Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json)
Hash identifier: TE1EP20d1qK+QAUud00hV3I3ErvwCQcpbmFONu7nQkw=
Subject key identifier: 27:72:DA:A3:1E:C9:43:1E:A9:9A:D6:40:24:04:2B:DC:1E:41:50:23
Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Certificate serial: 01992444403EB67325CF373AAF910ED49C69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
Manifest number: 0D
Signing time: Sun 07 Sep 2025 13:01:16 +0000
Manifest this update: Sun 07 Sep 2025 13:01:16 +0000
Manifest next update: Mon 08 Sep 2025 13:01:16 +0000
Files and hashes: 1: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: 8qrlQ9djYK2RJlXVpbhiX0l95+TE6ENcrDPSWKMfzA4=)
2: u0k0ZcdUu0HWts_QzMnRtt7idjE.roa (hash: gQ41j+zd/N93xs0pAJ6I2F+Zc4DvWJ1HscP8bcl0MW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:44:40:3e:b6:73:25:cf:37:3a:af:91:0e:d4:9c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Validity
Not Before: Sep 7 13:01:16 2025 GMT
Not After : Sep 8 13:01:16 2025 GMT
Subject: CN=2772daa31ec9431ea99ad64024042bdc1e415023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:2b:9b:7b:bc:75:dd:32:94:e4:fc:b8:81:
48:b6:19:7e:70:fd:49:19:51:08:a1:28:99:f9:b8:
ac:6c:60:bb:fa:cc:e7:5b:d1:1c:ab:80:d7:2a:55:
c7:c7:27:e4:d0:ff:4e:fa:d6:dd:cb:28:33:70:b8:
5e:d7:64:86:94:61:93:72:71:11:5a:9f:c6:bc:98:
e0:e5:ad:ea:0d:8d:21:f6:0e:f4:14:d0:7e:65:fe:
f4:c4:5d:c6:d6:1b:5a:f9:81:57:94:59:fe:d4:cd:
2b:40:14:38:3a:cd:d5:a5:49:93:55:f7:cd:f7:1b:
a0:4e:c8:1b:d6:60:77:e4:f7:c8:36:a5:d6:7c:1e:
fc:08:e7:ac:f0:2b:da:b2:dc:a5:eb:af:50:a5:9e:
77:3b:4c:a5:78:21:b9:65:b1:a1:90:76:a6:d1:89:
1a:cf:6b:9c:0e:e6:8a:44:c5:1c:9d:e1:6c:31:29:
9b:ba:ec:52:bd:d6:8a:02:2f:dd:23:28:cb:bf:67:
10:be:f2:4b:cf:69:c8:09:91:2e:e0:46:df:9f:38:
52:f6:52:36:d4:fc:c9:13:d3:f5:62:80:b6:f7:1a:
f9:1c:7e:32:52:19:71:e3:24:5c:1e:69:02:b2:45:
24:17:e5:8e:84:37:e1:a5:42:66:40:bf:dc:cd:c2:
4f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:72:DA:A3:1E:C9:43:1E:A9:9A:D6:40:24:04:2B:DC:1E:41:50:23
X509v3 Authority Key Identifier:
keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:bd:12:c8:81:aa:07:a3:da:58:22:66:65:41:52:01:84:75:
e1:46:ee:68:ce:86:51:f9:76:5e:5d:60:6e:43:00:c0:91:cd:
a7:f6:b2:f9:be:30:38:21:be:b9:33:e3:4f:f9:90:be:4e:fe:
ca:42:9b:c8:a0:df:da:cc:af:0e:9f:5e:01:aa:4d:02:c2:3d:
b6:f3:86:23:6f:ca:0f:b2:3e:eb:5c:7d:f6:d4:59:de:f3:52:
79:82:ab:f1:10:5d:df:79:4d:20:9a:24:1d:7e:64:b0:52:6d:
8a:6c:57:4c:bf:58:d1:86:9a:56:c6:03:26:56:2c:6f:fc:e5:
70:1f:7d:71:10:b8:dc:94:ce:45:10:46:0f:81:fd:f1:ae:27:
82:c5:5c:4e:49:69:ee:e0:bf:5c:96:4d:15:b3:3e:56:fe:be:
9c:22:c6:a3:37:6a:78:ba:ad:c4:6d:11:7e:a1:86:75:b2:7e:
bb:c4:75:cd:b6:e7:6f:fa:81:c3:63:8c:76:f4:55:72:75:ba:
72:8f:bf:fa:bf:35:01:99:14:89:6a:56:10:21:da:59:ff:be:
0d:bc:b3:60:c6:1a:68:2f:a5:a9:1b:49:c7:e5:0a:e1:22:9f:
38:53:1d:05:85:96:0a:ea:89:1d:78:dd:27:a9:f2:c9:c0:f3:
1a:86:35:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkREA+tnMlzzc6r5EO1JxpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDJjMTFhZmYwNzJiZWMzN2E1ODI2MjExNGUxYzA2YmVk
YjQ5NDIwHhcNMjUwOTA3MTMwMTE2WhcNMjUwOTA4MTMwMTE2WjAzMTEwLwYDVQQD
EygyNzcyZGFhMzFlYzk0MzFlYTk5YWQ2NDAyNDA0MmJkYzFlNDE1MDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QIrm3u8dd0ylOT8uIFIthl+cP1J
GVEIoSiZ+bisbGC7+sznW9Ecq4DXKlXHxyfk0P9O+tbdyygzcLhe12SGlGGTcnER
Wp/GvJjg5a3qDY0h9g70FNB+Zf70xF3G1hta+YFXlFn+1M0rQBQ4Os3VpUmTVffN
9xugTsgb1mB35PfINqXWfB78COes8Cvastyl669QpZ53O0yleCG5ZbGhkHam0Yka
z2ucDuaKRMUcneFsMSmbuuxSvdaKAi/dIyjLv2cQvvJLz2nICZEu4EbfnzhS9lI2
1PzJE9P1YoC29xr5HH4yUhlx4yRcHmkCskUkF+WOhDfhpUJmQL/czcJPNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCdy2qMeyUMeqZrWQCQEK9weQVAjMB8GA1UdIwQY
MBaAFLLSwRr/ByvsN6WCYhFOHAa+20lCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTct
YzViYWVhM2YxNzI5LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTctYzViYWVhM2YxNzI5
LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEb0SyIGq
B6PaWCJmZUFSAYR14UbuaM6GUfl2Xl1gbkMAwJHNp/ay+b4wOCG+uTPjT/mQvk7+
ykKbyKDf2syvDp9eAapNAsI9tvOGI2/KD7I+61x99tRZ3vNSeYKr8RBd33lNIJok
HX5ksFJtimxXTL9Y0YaaVsYDJlYsb/zlcB99cRC43JTORRBGD4H98a4ngsVcTklp
7uC/XJZNFbM+Vv6+nCLGozdqeLqtxG0RfqGGdbJ+u8R1zbbnb/qBw2OMdvRVcnW6
co+/+r81AZkUiWpWECHaWf++DbyzYMYaaC+lqRtJx+UK4SKfOFMdBYWWCuqJHXjd
J6nyycDzGoY1GQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:47:47 2025 by rpki-client