Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: Hzukr2xHF8CK9JyCE1WE6JyjbpxwrhmMgWTt4cOfe/4=
Subject key identifier: F9:A5:DE:C3:87:33:AA:E2:3E:D9:9A:4B:54:6E:E8:86:51:74:5D:B8
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019923315A726E49332D1084253AB09DF7E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 08:01:00 +0000
Manifest this update: Sun 07 Sep 2025 08:01:00 +0000
Manifest next update: Mon 08 Sep 2025 08:01:00 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: KVegfCI55ulnat0UnuGS2Juyf2jarnsEEYUTFP5QSi0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:5a:72:6e:49:33:2d:10:84:25:3a:b0:9d:f7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Sep 7 08:01:00 2025 GMT
Not After : Sep 8 08:01:00 2025 GMT
Subject: CN=f9a5dec38733aae23ed99a4b546ee88651745db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:71:4d:4c:01:d8:48:e6:e7:95:37:8c:22:7b:
1c:27:cc:8f:4b:ef:48:b1:4e:e8:42:f6:0c:8c:c7:
2a:b2:24:5d:d8:b3:10:69:b5:75:3c:f4:ab:96:fb:
19:d0:bd:36:db:67:0c:2f:07:2d:01:e5:dc:50:8d:
9a:79:5e:da:f3:14:a8:4a:d4:39:ad:bc:ec:7e:f6:
62:e8:58:47:4f:cf:8a:b4:b0:51:96:f4:2d:28:97:
e6:d5:c3:c4:53:d8:e7:c6:da:77:d9:34:3f:7a:3e:
49:63:e4:3a:94:49:1b:1d:08:c1:8d:b3:f8:ea:91:
8c:4a:b6:fb:7c:d8:77:02:a2:bf:4f:b7:38:9f:b2:
bf:c2:30:dd:5b:51:06:c1:ed:6e:29:8e:c1:b0:99:
9b:be:6a:80:d8:1b:23:42:89:cd:bd:6f:d9:c9:a7:
4b:ad:75:c3:fd:ad:b9:ea:1c:20:7a:97:66:49:87:
db:5d:09:64:d3:f6:fb:d6:23:c3:4d:2e:3d:02:1c:
55:f4:5d:7c:95:3f:37:54:05:46:3a:bc:47:ad:e2:
b5:69:7d:49:1c:6c:65:64:2a:d3:8e:8e:98:8b:2a:
d5:2c:64:43:ef:e5:5a:e9:05:92:87:21:7d:72:fb:
7f:09:de:ed:62:a3:38:d2:d4:92:99:e4:be:76:06:
23:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A5:DE:C3:87:33:AA:E2:3E:D9:9A:4B:54:6E:E8:86:51:74:5D:B8
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:0e:c3:eb:87:51:58:0c:32:e2:5a:08:94:d8:ac:0d:d7:1c:
31:43:d5:c6:8d:be:11:f6:f0:c0:d3:04:7d:55:c9:ff:42:c8:
ac:9d:67:2b:37:6d:7a:07:ee:1f:9c:56:d0:15:38:1f:77:d1:
e4:5d:43:cb:f6:da:c2:b3:12:dd:28:a6:3a:53:46:a3:83:37:
7d:0a:83:5a:4a:8e:50:fd:19:87:77:2b:9e:59:38:e2:f6:9f:
ef:9c:95:7c:0f:c1:5b:b1:b1:90:51:3f:6d:b3:1d:e5:ef:e1:
fe:6e:ed:17:12:ec:ae:49:2a:3f:22:f1:93:27:ce:0a:a3:ab:
6c:6f:70:e6:56:48:f2:4e:4b:c0:a2:78:03:2a:7b:4c:54:a3:
80:0b:e6:f3:10:62:2c:b3:26:94:1b:ef:41:5f:ed:1e:af:51:
5f:08:29:73:85:cb:56:4c:c4:e9:d7:9b:38:8a:00:d3:38:75:
1d:ad:5c:5e:42:78:81:d8:f4:d9:cb:0a:a7:b4:de:46:30:42:
1a:06:5f:8b:57:5e:d1:3b:bd:f9:ef:9e:c2:f6:29:11:eb:24:
62:88:bb:e5:47:10:e9:f8:84:3a:21:95:f8:8c:2e:51:8b:78:
65:fc:08:82:8f:95:55:2f:91:26:1b:23:3e:42:1d:cc:01:7d:
6e:8e:33:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:13 2025 by rpki-client