Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier: AYSfaX+dxF88MJs5/Linc35jIeTpnatrRehsv2Z5tWA=
Subject key identifier: A2:BC:DD:2A:69:AE:9A:57:C1:B1:68:83:4C:AC:EA:C3:51:23:C4:04
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial: 0199239EFCEDBF5D42A4D5BF7E5CC06E403A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 10:00:45 +0000
Manifest this update: Sun 07 Sep 2025 10:00:45 +0000
Manifest next update: Mon 08 Sep 2025 10:00:45 +0000
Files and hashes: 1: 0qO4O1iuPzCMlLlUt1HamKiYOoA.roa (hash: cgE/JK3sVjQnbjv1N0QFg9l7ug/Hstmhscf6qZhJ3xA=)
2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: HxygkR4NhxjVaWNfDLwBznmepH5uIgETlKSRHeRUETw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:fc:ed:bf:5d:42:a4:d5:bf:7e:5c:c0:6e:40:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
Validity
Not Before: Sep 7 10:00:45 2025 GMT
Not After : Sep 8 10:00:45 2025 GMT
Subject: CN=a2bcdd2a69ae9a57c1b168834caceac35123c404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e5:be:55:de:ef:f5:09:43:8b:b4:e8:8d:43:
1c:11:29:7e:80:3c:e4:37:31:b9:c4:98:07:8d:e1:
8a:ea:54:99:4f:e6:27:ed:41:b4:c0:06:ab:1c:8a:
69:b8:f8:f0:72:62:46:ca:58:8f:18:3d:f2:29:73:
89:22:6e:37:fe:af:4d:24:45:bc:4c:5b:08:4e:4d:
bb:b3:14:18:42:83:b3:fd:6c:93:c6:81:f3:20:fe:
13:e2:c8:a5:67:d4:06:a8:4b:72:47:c7:bf:01:3a:
3a:57:9e:36:31:fc:85:35:88:25:ab:45:ab:ef:c0:
d5:64:58:4c:3b:77:8f:b4:5b:51:cf:ed:48:39:8c:
35:88:01:f9:a7:14:3e:7f:fd:46:a5:b3:cc:ee:58:
85:c6:7d:e9:f4:61:ac:1c:57:33:1c:cd:27:c6:2d:
03:e1:fe:4b:cd:c0:db:23:fd:88:03:f4:30:d5:9d:
9e:77:c8:06:71:3a:31:46:39:d7:3c:1b:e5:0a:49:
02:f0:fb:da:a5:66:9c:e8:f7:27:77:0c:82:2a:49:
0b:71:eb:bc:03:7f:98:94:f6:f4:b5:4c:49:c9:d7:
26:47:44:a2:0c:21:bc:c8:b6:ff:85:7c:5b:7c:b4:
69:1d:08:01:80:1b:ea:5a:11:93:13:d3:02:96:bf:
32:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BC:DD:2A:69:AE:9A:57:C1:B1:68:83:4C:AC:EA:C3:51:23:C4:04
X509v3 Authority Key Identifier:
keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:7c:f8:5d:84:0f:d5:a9:ba:54:d6:f1:4e:c7:19:ab:91:91:
6d:c3:42:d7:69:ac:94:08:fe:bb:e4:0e:42:4a:fc:ca:14:a8:
57:4c:3c:7a:a2:39:d4:2a:43:d7:73:22:d6:c9:47:d0:8d:24:
34:56:c9:a0:05:a4:a7:1b:09:26:40:18:a2:b4:22:dc:d3:14:
3b:ef:7f:a1:f6:aa:f5:28:38:a5:6e:be:8c:33:80:a7:5b:7e:
7f:a3:b3:00:90:87:52:eb:16:63:d3:43:fa:b4:5b:59:69:4f:
3a:ec:96:32:90:13:31:1a:4d:c6:4a:89:16:cb:ab:42:25:58:
c9:5a:65:1a:ca:85:91:19:cb:c4:a3:1f:ab:59:91:ff:c3:ae:
8f:d9:c1:73:93:cb:ed:9b:5d:c5:bc:f5:3b:4f:aa:f3:8a:1d:
dd:d1:77:c8:c3:e7:39:b1:6e:50:30:91:ac:74:09:bc:41:a6:
10:15:3b:8b:e8:36:77:02:55:01:a8:ee:9e:5d:59:bb:08:9f:
d1:26:b4:cc:41:7c:fa:74:5e:0c:97:8c:af:25:1e:3f:2c:3d:
22:dc:4b:f2:fa:04:2f:3b:42:04:4f:98:65:fc:49:c2:d9:8d:
6b:3f:29:ef:6d:79:9d:aa:a2:f4:f5:ba:72:da:5b:44:f9:f8:
f1:e2:c4:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:13 2025 by rpki-client