Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: mXk5buNZB/yb4w4zI4mqhb/EBVDadGF75OSlGcA7ME4=
Subject key identifier: A8:F2:3A:BF:C0:35:95:F7:C1:A8:F9:2A:92:D8:01:8A:98:85:A7:89
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 019F0EF6338D14E9547C00064A2CA6CB34E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 1912
Signing time: Sun 28 Jun 2026 16:00:43 +0000
Manifest this update: Sun 28 Jun 2026 16:00:43 +0000
Manifest next update: Mon 29 Jun 2026 16:00:43 +0000
Files and hashes: 1: 4eGQ-UBGNs_4XAP1phxy5eDsOEU.roa (hash: NGm7oj0oNNHffCOXmAY3fJHH7vgq8EjhCAsgIYkz9sk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: svLa1pBGMw9LcmrRC4fYg1IMrC3ecx6sbVz1Mf2K0eI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 12:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0e:f6:33:8d:14:e9:54:7c:00:06:4a:2c:a6:cb:34:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Jun 28 16:00:43 2026 GMT
Not After : Jun 29 16:00:43 2026 GMT
Subject: CN=a8f23abfc03595f7c1a8f92a92d8018a9885a789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:be:e0:6e:66:e8:60:77:bb:24:3d:89:69:4c:
73:78:62:f1:62:b9:09:50:80:67:06:38:4e:d2:ad:
e6:57:07:66:5a:25:57:24:24:5e:08:89:7a:35:09:
2c:c0:26:da:d6:c0:4c:59:b0:99:52:b9:44:90:5b:
7b:eb:37:a5:48:9d:11:59:54:7e:b8:1d:d3:05:f5:
10:a7:c9:84:46:f0:99:ca:3a:cc:6c:3f:06:f6:f6:
be:c5:92:c1:09:94:80:7d:3c:fe:e6:97:e3:35:ed:
6d:54:98:b1:e8:d6:1b:33:c4:fd:8b:d4:a5:bc:34:
cf:30:52:ae:99:f2:36:41:2e:67:47:e4:7b:48:22:
e1:5e:7f:55:89:21:64:ed:98:64:44:c3:72:c2:3b:
60:65:68:bd:e5:c5:88:a3:73:67:11:77:45:34:09:
a3:97:d3:b3:53:ba:ac:69:54:fa:79:af:73:a9:81:
96:8c:f0:9b:a7:f9:3d:8c:ae:07:68:b8:fc:5f:ba:
15:47:94:a4:fc:57:12:4f:d8:ab:05:c8:98:07:b4:
3a:35:9c:29:43:4b:ba:02:c8:34:64:e4:ab:fc:b7:
09:08:65:c7:3f:af:a6:d6:93:80:5e:75:5d:75:ed:
06:df:76:33:d9:1f:1f:e5:e3:97:45:b0:29:f9:d9:
73:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F2:3A:BF:C0:35:95:F7:C1:A8:F9:2A:92:D8:01:8A:98:85:A7:89
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:77:33:48:13:ff:9e:70:1a:bb:d9:5c:d6:2a:71:d0:07:1c:
c7:33:ec:65:f7:5d:5f:7f:d4:ba:44:65:90:83:da:9a:b6:73:
ab:52:d5:db:3b:fd:18:d5:cd:56:48:86:6e:97:07:b1:1f:d7:
10:e7:1f:2d:52:af:5f:8d:84:ae:03:5b:77:6b:dc:1d:8a:21:
cc:50:bd:2d:96:4e:3e:5a:4b:12:ea:c3:bc:c2:22:d0:0c:eb:
b3:84:ce:62:60:d3:4b:41:74:b6:21:9b:ca:6c:4c:98:89:57:
49:9e:cd:7b:38:48:8b:f5:79:9d:1a:a1:83:06:33:0b:a3:74:
cf:58:4d:54:37:fa:6f:d1:94:8a:2e:07:d1:df:e7:19:aa:64:
04:af:00:88:07:fa:ad:b4:d7:5e:f8:51:c7:bd:d8:f3:7e:63:
b4:60:cd:f9:f4:11:fa:d3:4c:a7:6d:c1:48:fa:da:1d:78:85:
c4:d9:d9:06:08:da:05:e0:33:67:70:8c:ee:db:38:b0:5d:49:
9f:91:77:f9:b7:be:e9:25:5b:87:c7:33:1d:ea:2e:ae:40:29:
40:26:6f:00:2a:53:25:dd:9c:88:9b:25:7e:18:fe:8f:be:b1:
f4:52:58:b3:53:00:b2:25:fa:a2:92:82:04:14:47:01:5f:7c:
8f:43:ae:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 19:55:10 2026 by rpki-client