j2bXl6s9jqpMk.crl (hash: gU4eCQhZCGkh3my5HkQlGLQzghR0VQoUUSS1TgswphA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/64dabc-6564-4ca0-802f-ca9790080716/1/SmO14kps7e29L-j2bXl6s9jqpMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/64dabc-6564-4ca0-802f-ca9790080716/1/SmO14kps7e29L-j2bXl6s9jqpMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/SmO14kps7e29L-j2bXl6s9jqpMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:44:64:cb:96:0c:28:fc:a3:ef:e5:99:1c:b2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a63b5e24a6cededbd2fe8f66d797ab3d8eaa4c9
Validity
Not Before: Aug 23 10:02:35 2025 GMT
Not After : Aug 24 10:02:35 2025 GMT
Subject: CN=b0e1812befb27dc89751b56db4b5c3eec50a55de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:82:3e:22:72:e8:87:b6:f2:d6:7f:22:4b:4c:
21:88:2c:93:f9:b4:7b:6e:07:44:4f:c6:84:ce:1b:
ad:90:8a:9e:2a:53:2a:78:0e:e9:d7:75:0f:51:f8:
22:99:fc:81:25:92:a0:27:65:36:b5:74:d0:e5:a3:
1d:ca:c9:9f:1c:8a:a0:91:15:c1:6e:5a:fa:c2:38:
d8:93:9a:a7:fd:12:d3:b8:13:e5:00:bb:61:c2:59:
06:6a:ec:f4:ff:b1:06:47:bd:2a:4a:62:a8:50:f3:
0c:a2:1b:87:3a:0f:fb:49:eb:2c:01:cc:15:02:90:
f6:7b:09:74:b5:0b:d2:f2:58:3d:5f:1a:eb:82:ec:
f0:bb:e0:7c:1d:ad:81:09:57:cc:bc:95:6a:84:84:
43:9a:36:ba:f4:e7:a9:45:6c:62:2c:3b:4a:a4:3c:
3e:96:ef:80:0e:7d:ba:a0:35:28:c3:28:cc:88:d3:
d1:fb:60:d0:03:7e:35:16:2b:a4:d7:b8:15:4f:30:
f9:e7:91:18:7d:1d:e1:d2:a0:f0:1f:a3:7d:57:fc:
96:3a:af:06:c2:18:7f:f7:e1:91:5e:7f:8b:79:2f:
7a:25:44:fe:e2:46:75:bd:5a:ea:43:17:06:d1:1e:
6b:51:70:3b:5e:3f:09:6c:9e:85:00:89:0f:6b:0e:
6e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E1:81:2B:EF:B2:7D:C8:97:51:B5:6D:B4:B5:C3:EE:C5:0A:55:DE
X509v3 Authority Key Identifier:
keyid:4A:63:B5:E2:4A:6C:ED:ED:BD:2F:E8:F6:6D:79:7A:B3:D8:EA:A4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmO14kps7e29L-j2bXl6s9jqpMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/64dabc-6564-4ca0-802f-ca9790080716/1/SmO14kps7e29L-j2bXl6s9jqpMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/64dabc-6564-4ca0-802f-ca9790080716/1/SmO14kps7e29L-j2bXl6s9jqpMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:0f:75:f5:e4:c8:48:ff:98:6b:c3:24:15:e0:ce:e1:09:b6:
f6:56:89:64:2b:e2:41:7a:2c:cc:21:80:ad:40:cb:8f:ec:e8:
fe:90:2c:04:75:02:81:cf:6a:f2:40:5f:8b:d6:d9:72:c8:0c:
0d:9e:3e:01:6e:7e:86:e5:9a:cf:d7:de:48:f3:ae:97:1a:bc:
fd:bf:54:3e:ce:c0:96:e0:cf:48:f0:78:8d:9c:bb:93:f9:75:
ef:ea:25:ec:ed:db:01:39:cd:d5:eb:b8:ce:e6:83:75:7d:11:
19:52:8c:e9:37:23:fe:30:e6:9e:3b:ed:2b:04:27:11:4a:cc:
0a:09:7a:b2:bb:e7:58:9d:95:e4:5c:ec:af:1d:a2:28:43:29:
dc:24:59:3e:8a:99:37:dd:b4:03:c7:59:28:d3:77:eb:8d:b2:
bc:ce:03:a3:db:20:58:8d:70:ea:8c:9d:f7:5b:72:a5:7a:de:
71:1f:36:78:9f:91:de:79:7a:02:6e:94:3b:d7:13:a3:84:0b:
d5:ea:b9:cf:4e:53:db:3b:b3:a3:f5:d2:da:fa:d7:15:c4:c1:
54:0f:ec:ea:47:7a:d9:0c:41:35:63:2d:b3:ed:89:82:e6:61:
44:e4:c9:8e:b9:8e:2c:69:74:ae:e3:2e:59:e8:44:3a:16:bb:
94:dd:87:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:52:24 2025 by rpki-client