Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json)
Hash identifier: FK73jfLhp29TD0F0RNcnfSXelL0ntCNnBitx3CE/mdA=
Subject key identifier: 7B:A4:1C:CB:04:20:EB:22:A7:8A:F7:60:10:6C:F3:F8:1D:71:AD:B6
Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Certificate serial: 019E1F10A71BAFBA7BF82E7D2147484471EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
Manifest number: 02A2
Signing time: Wed 13 May 2026 02:00:45 +0000
Manifest this update: Wed 13 May 2026 02:00:45 +0000
Manifest next update: Thu 14 May 2026 02:00:45 +0000
Files and hashes: 1: 9a5ary6iFvpPhI3-VZwXzEYUNS4.roa (hash: bUunzrEWYSDdnUyB7OzOajjtkOR72CIasRBys0Yz5Bg=)
2: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: C2p7dcqqYqXa31NHZ3dTrVV+XQd+U8yUkMbr1+H8s5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:a7:1b:af:ba:7b:f8:2e:7d:21:47:48:44:71:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942
Validity
Not Before: May 13 02:00:45 2026 GMT
Not After : May 14 02:00:45 2026 GMT
Subject: CN=7ba41ccb0420eb22a78af760106cf3f81d71adb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1d:a9:c3:39:e0:b3:be:3f:c8:8d:15:dd:1e:
1f:9e:75:7e:43:9f:db:3b:f6:56:af:35:cd:97:a3:
45:ff:25:62:9d:93:4d:4d:5b:a5:4a:38:74:d7:c6:
67:97:37:1c:c5:fe:9c:b7:19:f1:19:70:fb:5c:80:
b2:30:98:9f:5d:6d:e3:e2:c5:96:34:76:a7:93:43:
6b:96:f3:f1:ca:b8:39:9b:ef:4d:cf:28:b1:88:59:
4f:7e:3d:60:45:2c:15:27:f5:8b:64:a6:1f:63:a7:
b5:0b:d1:fb:eb:79:5f:bc:b9:04:aa:22:4c:91:8f:
d4:9d:49:0e:e4:09:f2:b6:3c:d0:95:b0:39:77:09:
10:6c:c1:1e:0e:00:63:38:66:cc:db:0c:a7:34:5c:
f4:33:0a:1b:c3:21:5c:f0:f8:69:36:01:1a:8b:be:
0b:a3:96:3c:b6:ee:ea:2e:5c:da:34:8c:aa:0a:b1:
b9:c8:be:08:83:65:b5:7b:8b:e1:3a:e1:8f:9c:b7:
94:44:74:82:2a:4d:c4:0b:6a:2f:d1:47:28:9f:3d:
38:4d:42:e2:ad:86:93:34:e4:06:7d:1b:4e:e5:b5:
c6:87:eb:ad:6d:df:a4:2a:55:10:13:10:c3:53:52:
91:2c:55:3a:6f:b4:0e:f9:6e:ec:98:72:ec:32:a3:
b5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A4:1C:CB:04:20:EB:22:A7:8A:F7:60:10:6C:F3:F8:1D:71:AD:B6
X509v3 Authority Key Identifier:
keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c8:94:eb:61:17:66:a7:32:ee:2f:1e:cd:bb:2e:05:b8:16:
55:8f:1a:b4:04:63:fd:43:a6:3e:5c:5a:dd:84:0c:ca:50:4a:
e2:a2:c9:21:10:a2:a9:a0:3c:5f:68:6b:a1:5d:fc:2a:55:d5:
9b:60:89:8e:1b:a3:4b:63:c1:ad:46:d2:3a:dd:91:f5:ca:e2:
d2:44:26:de:39:84:38:7b:6c:60:f5:bb:2f:d9:fa:f0:1b:2d:
ec:0d:2e:44:e2:c3:af:69:ed:87:74:23:33:e7:97:6c:17:58:
89:1b:df:ad:65:71:c1:88:7f:92:c1:d4:c6:fc:43:e2:f2:35:
a0:58:69:67:18:0e:0a:3c:17:fa:73:3e:08:72:09:b7:5d:7d:
99:51:ef:11:8f:83:e2:e4:24:e6:ba:ea:f8:f7:62:a5:ce:71:
2b:c5:e1:8d:5d:09:54:15:a5:db:74:6f:31:f9:d7:6a:6b:f3:
3c:58:bb:d6:3b:bd:c7:e4:f4:3f:e7:3b:36:d2:d3:23:60:be:
de:43:d8:0a:e2:2c:e3:48:7a:a0:bf:63:36:47:6c:0b:03:bc:
b3:f9:9a:92:47:84:3b:fa:05:18:ad:9d:2b:34:27:31:a3:3c:
c3:fc:65:00:ee:a0:ce:04:6d:64:44:eb:fe:56:ac:d8:38:76:
bb:2c:ad:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:09:36 2026 by rpki-client