Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json)
Hash identifier: eoi0W7ndkaySPljLtNfPNtpzm2YxhAXs95Hj3zPSZZ4=
Subject key identifier: 52:84:05:EB:77:A7:96:C1:21:25:93:99:A9:FB:25:BD:DB:D8:71:6D
Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Certificate serial: 019D3940DFEADF93057025CC234C7A9808A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
Manifest number: 022B
Signing time: Sun 29 Mar 2026 11:00:46 +0000
Manifest this update: Sun 29 Mar 2026 11:00:46 +0000
Manifest next update: Mon 30 Mar 2026 11:00:46 +0000
Files and hashes: 1: 9a5ary6iFvpPhI3-VZwXzEYUNS4.roa (hash: bUunzrEWYSDdnUyB7OzOajjtkOR72CIasRBys0Yz5Bg=)
2: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: Kg8H6HeRP7m/cdbZrJO4LOWjMveYiuGbe+tR3w7dhXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:df:ea:df:93:05:70:25:cc:23:4c:7a:98:08:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Validity
Not Before: Mar 29 11:00:46 2026 GMT
Not After : Mar 30 11:00:46 2026 GMT
Subject: CN=528405eb77a796c121259399a9fb25bddbd8716d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:71:0d:b4:d7:e8:ce:32:30:c9:8e:bd:9e:49:
8e:55:f0:1f:f7:cd:76:13:84:e3:6f:f6:91:96:85:
2a:a6:89:89:bd:71:3e:49:e4:ec:f5:91:87:5c:ea:
d1:36:96:23:c3:a3:57:3f:47:03:65:4a:75:c6:78:
ea:51:3e:26:f9:1f:51:4c:86:ee:84:da:c4:6f:63:
2a:b6:e2:79:24:5d:0a:78:21:f8:53:22:b3:aa:61:
c0:9c:4f:93:5c:84:b8:f4:d6:b6:4f:25:89:d2:77:
63:81:3b:0b:55:51:c4:0e:b2:ed:99:3e:6e:f0:3c:
d4:e7:a7:78:7e:66:e2:00:ba:29:5d:74:60:30:f8:
ad:e1:7e:88:b7:64:21:61:84:b6:7e:1f:09:12:d4:
08:72:a7:88:07:96:f2:67:8f:53:3a:6c:96:24:85:
df:7f:66:70:d6:3b:d4:df:03:ad:5b:8b:8d:a1:1a:
a4:c4:79:be:ae:07:6c:b1:29:7c:db:97:07:c6:99:
86:05:e7:5c:67:fb:33:06:05:18:54:f6:8d:42:cd:
d6:dc:d7:8a:e0:a1:b8:70:86:76:4e:23:44:51:cd:
bd:11:74:92:a7:87:58:18:4c:a1:5c:63:dd:b8:04:
03:ee:ca:d1:02:ca:51:8e:71:1f:93:1c:1c:90:aa:
b9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:84:05:EB:77:A7:96:C1:21:25:93:99:A9:FB:25:BD:DB:D8:71:6D
X509v3 Authority Key Identifier:
keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:52:2c:7c:80:b7:eb:ee:c4:0c:4e:88:f6:3f:61:4e:7e:ad:
c3:5b:36:ec:17:00:68:17:42:a4:68:aa:a3:a1:61:cc:a6:c6:
e1:da:9d:ac:be:0d:58:d7:d3:fe:d5:e2:ab:86:09:8d:69:05:
0d:54:dc:92:9d:21:c5:48:06:85:64:dd:58:6b:2a:ce:9a:06:
09:4e:71:e5:1b:de:7c:33:01:fa:04:31:a8:aa:ea:07:40:8f:
b4:f9:f4:f4:f7:0f:15:cc:16:1f:e3:5b:dd:ac:59:cc:67:9c:
23:ed:27:bd:f5:a7:ae:2b:96:e0:ac:c5:09:82:9c:60:5a:94:
6e:f6:6e:0b:6b:9f:aa:2d:73:fd:54:50:56:3c:82:60:66:16:
99:5c:30:bc:25:3b:8a:12:36:6a:fb:e3:0c:e2:6f:c9:54:8f:
61:95:d7:d1:c4:4e:51:55:59:e1:55:aa:4e:76:68:97:e8:ea:
04:6c:ff:78:ef:4b:5e:3f:05:cb:f3:e2:f7:2f:23:72:c3:82:
01:6d:8a:e7:13:eb:e1:be:7d:c6:14:1e:a0:c7:fb:07:93:7c:
e5:ec:84:a5:db:98:2c:08:93:bc:03:6b:d9:77:4f:7c:85:94:
22:e0:92:f2:89:ac:8c:57:0d:d9:c8:b8:0d:d5:61:56:8c:46:
cc:48:93:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:33 2026 by rpki-client