Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: hJMsLEsCmL9hP1x2bPspQxKZD2X/lLmQFjPVzPqVPOc=
Subject key identifier: FC:64:AD:F0:A2:2F:FA:3A:B2:42:38:50:DE:B8:6F:AD:D3:6C:19:AE
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 0198D69837F4808D2A6C1504F9ED41ABA83C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 11:02:36 +0000
Manifest this update: Sat 23 Aug 2025 11:02:36 +0000
Manifest next update: Sun 24 Aug 2025 11:02:36 +0000
Files and hashes: 1: PDkI417cWn_abbXt0o9HD-0vD6g.roa (hash: mxVaLWpnhSe1agkXL4xYhLyldi4/weSHgH61n+a6Rqk=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: R/QieSFhsaYYktCC+yYURoEAVTG3mJXXjLvBm6NcgaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:37:f4:80:8d:2a:6c:15:04:f9:ed:41:ab:a8:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: Aug 23 11:02:36 2025 GMT
Not After : Aug 24 11:02:36 2025 GMT
Subject: CN=fc64adf0a22ffa3ab2423850deb86fadd36c19ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:71:eb:e0:64:d4:b5:98:05:7a:f9:d5:7a:a0:
92:9c:2f:e4:64:07:ec:99:7e:05:9c:7b:73:40:0d:
4a:c5:33:a7:8d:00:a2:ef:f2:b1:ac:9f:c6:cf:ba:
e0:01:78:d2:b1:bf:68:6f:69:f1:70:8e:54:d1:97:
93:85:0c:4e:49:e5:ac:d3:40:13:fd:ce:b9:b2:2f:
a4:b0:ee:87:53:24:54:a1:c8:34:e1:17:e2:5e:64:
49:07:9a:3d:e0:c6:0b:b6:0b:59:ad:1a:4c:fb:c2:
2b:ab:4e:93:18:56:ae:a5:3a:f6:e4:6a:38:a7:27:
b8:c3:63:aa:81:94:35:fb:67:8a:2b:35:df:f6:4e:
f1:f5:20:22:7a:54:51:f0:25:55:8f:de:47:ab:32:
66:5c:33:a2:d8:12:88:5a:37:98:8b:6b:99:84:e5:
50:06:31:62:f4:b3:49:c6:dc:ed:13:ac:77:89:d7:
4e:38:0e:bf:77:46:29:c6:7a:9b:c1:f9:2f:41:74:
c2:99:d5:d9:91:8a:20:19:65:c2:8f:f5:c3:18:4f:
ca:96:75:87:00:98:c4:38:95:f3:e6:e1:d4:fb:b4:
b9:04:9b:81:bc:1e:ac:08:ef:b5:e8:59:50:b9:0f:
81:31:39:ea:26:4e:cd:63:87:1b:f2:2d:17:92:c4:
ca:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:64:AD:F0:A2:2F:FA:3A:B2:42:38:50:DE:B8:6F:AD:D3:6C:19:AE
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:03:7a:7b:ac:95:fc:fb:1f:d1:ea:46:a8:76:27:00:6a:61:
a1:e6:ab:70:45:33:07:29:21:c0:b1:cc:3f:97:69:f6:1a:4c:
84:ef:2b:66:79:2c:4b:18:0a:80:9f:f2:e1:af:5e:8e:29:b3:
e8:e9:be:1a:ab:00:16:38:0e:b3:33:98:10:9b:bf:6a:8e:40:
67:3a:3b:3c:72:86:b2:10:62:cf:86:d3:f6:70:73:10:24:3c:
7f:80:88:86:83:9a:53:5c:e6:1f:fd:87:73:83:41:c9:8f:fe:
6f:39:5a:e4:04:19:c4:ed:46:e7:c8:f5:ce:a4:5e:ad:b4:4f:
1e:e1:c8:5f:64:43:61:81:3d:13:76:63:23:af:b6:e3:76:be:
01:32:ff:6f:bb:43:30:96:a0:50:1a:6d:27:99:44:3e:16:00:
2c:43:bb:03:17:14:91:ec:d7:3e:c8:cb:9b:1f:87:98:40:14:
95:9b:7c:b6:f2:7e:e5:fe:14:f6:d0:2f:34:20:3e:ad:3a:b3:
fa:f7:03:dd:2e:02:09:2c:17:6c:f3:98:ab:f3:12:ec:8c:99:
15:14:b5:df:a3:5e:91:97:58:69:7c:d9:80:7f:56:57:f8:f3:
e1:16:d1:95:3b:0b:60:cc:2d:e9:ce:4d:16:0b:07:c5:9f:4d:
5f:df:ef:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:43:29 2025 by rpki-client