Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: bVwOeTqyEXU5z2w/KtrRlS6fL2yQQWPf0NsdZOQBvGo=
Subject key identifier: B2:FC:5D:65:23:EB:1B:3B:FF:2B:5E:16:94:F3:FC:6B:B4:58:8D:B2
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019A7149E124B68CEC635BE5FCAFAC31732A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 05:00:58 +0000
Manifest this update: Tue 11 Nov 2025 05:00:58 +0000
Manifest next update: Wed 12 Nov 2025 05:00:58 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: dVw92wGq34yGzs8SFXxeD+WQamqvUQpKABg44Q1FiDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:e1:24:b6:8c:ec:63:5b:e5:fc:af:ac:31:73:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Nov 11 05:00:58 2025 GMT
Not After : Nov 12 05:00:58 2025 GMT
Subject: CN=b2fc5d6523eb1b3bff2b5e1694f3fc6bb4588db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e9:5e:7b:a3:3d:59:47:06:24:c4:36:dd:b9:
e4:84:37:11:be:01:a7:3b:89:10:59:88:0b:81:38:
62:aa:c3:73:93:fc:fc:0e:26:99:0f:ef:a8:41:a8:
34:f2:30:1c:5f:72:1e:15:94:33:43:d3:81:53:e4:
d3:d7:ed:81:d0:51:10:28:fb:5c:96:1b:a3:1a:87:
5d:f6:21:9f:13:48:6f:c2:e2:77:4d:0b:29:44:d8:
84:3d:64:d8:82:6b:74:7f:97:1f:ed:08:55:32:08:
27:4b:97:aa:4b:f9:83:8c:7f:82:66:48:b7:67:d6:
d6:ad:6e:79:9b:95:f5:9e:fc:75:d3:b2:fc:7d:17:
6c:48:e6:4b:d2:e1:1b:c4:e5:e6:d9:e9:e6:99:f4:
e4:20:53:a6:ec:57:b4:51:70:e0:1f:9c:8b:a7:c3:
cb:58:0a:a4:b6:e5:fa:2a:40:ba:a8:b7:ae:81:b8:
be:d5:70:86:ca:39:a9:e3:98:25:a0:bf:8f:e9:da:
ea:9d:2a:b3:21:03:41:fa:c7:87:73:41:c3:85:31:
f8:ea:d8:5b:66:8d:99:cb:b3:2e:8e:d2:57:14:95:
51:9a:57:80:10:44:92:e1:5f:5b:db:e0:3f:90:6e:
17:f2:21:ec:6c:16:7b:95:8b:41:08:8b:86:a9:ce:
fc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FC:5D:65:23:EB:1B:3B:FF:2B:5E:16:94:F3:FC:6B:B4:58:8D:B2
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:1f:ce:67:a2:82:68:3b:3d:46:6c:f5:ed:19:e3:e6:33:51:
1c:aa:ad:5d:3a:2d:99:53:24:84:4f:02:06:49:d4:21:56:a4:
9d:9b:dc:ac:ca:28:11:1e:78:9f:f4:f6:1f:b2:35:9c:bd:14:
b7:fc:0c:f4:54:e2:46:51:21:93:eb:d7:e9:f0:3e:6b:06:db:
4e:da:df:9c:ae:5e:d7:7f:61:17:d0:46:23:1f:4e:02:2b:54:
42:19:86:fb:cc:0b:9b:1d:de:e9:91:46:ff:84:6a:2e:b4:29:
f4:af:54:b5:57:5e:e4:f4:93:fd:b1:ba:63:78:98:60:80:9c:
00:7b:da:0c:ea:df:29:2f:92:77:be:2f:c6:d3:25:43:85:b0:
5f:81:85:14:9d:96:db:23:81:21:78:04:61:e3:d0:5d:84:1c:
97:b0:b6:53:5b:c1:5e:17:a1:ca:a8:89:1f:0d:3e:3e:5a:2d:
f2:37:82:85:15:81:b5:72:a2:93:86:43:ce:ad:56:3a:13:57:
e3:14:ae:99:3b:86:a0:50:68:bd:98:77:ec:2d:99:18:90:da:
f8:d0:5e:f9:e5:92:e6:72:ef:29:fc:ab:61:87:54:11:d4:a9:
ed:46:dd:4e:4f:ac:07:3d:e7:ad:1d:34:5b:c8:f6:c5:57:fe:
02:43:90:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:51 2025 by rpki-client