Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft
File: StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft (raw, json)
Hash identifier: vYQfBpvdemywHOwv7QiD2/dPPWzBoT+GWipBehmXdvc=
Subject key identifier: 6A:13:8B:16:DF:63:C0:51:6A:08:C6:09:B9:96:1A:56:21:32:14:7F
Authority key identifier: 4A:D1:E9:18:5E:AA:8B:5C:71:C8:9F:AB:E6:FB:E2:AC:F7:EA:98:24
Certificate issuer: /CN=4ad1e9185eaa8b5c71c89fabe6fbe2acf7ea9824
Certificate serial: 0199FD6B4C04D1A24E3265A93C806D7E0F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 17:01:31 +0000
Manifest this update: Sun 19 Oct 2025 17:01:31 +0000
Manifest next update: Mon 20 Oct 2025 17:01:31 +0000
Files and hashes: 1: StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl (hash: NphLwIpLAARnk066khSagqLDwPQ+TKVw4hHqK1Ny1iM=)
2: aRNIY9aPisPsPJEyhtJc_m061Zk.roa (hash: ah5G0cArNKCIsOUw2/tpkDwad97MIaUDok+u/s4pKjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 17:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:4c:04:d1:a2:4e:32:65:a9:3c:80:6d:7e:0f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad1e9185eaa8b5c71c89fabe6fbe2acf7ea9824
Validity
Not Before: Oct 19 17:01:31 2025 GMT
Not After : Oct 20 17:01:31 2025 GMT
Subject: CN=6a138b16df63c0516a08c609b9961a562132147f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:96:8b:9f:99:e2:bd:eb:fe:12:d7:24:c2:0e:
8c:d2:49:29:d4:6b:1c:6a:8f:c3:61:ae:61:9b:9d:
14:36:dd:21:35:38:ce:24:de:b8:af:54:14:90:32:
b6:ed:50:26:ba:e3:8a:6e:9b:27:33:52:9a:0b:78:
cf:9f:fa:2d:98:0d:3c:2a:07:4d:d7:47:7c:e3:93:
c1:b2:64:39:dd:1e:44:e7:cc:ed:19:5b:38:3f:f7:
a9:18:d8:ab:e5:e1:45:87:7e:36:f5:ba:46:cf:ff:
e0:ae:43:67:53:f2:f5:86:85:e4:e9:ad:f1:59:7d:
02:ab:f9:4e:02:30:f5:cc:4f:8d:d6:41:5d:9d:9b:
11:53:2e:ee:17:3c:13:51:c9:1f:65:5b:c5:4d:4e:
e2:7a:00:37:ea:d5:47:a9:95:88:b8:ec:21:68:dd:
73:92:70:09:56:9a:b0:d7:75:ed:28:19:83:c2:29:
a0:0c:76:a3:0a:eb:09:57:ff:c0:a9:9c:f9:fb:51:
03:74:37:31:7f:bf:88:56:da:9f:90:a4:de:91:4a:
b6:14:95:f7:b3:50:e3:9b:0c:cb:8d:f9:46:d4:da:
b8:76:c0:ee:a5:7d:43:df:84:e9:10:df:9a:2f:11:
d6:67:02:af:40:07:5d:e5:8c:29:64:5a:8a:12:5b:
9e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:13:8B:16:DF:63:C0:51:6A:08:C6:09:B9:96:1A:56:21:32:14:7F
X509v3 Authority Key Identifier:
keyid:4A:D1:E9:18:5E:AA:8B:5C:71:C8:9F:AB:E6:FB:E2:AC:F7:EA:98:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:04:3e:96:b9:84:e3:8c:a9:b5:63:27:e5:c6:de:2c:f8:2c:
