Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json)
Hash identifier: 3InPtd01Tk1lzhos0GHpAigRdHv1pCiM7YUlRO1C2V4=
Subject key identifier: D3:AB:B6:0A:3E:15:0C:12:B0:AE:64:B7:CF:CB:E3:9A:F0:7F:0B:7C
Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Certificate serial: 019A28F952BF9C0D35A964C4F6584538662D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
Manifest number: 94
Signing time: Tue 28 Oct 2025 04:00:19 +0000
Manifest this update: Tue 28 Oct 2025 04:00:19 +0000
Manifest next update: Wed 29 Oct 2025 04:00:19 +0000
Files and hashes: 1: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: MDPuym/w1keNbmzTj8tE/xx8j7Fx8tFUtYtk6h/es7s=)
2: u0k0ZcdUu0HWts_QzMnRtt7idjE.roa (hash: gQ41j+zd/N93xs0pAJ6I2F+Zc4DvWJ1HscP8bcl0MW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:f9:52:bf:9c:0d:35:a9:64:c4:f6:58:45:38:66:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Validity
Not Before: Oct 28 04:00:19 2025 GMT
Not After : Oct 29 04:00:19 2025 GMT
Subject: CN=d3abb60a3e150c12b0ae64b7cfcbe39af07f0b7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:39:08:33:cf:45:1c:aa:9c:83:e9:db:ef:
59:7b:a3:56:77:95:52:74:39:7b:d3:01:6d:91:87:
07:4f:69:80:76:b3:b6:ae:a1:83:3d:8d:a3:01:11:
fc:f3:d6:88:17:8e:32:f4:4e:bb:03:dc:28:39:77:
67:ae:9f:37:a4:4f:39:44:80:59:46:8e:33:49:43:
f1:05:ec:21:1f:71:78:4c:c5:8b:55:c0:1a:ef:18:
ab:7a:99:b9:1b:bf:91:8a:9e:2a:e6:fa:52:9e:57:
c6:26:83:68:57:25:92:5e:66:4d:7c:17:86:b4:be:
ee:d2:29:05:26:05:86:cd:ba:1e:07:bb:b6:6c:a2:
2b:78:0e:81:69:98:38:ff:85:c0:15:65:96:26:56:
73:da:26:0d:7d:39:2f:5c:c3:fb:70:72:06:ef:eb:
af:ea:15:e9:b9:da:c6:63:ca:2e:19:aa:ea:69:fa:
24:30:67:42:70:da:56:fa:51:29:d1:f5:54:bd:b4:
9b:44:e9:24:62:92:4f:e5:dd:a3:ae:fa:9e:1a:a7:
e5:e7:84:01:41:71:a1:ae:2f:af:bc:83:8d:d5:8e:
7c:81:0b:d4:bd:cc:5c:1d:78:14:aa:9c:c8:1d:4f:
e5:ea:06:db:0c:f6:ac:f6:9b:88:da:82:eb:92:a1:
b8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AB:B6:0A:3E:15:0C:12:B0:AE:64:B7:CF:CB:E3:9A:F0:7F:0B:7C
X509v3 Authority Key Identifier:
keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:51:04:b3:6e:74:8a:7a:7b:2c:ea:07:3a:6e:8c:c2:82:bc:
f2:4e:94:f2:7e:18:1b:30:6a:93:1a:fc:d5:42:c5:b7:be:f6:
e3:5f:14:80:40:50:ca:c7:79:32:65:b6:8b:ad:ef:9b:f4:80:
53:10:83:48:97:30:de:2b:ea:6b:d3:d3:a9:5c:a1:ac:72:81:
52:2b:7b:69:d7:4b:18:9c:0d:7d:d6:66:8d:65:f6:07:8c:97:
2d:60:0c:22:3f:e5:ff:14:fe:f6:d0:d7:5d:19:70:bb:dc:84:
30:88:35:d8:07:64:c2:5e:92:06:aa:e1:e2:b3:d8:ec:9b:30:
4e:9f:0b:63:98:90:61:1c:a9:84:da:00:6a:e6:3d:06:b7:5d:
bc:97:b7:28:9a:a5:13:68:2e:99:fe:cd:26:3b:af:16:d6:6c:
04:4d:4f:11:7a:69:42:ab:2f:49:81:4f:e0:05:da:af:f3:52:
cb:c6:53:c9:56:da:cb:fe:3e:8a:d9:ce:93:7c:78:c7:27:8e:
96:5a:1c:46:d6:02:5b:fa:b3:cd:e9:df:4e:2e:2c:b5:40:e1:
f9:1e:9c:3b:97:da:a8:29:73:52:83:8d:69:e8:b0:69:ed:a4:
f6:33:72:e5:9e:b0:5d:07:e2:48:34:1a:4f:59:94:f2:bd:1f:
6b:5d:22:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:25:50 2025 by rpki-client