Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: glM6jQnmCZRAftWwzgjHa2Kl4w3AEKKZh86m9sYbzn8=
Subject key identifier: A1:40:7C:7A:D3:12:ED:85:D7:C2:D9:06:58:18:F3:73:BF:21:5A:D7
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 0198D5F15138795B280C92727F6F27C59BB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 08:00:18 +0000
Manifest this update: Sat 23 Aug 2025 08:00:18 +0000
Manifest next update: Sun 24 Aug 2025 08:00:18 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: VpU41nH138qs0M5JcSCNGpaVP150MXK3u9YW+6IIbeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:51:38:79:5b:28:0c:92:72:7f:6f:27:c5:9b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Aug 23 08:00:18 2025 GMT
Not After : Aug 24 08:00:18 2025 GMT
Subject: CN=a1407c7ad312ed85d7c2d9065818f373bf215ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:c1:c6:3f:ff:17:2f:b6:86:88:53:68:44:
ad:b4:bd:80:4e:b3:4c:17:dd:fa:b3:27:dd:0e:2e:
15:fe:25:f2:98:7f:ca:ed:93:c3:ca:5d:05:d2:59:
00:2a:a0:95:d0:75:30:c7:00:8d:e5:54:fa:f6:28:
7f:8e:1f:75:74:8c:53:0d:fb:ae:3d:bf:b4:4f:89:
60:e4:56:67:0d:8d:93:f3:0a:9a:c9:58:0d:eb:b8:
54:6b:55:c7:bc:53:36:a9:41:2c:e6:a3:3c:2c:83:
a4:e3:28:15:54:34:37:61:f2:f0:26:37:ca:b3:77:
19:db:5e:b5:e1:1d:15:aa:a4:51:05:f7:2a:9f:4e:
e5:5f:f6:de:e1:a3:c6:67:7b:3e:35:85:d3:9a:8a:
91:03:93:cc:f0:b4:14:0f:8a:d4:be:cd:fc:84:2a:
65:f5:79:18:5e:91:22:78:9e:2a:94:05:d2:0f:d9:
b0:33:25:80:53:6d:b8:29:61:b8:a0:ae:80:0c:d0:
e0:ae:e0:ca:9b:74:9a:5a:40:ba:a5:5f:8a:ca:78:
e6:89:23:68:47:bf:85:53:96:d5:22:7f:f7:e6:24:
44:49:65:7a:b6:e9:9b:1c:cb:79:f1:4c:b7:c9:7a:
80:d3:94:dc:3f:2d:1c:1a:72:3c:02:89:8d:15:b0:
51:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:40:7C:7A:D3:12:ED:85:D7:C2:D9:06:58:18:F3:73:BF:21:5A:D7
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:82:58:d7:fb:f6:a2:87:75:1c:d7:b3:9d:06:50:ec:05:19:
19:54:56:9f:0b:57:3d:91:c3:14:da:c4:db:7b:e3:c2:2d:d9:
1d:2b:bd:34:a9:04:2f:7b:ed:f1:a6:73:42:6e:15:6c:9d:9b:
44:70:ff:3b:b8:6a:2f:d4:ed:16:a1:4d:82:e9:ff:e1:30:15:
3d:0d:a5:fb:75:ba:dd:96:17:fb:93:5a:e6:32:8e:6c:eb:b1:
03:32:93:15:6a:96:9c:ac:0d:8a:26:65:a3:27:2b:55:db:20:
8c:c9:1c:6b:97:4c:92:9d:44:b9:85:af:1d:bf:6f:56:90:f0:
50:67:30:b0:9e:05:e5:75:47:ad:ce:18:c4:ac:f5:fd:e1:71:
59:49:61:fb:20:2d:4b:e6:21:d5:9a:cb:ac:2f:af:59:26:16:
3b:4e:40:8f:db:e6:43:f6:05:96:35:c6:93:27:36:a0:be:a5:
83:59:57:36:1f:e3:b7:44:fb:45:98:8b:20:17:19:a0:a5:45:
3b:33:c8:3e:74:2e:30:80:07:2d:4a:b5:9d:5c:12:ef:31:95:
c3:8a:18:a9:87:0c:fd:61:d6:7f:e5:82:cf:28:31:db:cc:35:
d5:bf:ef:b8:9a:5c:44:24:f6:ee:97:b4:3d:6b:31:bf:51:1e:
86:0b:56:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8VE4eVsoDJJyf28nxZuyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDk0MDFlY2E2YzhhOTMwNmQxMDA5MmJiZTBjMmUxOTUw
MGU5N2YwHhcNMjUwODIzMDgwMDE4WhcNMjUwODI0MDgwMDE4WjAzMTEwLwYDVQQD
EyhhMTQwN2M3YWQzMTJlZDg1ZDdjMmQ5MDY1ODE4ZjM3M2JmMjE1YWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs93Bxj//Fy+2hohTaESttL2ATrNM
F936syfdDi4V/iXymH/K7ZPDyl0F0lkAKqCV0HUwxwCN5VT69ih/jh91dIxTDfuu
Pb+0T4lg5FZnDY2T8wqayVgN67hUa1XHvFM2qUEs5qM8LIOk4ygVVDQ3YfLwJjfK
s3cZ21614R0VqqRRBfcqn07lX/be4aPGZ3s+NYXTmoqRA5PM8LQUD4rUvs38hCpl
9XkYXpEieJ4qlAXSD9mwMyWAU224KWG4oK6ADNDgruDKm3SaWkC6pV+KynjmiSNo
R7+FU5bVIn/35iRESWV6tumbHMt58Uy3yXqA05TcPy0cGnI8AomNFbBRswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKFAfHrTEu2F18LZBlgY83O/IVrXMB8GA1UdIwQY
MBaAFLLZQB7KbIqTBtEAkrvgwuGVAOl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWIt
ZTEzMzJlN2YwNmZjLzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWItZTEzMzJlN2YwNmZj
LzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh4JY1/v2
ood1HNeznQZQ7AUZGVRWnwtXPZHDFNrE23vjwi3ZHSu9NKkEL3vt8aZzQm4VbJ2b
RHD/O7hqL9TtFqFNgun/4TAVPQ2l+3W63ZYX+5Na5jKObOuxAzKTFWqWnKwNiiZl
oycrVdsgjMkca5dMkp1EuYWvHb9vVpDwUGcwsJ4F5XVHrc4YxKz1/eFxWUlh+yAt
S+Yh1ZrLrC+vWSYWO05Aj9vmQ/YFljXGkyc2oL6lg1lXNh/jt0T7RZiLIBcZoKVF
OzPIPnQuMIAHLUq1nVwS7zGVw4oYqYcM/WHWf+WCzygx28w11b/vuJpcRCT27pe0
PWsxv1EehgtW6Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:39 2025 by rpki-client