Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: P3RliAjt20uRy0DRFKeOoq/stVOgtxdrw/wLofKpmU8=
Subject key identifier: 71:68:7F:55:3F:1C:9B:EC:56:B0:71:30:8F:4B:07:10:64:13:A3:49
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 0199FC8FC0162C2322DABA14B9400F884CBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 16AE
Signing time: Sun 19 Oct 2025 13:01:43 +0000
Manifest this update: Sun 19 Oct 2025 13:01:43 +0000
Manifest next update: Mon 20 Oct 2025 13:01:43 +0000
Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: RywJIzpGt8H/pUggsKrTTk8aaFXc1NbLW/rR5acBOp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:c0:16:2c:23:22:da:ba:14:b9:40:0f:88:4c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Oct 19 13:01:43 2025 GMT
Not After : Oct 20 13:01:43 2025 GMT
Subject: CN=71687f553f1c9bec56b071308f4b07106413a349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:23:3b:df:ba:7d:5b:ed:e6:d6:42:3c:85:d1:
c8:00:9a:86:74:ae:e7:91:8b:d7:f5:cc:dd:cd:e6:
b2:a2:4e:8f:08:4e:ae:d9:ff:6d:ae:c7:39:d0:2c:
3e:9f:81:96:c4:bf:2b:62:71:16:d1:95:ee:59:19:
23:87:f9:ca:4b:50:b8:cd:1e:93:9d:0d:f4:3f:a2:
48:8c:2e:6a:c9:87:64:d8:c0:7c:db:a0:e1:01:05:
45:2a:54:ad:ea:e7:80:a7:ad:2a:fd:81:b4:0f:a2:
9a:71:8c:f4:1b:4a:3c:66:ee:58:8a:4f:53:aa:0a:
f6:88:d5:88:f3:66:4b:f3:47:7f:48:1f:14:16:90:
5e:25:65:ce:62:a7:62:a4:cf:5d:d3:bc:b9:ad:b2:
4a:c9:54:71:87:2f:ae:66:1a:a0:3f:46:07:d9:85:
6e:dc:3b:7c:22:99:90:01:3b:f3:32:e2:ca:2c:23:
f6:8e:d4:2f:19:6d:62:e4:38:2e:e0:40:61:b5:84:
c0:4e:18:de:20:34:b9:b5:d8:12:e6:ee:00:5a:f3:
dd:0f:22:aa:92:9b:4e:c3:83:a2:06:54:05:3b:a5:
6c:41:2e:de:d0:a3:09:9a:c9:5c:11:a9:df:88:10:
ab:17:73:e5:1a:88:17:45:a1:be:3f:8d:87:59:dd:
76:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:68:7F:55:3F:1C:9B:EC:56:B0:71:30:8F:4B:07:10:64:13:A3:49
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:07:60:a7:93:73:9c:b1:78:10:d4:76:de:60:e2:8b:d7:df:
e8:83:32:37:7a:61:83:39:f4:a3:ea:48:de:50:4d:ea:a0:b7:
54:2f:61:12:48:1c:40:86:4b:a9:89:58:d6:73:31:6a:d3:79:
8a:cb:6a:75:5d:b7:6c:f3:e0:67:39:71:c9:63:1a:f8:4e:69:
44:5c:a7:b9:2e:c5:c0:18:24:13:eb:78:7e:5d:98:11:6b:71:
06:08:87:37:94:27:f3:af:3d:1f:e0:20:12:49:f3:4d:3b:cc:
b9:f9:56:23:54:11:b2:4c:5c:65:ba:0a:43:90:c8:f4:c3:c7:
da:4b:9f:cc:f8:70:bd:5e:82:18:1b:ea:1b:13:f0:0a:f3:d8:
85:01:6e:6c:be:4c:3b:5e:76:34:3c:9c:19:ee:95:05:6d:59:
bb:bd:e4:0c:df:e4:bf:83:bb:b1:b5:26:db:c7:85:73:f7:57:
e9:5b:0b:1c:f6:79:48:33:34:2a:8d:de:eb:60:a0:f0:52:9b:
0e:b2:10:df:ad:e4:f4:9c:f9:8f:05:50:36:a0:de:00:95:aa:
cd:bc:f5:00:2c:18:08:e8:28:30:8c:40:2a:5c:81:c9:fc:c5:
3e:55:75:33:9a:9e:d5:73:af:3f:11:0c:7d:e1:b6:4b:93:76:
4a:0a:88:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:02:08 2025 by rpki-client