Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier: fakC4C118VS8Qt4uZZP0mBbHwHGcTOf8v+V0j+cZPfQ=
Subject key identifier: C2:57:A8:F5:8C:7C:44:DB:A1:71:37:BF:63:D1:6D:92:68:52:0F:D1
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial: 019A2C32FC454CF25C4A82A4355F7CA978C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number: 16FB
Signing time: Tue 28 Oct 2025 19:02:09 +0000
Manifest this update: Tue 28 Oct 2025 19:02:09 +0000
Manifest next update: Wed 29 Oct 2025 19:02:09 +0000
Files and hashes: 1: 0qO4O1iuPzCMlLlUt1HamKiYOoA.roa (hash: cgE/JK3sVjQnbjv1N0QFg9l7ug/Hstmhscf6qZhJ3xA=)
2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: RoU/9TJ8HrgYP8jTnjKl0gdSC0VcFWkU1KyHbg1G3lI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:32:fc:45:4c:f2:5c:4a:82:a4:35:5f:7c:a9:78:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
Validity
Not Before: Oct 28 19:02:09 2025 GMT
Not After : Oct 29 19:02:09 2025 GMT
Subject: CN=c257a8f58c7c44dba17137bf63d16d9268520fd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e2:35:cd:8d:c8:f4:9f:2b:b1:c8:59:e9:d7:
d1:f2:39:de:ee:37:89:12:cb:ad:18:e9:74:b3:4a:
bf:a9:be:82:99:eb:27:2b:48:aa:eb:00:b7:a4:f7:
2c:06:30:39:d4:ad:81:da:c7:a8:4d:ae:0a:b3:ee:
55:ce:67:26:8a:98:59:66:3e:db:b9:eb:62:00:ec:
97:ea:d9:ee:57:ca:7b:4a:cc:a3:af:d0:3c:3a:b2:
b7:fa:06:89:d2:9c:fb:65:69:ff:ed:f8:1c:e2:49:
11:03:fc:1a:51:cb:96:cb:20:ec:02:e7:0a:3e:8a:
50:a3:55:59:67:19:0e:b6:04:1e:f9:c1:be:72:4f:
8f:23:ba:77:de:1f:2e:be:86:fe:a9:20:bb:bd:76:
a6:cb:66:ee:70:60:98:4c:1c:8a:02:cc:3d:e4:7b:
8b:a1:f1:63:08:e0:5b:18:6a:eb:9b:8b:ec:9e:df:
b2:47:3c:ee:c9:24:d6:1a:b8:01:3c:88:27:27:90:
5b:ef:b0:9e:d3:d0:73:63:84:5f:1d:3e:90:39:41:
82:9b:78:39:d4:a7:a0:43:7c:b1:a9:0a:4b:3d:0a:
2e:3d:fe:d7:e3:9b:10:2e:42:5d:26:2d:bf:e8:91:
ee:d3:69:7e:3b:e7:48:64:b4:87:76:3c:be:56:cb:
f4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:57:A8:F5:8C:7C:44:DB:A1:71:37:BF:63:D1:6D:92:68:52:0F:D1
X509v3 Authority Key Identifier:
keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:5a:76:e7:5b:f1:0f:c8:de:35:20:05:8c:7f:15:03:82:3b:
04:6a:c2:09:b6:9d:38:b1:41:61:d4:6c:f6:be:50:76:72:ee:
e8:0d:30:e6:28:b8:ca:fa:1f:e7:3f:00:3b:12:63:30:22:07:
52:08:40:6d:19:f4:6b:08:9d:19:81:ba:f9:37:5e:91:2a:88:
39:65:d1:41:ef:84:7d:8d:cb:7f:29:c1:fc:00:59:72:6d:28:
a1:e9:1b:1f:8e:d1:6b:ae:9d:f4:f1:97:8a:86:32:da:85:af:
a5:8f:0b:f2:fb:f4:ab:54:08:64:62:c9:0b:71:95:04:ca:f0:
f2:42:0f:35:35:3b:34:d8:ec:34:b0:77:4c:28:7c:c5:e4:2a:
45:4b:61:6f:82:2b:da:14:b9:d9:10:9a:f0:fd:84:5e:d0:40:
dc:42:1f:43:41:5d:87:9e:99:e8:bf:a9:e0:cc:e5:8e:d1:12:
af:ce:a8:59:11:53:81:7f:80:3a:8a:58:26:02:85:e8:6a:74:
85:a1:b7:53:25:d9:4a:9d:2e:fb:73:71:4f:2c:52:c4:8c:18:
89:66:8f:6a:d6:2c:fc:ab:6c:f3:f4:80:b8:2e:ca:7f:84:60:
3e:3c:bd:2e:d9:be:71:39:e9:44:6a:19:0b:2c:d1:0b:c9:25:
c4:23:50:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 21:10:39 2025 by rpki-client