Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: BzFFuOgrn/7OP7oza+PqNRY/agnFkaLPST0lmsICv8Q=
Subject key identifier: 11:1A:BC:47:C5:CD:5F:33:0B:4C:06:0A:AC:FF:83:4A:4C:3F:B2:1B
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 0199FD6AFB89833DED9C750FB7912D2653AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 17:01:10 +0000
Manifest this update: Sun 19 Oct 2025 17:01:10 +0000
Manifest next update: Mon 20 Oct 2025 17:01:10 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: w892NDWN1vz6H88aREJ0cHH9f3t/xHovFwObZVGpXYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:fb:89:83:3d:ed:9c:75:0f:b7:91:2d:26:53:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Oct 19 17:01:10 2025 GMT
Not After : Oct 20 17:01:10 2025 GMT
Subject: CN=111abc47c5cd5f330b4c060aacff834a4c3fb21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:c3:67:c4:2d:18:6a:06:90:34:f9:b9:41:
57:c3:1a:20:6e:ee:41:2c:9e:f2:ed:7e:b1:a1:33:
d6:a0:14:b5:07:95:39:9b:b8:da:2b:f1:02:7b:bd:
b6:ea:c7:98:7d:a9:27:20:c0:d5:70:7e:83:77:bf:
29:99:d1:77:1f:c9:fe:6e:79:1e:89:86:de:c1:bc:
6d:37:f8:d0:74:da:ed:26:68:64:23:f5:43:84:08:
35:2b:37:5b:9e:c5:30:8d:6a:df:e5:14:58:6b:bf:
f6:72:3b:04:8a:47:86:70:44:1f:b0:02:f6:72:ce:
f8:bf:99:df:61:b8:61:8d:61:9c:6e:9f:41:f4:17:
d9:e2:9f:06:86:4c:e1:07:98:26:64:c8:77:2e:f6:
be:a8:82:9e:7e:f4:bf:a7:3a:83:e6:8d:a5:1d:65:
15:c4:d4:63:60:8a:de:c5:a7:72:d7:08:c7:62:a1:
f0:5f:d8:fb:b5:9e:51:82:5e:71:49:7f:0c:e4:8f:
84:d2:6e:bb:82:3e:3d:dd:c5:08:58:5b:a5:08:8f:
2f:66:7f:a9:58:8c:f9:74:9d:3d:15:0f:d1:eb:db:
86:60:89:f7:20:25:8e:ac:e2:f5:b7:e8:36:26:22:
fb:da:c0:98:e2:72:ed:79:d3:fe:de:83:eb:2e:1b:
9d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1A:BC:47:C5:CD:5F:33:0B:4C:06:0A:AC:FF:83:4A:4C:3F:B2:1B
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:78:04:0a:06:80:98:95:01:00:f0:a8:d4:5e:62:3e:ed:00:
ed:fb:a2:bd:6b:8f:0c:22:8c:87:92:04:7f:5b:9c:90:b0:60:
9c:55:56:95:ba:62:f4:0c:50:7f:c0:e1:bd:54:94:a4:53:3a:
aa:ce:14:46:93:db:92:7a:72:39:97:da:3d:35:9c:fa:78:e7:
27:3b:ce:a3:ef:bf:70:45:21:7b:3c:58:50:d6:9c:6c:5a:d5:
46:df:ee:61:d6:7a:10:fe:f7:6a:e3:dd:72:52:e7:ab:d6:bb:
94:aa:e6:5e:06:7f:83:79:d3:0e:46:06:2b:67:5d:3e:39:8b:
61:16:da:a6:29:bb:7b:9b:e9:0f:f0:89:ad:c2:f0:cf:dd:5a:
a3:9b:ee:03:ad:82:eb:ce:4d:e6:06:43:48:87:76:b6:01:df:
1e:23:90:45:32:77:26:f6:65:66:69:35:3d:e5:a6:cc:b2:50:
a4:a7:09:66:e9:3a:f9:f3:4a:74:7b:1d:e9:10:64:10:a9:87:
d8:b8:9a:d3:f7:aa:a1:56:ed:f8:c4:b1:f4:8b:4c:a2:58:69:
00:2f:9f:62:26:d7:0f:20:26:8a:06:9d:5a:e9:9b:02:71:e4:
50:f4:59:38:66:c8:32:b4:95:21:17:f3:65:a0:c7:e3:40:b9:
bc:20:49:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9avuJgz3tnHUPt5EtJlOtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDk0MDFlY2E2YzhhOTMwNmQxMDA5MmJiZTBjMmUxOTUw
MGU5N2YwHhcNMjUxMDE5MTcwMTEwWhcNMjUxMDIwMTcwMTEwWjAzMTEwLwYDVQQD
EygxMTFhYmM0N2M1Y2Q1ZjMzMGI0YzA2MGFhY2ZmODM0YTRjM2ZiMjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7bDZ8QtGGoGkDT5uUFXwxogbu5B
LJ7y7X6xoTPWoBS1B5U5m7jaK/ECe7226seYfaknIMDVcH6Dd78pmdF3H8n+bnke
iYbewbxtN/jQdNrtJmhkI/VDhAg1KzdbnsUwjWrf5RRYa7/2cjsEikeGcEQfsAL2
cs74v5nfYbhhjWGcbp9B9BfZ4p8GhkzhB5gmZMh3Lva+qIKefvS/pzqD5o2lHWUV
xNRjYIrexady1wjHYqHwX9j7tZ5Rgl5xSX8M5I+E0m67gj493cUIWFulCI8vZn+p
WIz5dJ09FQ/R69uGYIn3ICWOrOL1t+g2JiL72sCY4nLtedP+3oPrLhudmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBEavEfFzV8zC0wGCqz/g0pMP7IbMB8GA1UdIwQY
MBaAFLLZQB7KbIqTBtEAkrvgwuGVAOl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWIt
ZTEzMzJlN2YwNmZjLzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWItZTEzMzJlN2YwNmZj
LzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJngECgaA
mJUBAPCo1F5iPu0A7fuivWuPDCKMh5IEf1uckLBgnFVWlbpi9AxQf8DhvVSUpFM6
qs4URpPbknpyOZfaPTWc+njnJzvOo++/cEUhezxYUNacbFrVRt/uYdZ6EP73auPd
clLnq9a7lKrmXgZ/g3nTDkYGK2ddPjmLYRbapim7e5vpD/CJrcLwz91ao5vuA62C
685N5gZDSId2tgHfHiOQRTJ3JvZlZmk1PeWmzLJQpKcJZuk6+fNKdHsd6RBkEKmH
2Lia0/eqoVbt+MSx9ItMolhpAC+fYibXDyAmigadWumbAnHkUPRZOGbIMrSVIRfz
ZaDH40C5vCBJPQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:18 2025 by rpki-client