f7:dc:7f:10:5b:d6:4f:43:b0:0f:27:02:01:59:b7:83:b4:82:
34:f4:e5:37:d4:e5:3b:e9:f7:17:3d:b2:fb:ce:f9:b9:54:e0:
2a:fa:ed:24:5e:97:7a:11:79:a6:58:f0:c9:c0:87:c5:31:7a:
28:c8:e7:9b:be:18:fd:b9:99:dc:74:e0:b4:c6:58:df:84:a1:
af:9c:da:74:b9:73:ff:0c:8b:c0:91:8f:04:61:c8:f2:ea:6b:
14:26:48:5d:ff:01:06:95:d8:6a:f0:99:a1:70:77:87:c6:39:
c0:2b:97:41:e0:33:69:df:af:84:b8:00:5f:b5:44:91:ac:44:
9b:d7:92:0f:2e:29:00:59:a6:66:af:cb:2e:ee:ff:2f:95:1b:
4b:91:3e:23:c6:76:07:d3:b7:7b:bd:30:5d:d8:6d:17:c3:32:
9e:5e:f8:ad:5e:85:c5:61:fa:99:9d:40:e7:17:bb:63:b7:35:
56:81:76:57:6b:f5:c3:71:cd:3b:17:c3:fd:6d:f7:c2:03:57:
9e:15:12:5d:35:eb:06:35:af:8b:ef:6e:54:78:d5:1a:b6:03:
88:6a:3f:f8:9d:3f:d2:c0:d2:35:3f:39:9f:fc:9f:3c:30:50:
91:dd:a7:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9a0wE0aJOMmWpPIBtfg9LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhZDFlOTE4NWVhYThiNWM3MWM4OWZhYmU2ZmJlMmFjZjdl
YTk4MjQwHhcNMjUxMDE5MTcwMTMxWhcNMjUxMDIwMTcwMTMxWjAzMTEwLwYDVQQD
Eyg2YTEzOGIxNmRmNjNjMDUxNmEwOGM2MDliOTk2MWE1NjIxMzIxNDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJaLn5nivev+Etckwg6M0kkp1Gsc
ao/DYa5hm50UNt0hNTjOJN64r1QUkDK27VAmuuOKbpsnM1KaC3jPn/otmA08KgdN
10d845PBsmQ53R5E58ztGVs4P/epGNir5eFFh3429bpGz//grkNnU/L1hoXk6a3x
WX0Cq/lOAjD1zE+N1kFdnZsRUy7uFzwTUckfZVvFTU7iegA36tVHqZWIuOwhaN1z
knAJVpqw13XtKBmDwimgDHajCusJV//AqZz5+1EDdDcxf7+IVtqfkKTekUq2FJX3
s1DjmwzLjflG1Nq4dsDupX1D34TpEN+aLxHWZwKvQAdd5YwpZFqKEluelwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGoTixbfY8BRagjGCbmWGlYhMhR/MB8GA1UdIwQY
MBaAFErR6Rheqotcccifq+b74qz36pgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3RIcEdGNnFpMXh4eUotcjV2dmlyUGZxbUNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zYjFjYjQtOTZhOS00ZWQyLWJkOTMt
YzM4NjY5YjM3YjllLzEvU3RIcEdGNnFpMXh4eUotcjV2dmlyUGZxbUNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8zYjFjYjQtOTZhOS00ZWQyLWJkOTMtYzM4NjY5YjM3Yjll
LzEvU3RIcEdGNnFpMXh4eUotcjV2dmlyUGZxbUNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtwQ+lrmE
44yptWMn5cbeLPgs99x/EFvWT0OwDycCAVm3g7SCNPTlN9TlO+n3Fz2y+875uVTg
KvrtJF6XehF5pljwycCHxTF6KMjnm74Y/bmZ3HTgtMZY34Shr5zadLlz/wyLwJGP
BGHI8uprFCZIXf8BBpXYavCZoXB3h8Y5wCuXQeAzad+vhLgAX7VEkaxEm9eSDy4p
AFmmZq/LLu7/L5UbS5E+I8Z2B9O3e70wXdhtF8Mynl74rV6FxWH6mZ1A5xe7Y7c1
VoF2V2v1w3HNOxfD/W33wgNXnhUSXTXrBjWvi+9uVHjVGrYDiGo/+J0/0sDSNT85
n/yfPDBQkd2npg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:34:25 2025 by rpki-client