Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier: QTA2U7gSbVC1ZYDq5ujSKqrCNlbYoFJRjU2Vq3UtM6w=
Subject key identifier: A3:07:10:AB:D6:EB:0A:CC:76:DC:97:1D:5B:48:EF:A3:17:0D:E1:51
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial: 019EB98FE3280D600E3FD969C8F91EED73DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number: 1957
Signing time: Fri 12 Jun 2026 02:01:15 +0000
Manifest this update: Fri 12 Jun 2026 02:01:15 +0000
Manifest next update: Sat 13 Jun 2026 02:01:15 +0000
Files and hashes: 1: LA87c0N0jLLIJNyaAxdsrLDiRKc.roa (hash: 4oqbXXgz6mLbQ2FF6T8Y0DHtnqReuO9S3IDQ8izJVL4=)
2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: R21ebxfSE8a579Iw4JBfcQdh6VlTqh3WsC7T9AUF1HA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:e3:28:0d:60:0e:3f:d9:69:c8:f9:1e:ed:73:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
Validity
Not Before: Jun 12 02:01:15 2026 GMT
Not After : Jun 13 02:01:15 2026 GMT
Subject: CN=a30710abd6eb0acc76dc971d5b48efa3170de151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:32:d1:91:e2:51:7f:64:56:cf:ca:35:a8:d3:
43:0b:45:18:20:50:83:61:d3:55:27:62:97:17:d3:
c3:29:0e:dc:6e:0f:92:53:16:b3:d9:32:69:b2:56:
05:e2:03:a4:39:37:4f:58:0f:bf:18:08:5b:3c:53:
e9:ca:13:ab:b3:97:e0:72:fe:aa:87:7f:d1:0b:7e:
7a:63:f6:6f:ab:e1:8e:83:e9:e6:2e:38:29:cf:7e:
24:78:55:40:c1:d1:78:30:41:c8:87:86:a7:c7:81:
2e:74:aa:a7:b3:23:01:af:ab:8e:3b:ea:5c:85:04:
c9:46:e8:a3:15:74:ab:50:5e:54:95:0b:e0:fa:71:
d4:87:d1:13:86:a2:b3:77:ee:aa:d0:c5:30:a0:4e:
58:47:61:8e:b9:34:fa:67:e3:f3:1f:24:69:12:a9:
80:f1:9e:53:95:a0:1e:11:ae:f2:27:1d:ab:09:d2:
b6:59:01:6f:84:89:a5:e0:71:35:26:dd:78:3c:d2:
c5:bf:bc:42:d0:69:17:e7:ad:f8:80:ba:ed:b3:82:
f9:35:c0:44:68:88:4a:8f:fd:3e:a9:b2:ad:05:fa:
37:ea:1a:86:1d:1e:76:f3:88:36:d8:06:6b:fd:d5:
d7:12:09:14:ce:42:db:6d:14:26:e8:43:e2:6c:eb:
e2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:07:10:AB:D6:EB:0A:CC:76:DC:97:1D:5B:48:EF:A3:17:0D:E1:51
X509v3 Authority Key Identifier:
keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:90:56:01:7a:e5:f4:0b:6f:dc:42:43:87:2c:8f:de:62:51:
a7:a4:43:a7:ca:49:12:4a:48:20:95:b0:a4:e5:aa:a3:12:36:
8e:96:11:53:da:03:3b:93:fd:a4:4e:d1:f1:4e:2f:d0:35:23:
2e:cf:f0:73:37:78:47:cb:09:bc:b5:66:73:59:36:65:53:e8:
e2:0d:f1:30:2d:f2:cd:08:65:90:e9:49:fe:99:26:ed:66:af:
b6:46:92:03:97:7c:49:96:90:74:c0:cb:ae:59:82:e5:2a:6d:
01:e3:e6:cc:25:73:93:12:08:2f:ca:4d:c9:3f:4a:d6:ae:97:
8b:69:44:cc:9f:7f:f7:62:1c:09:89:d2:1a:ff:4b:50:0e:06:
78:dd:34:19:f2:e9:37:96:b1:d1:80:a2:bc:6e:8d:a9:b2:bb:
4c:4f:ca:a1:1b:43:20:cf:15:41:61:dc:34:dd:56:36:73:b1:
cb:e8:68:fb:02:f0:0c:90:2b:fb:3f:9e:af:24:55:db:fe:01:
01:e2:3a:a1:61:cd:e8:e4:09:ba:d2:0e:91:d1:48:25:37:f8:
b3:a8:db:93:ba:de:ab:a8:66:ff:7e:49:5e:dd:1c:ac:68:f4:
41:24:82:51:4b:53:5b:98:a0:12:43:39:fc:48:2a:ed:32:f9:
4c:02:59:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:40:34 2026 by rpki-client