Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: 1sIGEUDFZEwoPidpWs7ce7iHnGrpFuUvIwtygr0dG44=
Subject key identifier: BC:ED:49:05:A1:06:09:C8:23:1F:0D:D5:15:98:6F:ED:BB:ED:86:29
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 01983FF42709CAE487BBB6655C14C172DD70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 15FC
Signing time: Fri 25 Jul 2025 05:00:22 +0000
Manifest this update: Fri 25 Jul 2025 05:00:22 +0000
Manifest next update: Sat 26 Jul 2025 05:00:22 +0000
Files and hashes: 1: PDkI417cWn_abbXt0o9HD-0vD6g.roa (hash: mxVaLWpnhSe1agkXL4xYhLyldi4/weSHgH61n+a6Rqk=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: sKcTz9cf1kswaLOvBxZLPpQ3qp8glBX5f/NMzX8RHG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 05:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:3f:f4:27:09:ca:e4:87:bb:b6:65:5c:14:c1:72:dd:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: Jul 25 05:00:22 2025 GMT
Not After : Jul 26 05:00:22 2025 GMT
Subject: CN=bced4905a10609c8231f0dd515986fedbbed8629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b9:76:ba:43:77:af:3d:5c:ad:42:61:59:e3:
9f:83:3c:21:9a:82:4f:fd:6b:21:64:3a:8d:f4:3f:
2a:3f:f0:92:ed:e9:f1:6e:0d:c9:a0:94:3e:e7:58:
6e:0f:0d:76:6d:89:ea:0b:36:af:0e:9d:41:94:a2:
14:b9:f2:8b:41:75:f2:59:3f:d7:96:26:8a:74:b1:
a8:90:89:22:fe:40:04:6b:64:0e:9d:e1:59:f8:e8:
ba:99:73:0a:db:b1:e8:ab:74:70:cc:3f:8f:dd:14:
77:32:6e:37:7b:70:98:9f:c7:fa:1b:7f:40:5d:b3:
fe:0e:fd:5d:e5:b3:5e:c3:a5:4a:45:27:f6:a7:01:
70:a1:4a:df:bf:bd:11:fc:7b:f2:11:16:be:a5:7a:
60:17:ed:46:9c:77:91:95:5a:f2:03:d0:81:0b:d9:
0d:a2:f8:2f:f1:28:8e:ce:1c:87:e5:3b:54:9e:40:
7a:44:06:bb:fa:f7:8c:d0:83:55:d1:6c:4d:7f:d7:
bb:3d:55:8f:24:d3:69:ce:5d:9c:65:4a:05:2b:f8:
c7:d6:ff:77:97:25:28:10:ad:e8:78:e3:c2:1c:a0:
9b:88:7e:31:cd:b6:8f:3e:5a:44:16:cb:a9:63:f4:
5c:d3:7d:f9:ca:49:d9:de:5b:bc:1a:d2:97:7f:54:
0c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:ED:49:05:A1:06:09:C8:23:1F:0D:D5:15:98:6F:ED:BB:ED:86:29
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c1:aa:27:3a:29:12:2b:69:b1:7d:a7:c9:ef:68:63:56:b8:
9f:96:af:82:05:70:35:c4:19:84:a2:91:67:bd:ed:1f:c6:ec:
a3:ed:2e:79:16:c7:13:69:27:ad:d6:1f:fe:e6:ed:b9:4b:d0:
1f:ce:6c:2d:0c:9c:cf:12:b0:15:8a:fc:b6:0f:3f:d1:d1:fa:
b2:10:95:10:34:99:5d:05:3d:d4:5c:d4:6a:3f:b8:ee:fe:b2:
29:aa:08:8d:21:c3:c7:91:38:39:f5:ea:b4:5e:55:55:a1:f5:
9f:74:12:c9:44:6e:bd:04:40:71:de:0b:83:da:f0:e7:91:74:
5a:e5:65:44:1d:6f:28:93:43:ac:12:d7:87:be:97:e5:a9:36:
58:eb:23:85:dd:a2:bf:3b:e6:13:4b:c8:c2:9d:fa:0c:27:cb:
30:4f:b8:17:50:80:fe:f9:07:73:35:36:8f:9b:7f:4f:22:f3:
06:82:1e:ca:3c:b7:65:3f:2e:fd:0b:da:98:b8:8d:18:51:dc:
31:3f:ee:41:71:26:dc:f2:3d:ce:ae:49:21:d1:aa:3a:a2:cd:
31:13:ad:16:a9:55:a8:a3:e1:fa:74:2c:88:17:fa:b9:3d:90:
7e:d5:3c:27:ad:50:35:21:60:af:32:ba:18:a9:5f:c9:e9:e0:
35:7f:4f:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZg/9CcJyuSHu7ZlXBTBct1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5MzI4OTI1NmUzMzg4Nzc3ZDk1ZTRkNTMxNTY3Y2UzNjcy
YTE0OWEwHhcNMjUwNzI1MDUwMDIyWhcNMjUwNzI2MDUwMDIyWjAzMTEwLwYDVQQD
EyhiY2VkNDkwNWExMDYwOWM4MjMxZjBkZDUxNTk4NmZlZGJiZWQ4NjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ll2ukN3rz1crUJhWeOfgzwhmoJP
/WshZDqN9D8qP/CS7enxbg3JoJQ+51huDw12bYnqCzavDp1BlKIUufKLQXXyWT/X
liaKdLGokIki/kAEa2QOneFZ+Oi6mXMK27Hoq3RwzD+P3RR3Mm43e3CYn8f6G39A
XbP+Dv1d5bNew6VKRSf2pwFwoUrfv70R/HvyERa+pXpgF+1GnHeRlVryA9CBC9kN
ovgv8SiOzhyH5TtUnkB6RAa7+veM0INV0WxNf9e7PVWPJNNpzl2cZUoFK/jH1v93
lyUoEK3oeOPCHKCbiH4xzbaPPlpEFsupY/Rc0335yknZ3lu8GtKXf1QMkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLztSQWhBgnIIx8N1RWYb+277YYpMB8GA1UdIwQY
MBaAFEkyiSVuM4h3fZXk1TFWfONnKhSaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83YWUxMzMtZDBiNi00YjY4LThmNjEt
ZDRkOWEyZTYwZTY0LzEvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni83YWUxMzMtZDBiNi00YjY4LThmNjEtZDRkOWEyZTYwZTY0
LzEvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMsGqJzop
EitpsX2nye9oY1a4n5avggVwNcQZhKKRZ73tH8bso+0ueRbHE2knrdYf/ubtuUvQ
H85sLQyczxKwFYr8tg8/0dH6shCVEDSZXQU91FzUaj+47v6yKaoIjSHDx5E4OfXq
tF5VVaH1n3QSyURuvQRAcd4Lg9rw55F0WuVlRB1vKJNDrBLXh76X5ak2WOsjhd2i
vzvmE0vIwp36DCfLME+4F1CA/vkHczU2j5t/TyLzBoIeyjy3ZT8u/QvamLiNGFHc
MT/uQXEm3PI9zq5JIdGqOqLNMROtFqlVqKPh+nQsiBf6uT2QftU8J61QNSFgrzK6
GKlfyengNX9PQw==
-----END CERTIFICATE-----
Generated at Fri Jul 25 13:01:45 2025 by rpki-client