Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json)
Hash identifier: VjKYpgOonf3HDB6bTb1vpTRxRflyXsHmZDrkMzpjpQw=
Subject key identifier: 72:EB:A9:1F:B3:BC:27:E4:EA:D2:03:27:19:8B:98:17:AF:E9:0C:F8
Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Certificate serial: 0199FAA16F1546AE4DCAD933AA2A65DA175C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
Manifest number: 7C
Signing time: Sun 19 Oct 2025 04:01:47 +0000
Manifest this update: Sun 19 Oct 2025 04:01:47 +0000
Manifest next update: Mon 20 Oct 2025 04:01:47 +0000
Files and hashes: 1: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: 9L4UkrwsEhBYZtkY2oc/fGAN5j4xgFLP2VXtjfUkY3A=)
2: u0k0ZcdUu0HWts_QzMnRtt7idjE.roa (hash: gQ41j+zd/N93xs0pAJ6I2F+Zc4DvWJ1HscP8bcl0MW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:6f:15:46:ae:4d:ca:d9:33:aa:2a:65:da:17:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Validity
Not Before: Oct 19 04:01:47 2025 GMT
Not After : Oct 20 04:01:47 2025 GMT
Subject: CN=72eba91fb3bc27e4ead20327198b9817afe90cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:57:78:a2:28:30:06:bc:bb:e0:6f:37:30:a9:
c6:96:fa:2b:0d:35:67:7b:ac:fc:d0:5c:1b:62:f8:
e6:09:60:de:b6:22:70:39:ee:74:08:9e:07:96:b6:
63:a6:7a:f5:1f:3d:3c:c8:2b:63:ea:3a:29:0d:31:
65:48:6c:fc:d4:aa:0e:55:05:90:6d:be:b3:f3:a8:
0f:9b:d2:9c:79:a3:dc:2d:59:ea:19:05:f2:91:f4:
a5:84:6e:44:a7:51:0a:d7:55:12:56:04:e2:98:4b:
93:e1:01:37:f0:e0:00:87:ea:10:c0:e3:c1:8a:6b:
9f:d8:f1:c3:8f:1f:99:7e:91:75:69:89:9e:19:87:
7d:ff:41:87:c1:9c:d1:2a:8e:52:b0:38:69:8c:3e:
1a:ed:f6:a0:ac:6e:50:ec:e6:bf:c9:85:d1:ae:c9:
c2:8d:37:0c:d8:02:e0:d3:04:3b:36:66:bb:32:74:
91:91:96:9c:e2:cf:20:12:8c:fa:bb:bf:df:28:f1:
0f:85:96:19:a3:b7:44:42:31:bb:b3:d3:fc:2c:f0:
5a:af:84:3b:cc:12:06:0a:44:cc:c7:1f:0a:03:02:
39:f5:c5:07:b0:d8:a3:d9:f5:cb:05:fc:94:38:a3:
6d:27:f9:39:f0:46:9d:ae:f1:76:02:51:58:a7:08:
19:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EB:A9:1F:B3:BC:27:E4:EA:D2:03:27:19:8B:98:17:AF:E9:0C:F8
X509v3 Authority Key Identifier:
keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:11:ae:43:ad:88:9e:c3:e4:32:77:3b:d1:9b:87:7e:fa:64:
c8:c2:eb:5f:e6:ac:74:3d:2e:46:df:90:4f:34:89:1e:3b:14:
57:87:5a:16:1c:49:ae:99:00:2b:11:f0:45:69:95:cb:02:e0:
8e:85:bc:1b:85:43:33:50:29:00:42:94:69:59:f4:33:2c:96:
e7:5a:58:a7:b9:6f:38:b3:6b:bb:37:ca:60:14:2a:21:16:c9:
31:4b:c7:61:77:94:2d:44:7b:55:60:98:b7:68:fc:1f:2a:e2:
a0:b4:53:6a:d4:5b:ba:3f:eb:4d:bb:c3:19:a2:b4:93:de:f7:
1e:b0:6c:52:8b:c3:9f:19:5a:9a:89:d1:88:7f:1d:63:f0:b4:
c2:27:30:6c:29:1f:a4:ce:9c:c4:46:ff:21:6c:ef:e2:0e:0d:
a7:9b:0e:25:54:f6:4f:8a:cd:b1:ff:c0:86:7d:3b:26:e9:43:
13:92:f8:7b:4d:dc:c4:b8:73:a6:7b:4c:c7:b8:8e:f7:bd:7a:
14:f1:8f:2c:c0:39:59:9d:d6:35:50:a0:d0:04:2c:d4:6d:b3:
ce:61:39:3b:4f:b6:37:1f:5d:a2:b3:d9:c8:7d:d2:87:ed:9f:
94:ee:e4:0d:5a:58:ef:19:1f:c7:58:36:59:09:69:84:7e:5e:
64:b6:a8:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn6oW8VRq5Nytkzqipl2hdcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDJjMTFhZmYwNzJiZWMzN2E1ODI2MjExNGUxYzA2YmVk
YjQ5NDIwHhcNMjUxMDE5MDQwMTQ3WhcNMjUxMDIwMDQwMTQ3WjAzMTEwLwYDVQQD
Eyg3MmViYTkxZmIzYmMyN2U0ZWFkMjAzMjcxOThiOTgxN2FmZTkwY2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ld4oigwBry74G83MKnGlvorDTVn
e6z80FwbYvjmCWDetiJwOe50CJ4HlrZjpnr1Hz08yCtj6jopDTFlSGz81KoOVQWQ
bb6z86gPm9KceaPcLVnqGQXykfSlhG5Ep1EK11USVgTimEuT4QE38OAAh+oQwOPB
imuf2PHDjx+ZfpF1aYmeGYd9/0GHwZzRKo5SsDhpjD4a7fagrG5Q7Oa/yYXRrsnC
jTcM2ALg0wQ7Nma7MnSRkZac4s8gEoz6u7/fKPEPhZYZo7dEQjG7s9P8LPBar4Q7
zBIGCkTMxx8KAwI59cUHsNij2fXLBfyUOKNtJ/k58EadrvF2AlFYpwgZFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLrqR+zvCfk6tIDJxmLmBev6Qz4MB8GA1UdIwQY
MBaAFLLSwRr/ByvsN6WCYhFOHAa+20lCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTct
YzViYWVhM2YxNzI5LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTctYzViYWVhM2YxNzI5
LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcRGuQ62I
nsPkMnc70ZuHfvpkyMLrX+asdD0uRt+QTzSJHjsUV4daFhxJrpkAKxHwRWmVywLg
joW8G4VDM1ApAEKUaVn0MyyW51pYp7lvOLNruzfKYBQqIRbJMUvHYXeULUR7VWCY
t2j8HyrioLRTatRbuj/rTbvDGaK0k973HrBsUovDnxlamonRiH8dY/C0wicwbCkf
pM6cxEb/IWzv4g4Np5sOJVT2T4rNsf/Ahn07JulDE5L4e03cxLhzpntMx7iO9716
FPGPLMA5WZ3WNVCg0AQs1G2zzmE5O0+2Nx9dorPZyH3Sh+2flO7kDVpY7xkfx1g2
WQlphH5eZLaolA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:16 2025 by rpki-client