Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: UopjaqPQjprfgJ/kvbCgXzaPDDpOtbkCzvn/CVx0ppk=
Subject key identifier: 9B:3C:17:C1:95:DD:8C:3F:D5:E4:B2:DC:AF:E8:79:24:4A:1D:E0:0F
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 019A706E551C83F0BBADA7591F6BBE43C8B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 16EA
Signing time: Tue 11 Nov 2025 01:01:10 +0000
Manifest this update: Tue 11 Nov 2025 01:01:10 +0000
Manifest next update: Wed 12 Nov 2025 01:01:10 +0000
Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: CajcTzjdZlrYVGHuWliRsaB09PSTUBV8WTeb4ItP/2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:55:1c:83:f0:bb:ad:a7:59:1f:6b:be:43:c8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Nov 11 01:01:10 2025 GMT
Not After : Nov 12 01:01:10 2025 GMT
Subject: CN=9b3c17c195dd8c3fd5e4b2dcafe879244a1de00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:40:d4:b8:0b:ae:03:e7:b2:04:f9:d5:98:f4:
90:08:52:7a:3d:34:01:4a:d7:94:e2:82:b7:bc:7c:
fe:da:53:c3:1b:a9:96:3a:0c:cf:69:2f:69:1d:ad:
e3:e4:d9:9c:86:67:ee:ce:54:88:c2:51:ea:56:bc:
01:0b:94:c3:e3:0d:6b:53:af:36:24:1e:09:83:b3:
5e:c3:30:1b:34:3c:8f:30:3c:e0:9a:cc:35:79:57:
3c:d2:70:e7:ac:c1:bf:1c:3c:cd:1e:18:cd:6c:24:
b4:95:45:e1:53:d4:66:98:ea:07:cb:b2:1c:14:9c:
ee:0d:b9:0b:03:f3:22:1e:e5:b7:25:6a:ae:07:ba:
a1:18:9f:75:98:e5:ea:17:e5:c6:0c:62:29:db:ea:
a7:b3:df:66:33:95:ec:bb:3b:09:1e:b5:f6:71:41:
b5:f1:1f:d8:f3:d5:da:b0:5d:a9:b5:26:1c:0d:37:
21:28:fb:8d:43:5e:b7:ad:5b:89:67:d9:fb:48:8b:
48:36:09:2e:e1:df:af:fb:68:ac:ca:48:96:57:68:
6f:ea:c3:a0:53:b6:41:0c:fe:bc:3f:87:41:33:35:
be:08:21:f3:a8:d4:84:9b:d2:ff:28:27:e3:bd:b9:
ff:8c:d4:89:23:0c:ea:c6:45:d7:78:49:1f:90:ec:
d0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:3C:17:C1:95:DD:8C:3F:D5:E4:B2:DC:AF:E8:79:24:4A:1D:E0:0F
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:54:c4:ec:a3:39:1d:9a:e4:df:58:72:f6:3f:b2:89:96:6f:
9b:da:e3:99:66:ef:25:80:68:09:a1:d8:b3:b3:77:e1:93:44:
1b:c7:20:5a:6b:78:be:d3:ed:cc:99:7f:d2:03:e1:da:f2:34:
41:69:ac:44:6b:94:7c:0d:fc:b1:01:ea:77:c6:38:58:7f:d8:
e1:ee:3b:36:e9:49:1b:40:da:e4:84:a3:4f:56:7c:d3:3e:b7:
8d:96:91:1d:56:23:70:0d:0c:57:15:6a:b5:51:90:1a:ee:fd:
0c:37:4d:76:2e:e1:ca:f4:cd:f3:14:0a:14:49:7a:cb:2c:14:
e6:5f:75:e7:b1:1a:a8:fb:34:25:38:9c:de:f0:c1:f0:27:46:
ae:b9:61:a1:42:9b:9f:ed:19:06:74:8d:f2:71:ad:50:2b:a6:
3b:83:4b:c0:f1:65:4d:d4:2e:24:38:43:f6:d4:7c:68:e2:06:
c9:98:5f:6c:f6:ed:be:23:03:43:1f:bf:b3:9d:ed:ec:f1:2f:
90:f4:14:5e:df:d2:cb:f2:9c:cf:73:53:a9:23:d2:5a:7b:07:
7f:8f:91:78:13:4e:a7:0c:31:cf:46:e7:56:9c:9e:2b:ce:90:
d1:d9:5b:79:eb:34:b5:42:e0:93:f4:d8:35:a5:88:23:47:7d:
fb:99:3e:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwblUcg/C7radZH2u+Q8i2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZGIyYmZjZjU5ZDk5Y2E3MDgzMzcwOGZkMzAwMzJmMjNm
ZWY0ODUwHhcNMjUxMTExMDEwMTEwWhcNMjUxMTEyMDEwMTEwWjAzMTEwLwYDVQQD
Eyg5YjNjMTdjMTk1ZGQ4YzNmZDVlNGIyZGNhZmU4NzkyNDRhMWRlMDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUDUuAuuA+eyBPnVmPSQCFJ6PTQB
SteU4oK3vHz+2lPDG6mWOgzPaS9pHa3j5NmchmfuzlSIwlHqVrwBC5TD4w1rU682
JB4Jg7NewzAbNDyPMDzgmsw1eVc80nDnrMG/HDzNHhjNbCS0lUXhU9RmmOoHy7Ic
FJzuDbkLA/MiHuW3JWquB7qhGJ91mOXqF+XGDGIp2+qns99mM5XsuzsJHrX2cUG1
8R/Y89XasF2ptSYcDTchKPuNQ163rVuJZ9n7SItINgku4d+v+2isykiWV2hv6sOg
U7ZBDP68P4dBMzW+CCHzqNSEm9L/KCfjvbn/jNSJIwzqxkXXeEkfkOzQvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJs8F8GV3Yw/1eSy3K/oeSRKHeAPMB8GA1UdIwQY
MBaAFLLbK/z1nZnKcIM3CP0wAy8j/vSFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzkt
NzM0OTk0YzUyYzFmLzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzktNzM0OTk0YzUyYzFm
LzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp1TE7KM5
HZrk31hy9j+yiZZvm9rjmWbvJYBoCaHYs7N34ZNEG8cgWmt4vtPtzJl/0gPh2vI0
QWmsRGuUfA38sQHqd8Y4WH/Y4e47NulJG0Da5ISjT1Z80z63jZaRHVYjcA0MVxVq
tVGQGu79DDdNdi7hyvTN8xQKFEl6yywU5l9157EaqPs0JTic3vDB8CdGrrlhoUKb
n+0ZBnSN8nGtUCumO4NLwPFlTdQuJDhD9tR8aOIGyZhfbPbtviMDQx+/s53t7PEv
kPQUXt/Sy/Kcz3NTqSPSWnsHf4+ReBNOpwwxz0bnVpyeK86Q0dlbees0tULgk/TY
NaWII0d9+5k+UQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:34 2025 by rpki-client