Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: Ns7y6PtXoQldvdyU1mR2i81Uewy8D5/bGDmhjHZG/QE=
Subject key identifier: 49:F1:64:65:16:78:91:59:05:AB:89:42:2F:9E:78:07:3C:23:72:63
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 0199FB7CB20F3A9876A05B1CABB898188D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 1671
Signing time: Sun 19 Oct 2025 08:01:17 +0000
Manifest this update: Sun 19 Oct 2025 08:01:17 +0000
Manifest next update: Mon 20 Oct 2025 08:01:17 +0000
Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: 09/XPAgYdXvTvH7TEZ9/nSUOOj6Nxutb8PJsFkOLcYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:b2:0f:3a:98:76:a0:5b:1c:ab:b8:98:18:8d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Oct 19 08:01:17 2025 GMT
Not After : Oct 20 08:01:17 2025 GMT
Subject: CN=49f164651678915905ab89422f9e78073c237263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:96:9b:27:f9:92:60:9c:c4:51:4b:7c:04:72:
2d:bb:5e:ba:08:45:9a:ee:f6:10:db:e5:0a:b1:e0:
f2:a6:4a:36:32:b2:a1:d9:08:67:e9:d4:8d:44:a3:
05:a5:cf:cf:00:03:8c:b8:e7:04:31:18:c0:de:7c:
ce:81:6b:7f:c1:68:88:82:f3:3c:35:db:f7:c6:54:
41:53:90:cb:36:a4:35:19:ba:53:b6:23:35:1f:d3:
2d:48:05:f7:a4:c1:c6:c4:39:97:ad:3f:d2:ef:11:
c9:4b:46:51:e3:77:0a:8d:bb:78:f8:9b:30:40:82:
f4:d3:e8:ba:3f:94:bd:0a:0e:1e:9f:d1:31:a9:9c:
e0:8e:e3:47:bf:d0:cd:dc:dd:d5:d0:df:8e:7a:e6:
08:4c:66:fa:a8:2b:b1:84:a6:d6:5a:af:e0:82:63:
84:b5:31:8f:09:8f:3e:58:93:43:27:c7:42:80:5a:
a5:31:85:2f:0d:f9:34:32:d3:45:f5:07:6e:b0:d3:
ea:86:9b:da:7a:3c:b3:60:9e:b0:c4:5f:94:d1:5d:
e7:f0:e7:9b:01:6b:be:d9:97:23:80:69:b7:c2:e9:
28:f4:73:8b:67:a5:3e:7d:8f:0f:c7:e6:ff:cc:1e:
d4:cd:20:2c:09:b3:ee:db:14:53:56:bc:f3:4d:d0:
2c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F1:64:65:16:78:91:59:05:AB:89:42:2F:9E:78:07:3C:23:72:63
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:1a:8a:ab:0b:b6:90:af:be:d2:24:95:56:41:a0:a8:18:29:
ea:11:f7:6b:d5:d1:fb:a1:6b:94:d0:f0:32:78:a3:de:48:4f:
20:38:ec:c7:93:07:0f:89:2f:f4:39:61:fb:c8:75:34:c4:20:
e8:84:90:2c:9a:80:0d:07:db:ea:96:24:5b:d0:86:3a:df:7c:
7e:11:2d:3e:a2:38:0c:9a:69:39:3e:0b:57:66:34:4c:ea:6b:
4c:20:1d:b1:d1:68:51:a6:79:a7:a3:95:b5:67:2e:da:86:9a:
eb:1d:69:c8:3f:38:17:d2:76:cd:70:12:65:a0:fd:04:ba:7e:
f0:7e:c3:94:fb:5b:0e:f2:c3:e5:6b:4d:1b:5c:f3:e3:83:a8:
0e:17:04:73:8e:1c:21:a8:f4:a0:4e:68:96:d6:7f:6b:87:e5:
fe:b4:a5:6f:5c:db:0b:b8:0e:a1:e0:bb:e2:61:1a:52:b4:30:
58:31:45:59:77:4f:d1:ae:ac:46:0c:34:5d:f6:b7:7b:1b:b1:
1b:8b:fe:54:de:c9:a3:72:90:93:26:fb:43:86:4b:3c:e3:00:
e4:bd:0c:40:14:d7:be:69:18:1d:c0:82:ee:d5:18:60:57:cb:
ed:d8:cf:ad:31:b3:b0:ae:7b:48:2b:b1:d6:85:6a:d2:22:8c:
2e:98:02:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fLIPOph2oFscq7iYGI2PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDBhMGM2OGEyMDM5ZmYwY2E1MTQwMjQxMTUyNzFjOGEw
NDY2MDgwHhcNMjUxMDE5MDgwMTE3WhcNMjUxMDIwMDgwMTE3WjAzMTEwLwYDVQQD
Eyg0OWYxNjQ2NTE2Nzg5MTU5MDVhYjg5NDIyZjllNzgwNzNjMjM3MjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopabJ/mSYJzEUUt8BHItu166CEWa
7vYQ2+UKseDypko2MrKh2Qhn6dSNRKMFpc/PAAOMuOcEMRjA3nzOgWt/wWiIgvM8
Ndv3xlRBU5DLNqQ1GbpTtiM1H9MtSAX3pMHGxDmXrT/S7xHJS0ZR43cKjbt4+Jsw
QIL00+i6P5S9Cg4en9ExqZzgjuNHv9DN3N3V0N+OeuYITGb6qCuxhKbWWq/ggmOE
tTGPCY8+WJNDJ8dCgFqlMYUvDfk0MtNF9QdusNPqhpvaejyzYJ6wxF+U0V3n8Oeb
AWu+2ZcjgGm3wuko9HOLZ6U+fY8Px+b/zB7UzSAsCbPu2xRTVrzzTdAsqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEnxZGUWeJFZBauJQi+eeAc8I3JjMB8GA1UdIwQY
MBaAFLLQoMaKIDn/DKUUAkEVJxyKBGYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQt
NDFhYjdjODcyZmVhLzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQtNDFhYjdjODcyZmVh
LzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuBqKqwu2
kK++0iSVVkGgqBgp6hH3a9XR+6FrlNDwMnij3khPIDjsx5MHD4kv9Dlh+8h1NMQg
6ISQLJqADQfb6pYkW9CGOt98fhEtPqI4DJppOT4LV2Y0TOprTCAdsdFoUaZ5p6OV
tWcu2oaa6x1pyD84F9J2zXASZaD9BLp+8H7DlPtbDvLD5WtNG1zz44OoDhcEc44c
Iaj0oE5oltZ/a4fl/rSlb1zbC7gOoeC74mEaUrQwWDFFWXdP0a6sRgw0Xfa3exux
G4v+VN7Jo3KQkyb7Q4ZLPOMA5L0MQBTXvmkYHcCC7tUYYFfL7djPrTGzsK57SCux
1oVq0iKMLpgCjw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:03 2025 by rpki-client