Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier: Wy/HiZxpfWFGthEfjE2PxdTxyUkwaA6J0eCmcnYe3No=
Subject key identifier: D5:BD:2B:19:17:8E:88:D6:00:D9:4D:CB:2F:08:D0:70:CB:B2:09:9E
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial: 019D3752506FFC6D4521EAE8ED140B1115B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 02:00:34 +0000
Manifest this update: Sun 29 Mar 2026 02:00:34 +0000
Manifest next update: Mon 30 Mar 2026 02:00:34 +0000
Files and hashes: 1: LA87c0N0jLLIJNyaAxdsrLDiRKc.roa (hash: 4oqbXXgz6mLbQ2FF6T8Y0DHtnqReuO9S3IDQ8izJVL4=)
2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: tKmzCk/8MHMPuYII7IBsJcIJS63S34R8fL9Xaq7JhGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:50:6f:fc:6d:45:21:ea:e8:ed:14:0b:11:15:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
Validity
Not Before: Mar 29 02:00:34 2026 GMT
Not After : Mar 30 02:00:34 2026 GMT
Subject: CN=d5bd2b19178e88d600d94dcb2f08d070cbb2099e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:8d:81:a1:d3:05:f8:f8:2b:81:92:1f:e2:
e5:22:8c:5a:07:2e:df:ac:9b:7f:0c:68:5b:6b:2f:
18:04:f4:ee:b4:f7:7e:5a:9a:aa:87:30:af:af:c8:
f1:31:c4:5a:93:5b:59:98:3c:fb:bf:3e:1a:9e:6b:
ea:11:71:df:a7:44:7b:9d:dc:83:12:97:e2:9c:1e:
41:57:63:1f:9b:39:fd:af:6a:c1:ab:2e:44:43:2a:
f5:8a:91:b5:34:18:33:20:c3:72:e3:8b:b8:4b:49:
f6:c4:ac:b0:78:e5:47:60:0e:73:4b:5f:36:cc:18:
fe:9c:b9:9b:18:63:c3:f9:d6:f9:cb:fe:fb:b0:14:
29:50:fa:c4:c1:58:ba:ff:10:1c:ec:0a:ac:2b:55:
c0:24:ea:d1:b4:c9:e6:0e:7f:66:f0:3f:0c:b7:5f:
e4:15:9e:bf:78:9d:af:a8:33:e6:b5:bc:db:af:ce:
47:07:25:a8:cb:32:f8:54:99:26:ca:95:9a:3b:1c:
36:3b:6b:8d:d4:aa:6f:58:7b:3d:4d:57:63:51:d2:
0a:52:cc:de:c7:cb:f6:fe:64:0e:dc:8a:4c:b2:44:
d1:ac:f2:af:ae:75:38:b0:66:d1:19:eb:89:59:39:
81:3b:48:4c:c0:bb:9d:b2:0f:a1:50:20:6a:e6:da:
e6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:BD:2B:19:17:8E:88:D6:00:D9:4D:CB:2F:08:D0:70:CB:B2:09:9E
X509v3 Authority Key Identifier:
keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:0b:34:ea:16:e8:f7:d8:57:6e:73:62:03:f4:47:7d:79:7c:
c2:05:00:60:30:32:fc:b3:5e:b5:f8:40:0e:60:2a:22:83:8f:
53:1c:9f:56:6d:44:b6:a1:bb:46:f2:92:34:d6:a7:f9:3b:a7:
f5:42:84:a4:77:d3:43:d4:07:58:db:ec:35:62:e9:70:af:0d:
6c:63:c2:b0:37:77:f3:dd:82:36:9d:fe:e6:ae:14:79:a5:a2:
75:2a:09:92:f4:5f:0b:8f:52:04:8b:00:15:c7:8d:cf:97:8d:
12:42:e8:a8:f0:51:91:77:93:60:75:e5:39:5a:24:ac:1a:11:
76:3e:32:a4:a8:8a:54:99:38:03:d4:16:9e:1d:b6:91:5e:d6:
1b:ec:8c:e9:f9:69:b0:e5:d8:4f:13:8c:8d:3e:df:da:fe:49:
e2:5f:6f:e1:2f:ea:c9:c7:c7:2b:87:3b:df:10:62:06:23:d0:
6d:01:bb:50:e0:26:aa:54:8e:36:20:44:c6:d9:4c:76:23:31:
dc:fa:fa:71:2a:2a:45:09:5d:11:75:2c:78:63:06:17:8d:81:
62:ec:69:18:5b:6e:54:ca:e7:ab:47:fd:d8:6a:81:53:a6:d8:
b2:06:65:7b:08:ee:4f:e0:cc:83:61:a3:2a:8c:e2:a9:4b:9b:
67:6b:19:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:47 2026 by rpki-client