Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json)
Hash identifier: PYbQSS2Kl2FZWCOfEgclqOByvqV5LclzXXET8lNrm8Q=
Subject key identifier: E5:6E:FD:B2:31:33:C4:D1:63:1C:B6:BB:D5:6C:58:E1:26:FB:6B:BC
Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Certificate serial: 019E60BA70AA28AFC35BD80448F3859F79B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
Manifest number: 02C4
Signing time: Mon 25 May 2026 20:01:31 +0000
Manifest this update: Mon 25 May 2026 20:01:31 +0000
Manifest next update: Tue 26 May 2026 20:01:31 +0000
Files and hashes: 1: 9a5ary6iFvpPhI3-VZwXzEYUNS4.roa (hash: bUunzrEWYSDdnUyB7OzOajjtkOR72CIasRBys0Yz5Bg=)
2: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: a0llJpCUi/CwphFrsPLIbpCuHLHyqTrNPwdSnM2z5so=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:60:ba:70:aa:28:af:c3:5b:d8:04:48:f3:85:9f:79:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Validity
Not Before: May 25 20:01:31 2026 GMT
Not After : May 26 20:01:31 2026 GMT
Subject: CN=e56efdb23133c4d1631cb6bbd56c58e126fb6bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:22:6b:ab:42:a3:e5:18:7d:28:d4:6d:4a:
d5:93:81:ac:99:6b:ad:52:f8:a5:56:05:47:29:22:
97:e6:d2:6f:c4:a1:71:3b:55:68:1a:b3:5a:d0:25:
4c:60:83:53:c8:6d:47:d3:df:0a:06:2f:3e:ac:46:
30:53:02:d0:fb:6b:05:98:4a:8c:00:f9:5b:66:e9:
09:c9:2b:71:34:c9:21:08:38:58:0e:e1:69:4a:15:
8d:ca:40:1d:ca:d4:06:2e:ea:11:e5:ab:60:a8:8c:
26:43:77:8a:4e:f5:89:d1:75:08:91:19:ac:8e:6f:
a4:09:ec:28:d3:fb:ef:af:61:d2:3c:bd:53:af:a5:
4b:01:65:53:c9:93:2b:fe:4c:4e:a6:f2:48:fb:7f:
17:99:ad:b0:5a:a5:47:a6:7a:d0:fb:bc:3e:50:de:
6f:2c:30:a1:e0:0e:d3:82:d1:fd:8d:4a:cc:58:52:
7f:b9:f9:10:4e:ea:8d:55:e6:c5:63:fe:63:3b:fc:
0b:b1:ad:eb:50:54:9f:6c:5c:be:29:b2:74:db:e3:
3b:f2:30:c3:99:90:a0:be:d5:46:88:c4:02:90:d6:
42:c3:fb:dc:0c:28:8a:38:61:61:cc:97:0e:61:85:
df:ff:8e:aa:ab:bb:41:08:f8:cf:4b:08:d8:d4:45:
05:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6E:FD:B2:31:33:C4:D1:63:1C:B6:BB:D5:6C:58:E1:26:FB:6B:BC
X509v3 Authority Key Identifier:
keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:ae:11:13:4b:32:6f:17:fb:62:fb:e2:f8:53:39:b9:4f:49:
ea:13:f2:d2:65:4a:d4:b6:6e:96:5f:53:1b:f5:ce:8e:74:c7:
18:8d:99:3b:b2:e6:55:d5:4f:a0:89:18:c0:06:a9:aa:ad:65:
64:da:b8:9e:0c:9e:56:3a:60:59:ea:22:67:72:d1:b3:cc:3a:
12:dd:bc:f6:8e:b0:b7:37:30:b5:7e:17:de:80:55:b6:6c:e0:
e6:44:23:ca:fa:bb:23:68:d5:2a:d9:98:26:8b:3a:d7:07:77:
3b:70:45:37:13:69:2d:45:a8:7d:84:5a:87:44:32:b9:5b:ed:
fd:b2:e9:90:f1:e0:a7:2e:98:a6:59:e7:23:6f:1e:55:0b:0f:
f6:91:e8:7b:0a:8f:5a:ce:60:94:ac:63:ad:13:c5:86:41:16:
4d:7d:69:6e:38:a7:10:f5:5c:d2:4f:12:1b:30:36:45:2d:88:
03:4e:b2:f3:1b:3d:e9:bf:0c:13:fd:9b:5f:2f:b4:00:35:71:
b0:af:55:35:a2:c5:e3:45:f2:1a:38:89:0f:0d:a3:81:13:5e:
bb:f5:49:1f:60:ac:52:96:39:a5:fd:ea:68:06:11:da:1c:8b:
11:bf:83:ed:f7:63:43:67:17:d9:27:b6:2e:30:87:b8:e2:9b:
61:c7:e7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 25 23:47:51 2026 by rpki-client