Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: g6U7mG3wUa1j0xz/LWF+QNLkpvbEuCGF7j9cvE8Tej0=
Subject key identifier: 7D:99:1C:B8:1B:EF:90:D9:BF:DC:84:B8:A1:C6:19:67:4F:69:7A:DF
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 019D3865BB1F029E6EDB28ACC81B0E811EB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:01:24 +0000
Manifest this update: Sun 29 Mar 2026 07:01:24 +0000
Manifest next update: Mon 30 Mar 2026 07:01:24 +0000
Files and hashes: 1: 7W79sTA0NxFZ4zMhc8AztOa-azo.roa (hash: tcnWpiANUyetrxx26pyTnP9yDe9GvVdkOz2GPw7slj8=)
2: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: wxuyg8+tyXxdmcg5WdO4WEDbelZm8xM1IY1vEcuAaWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:bb:1f:02:9e:6e:db:28:ac:c8:1b:0e:81:1e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Mar 29 07:01:24 2026 GMT
Not After : Mar 30 07:01:24 2026 GMT
Subject: CN=7d991cb81bef90d9bfdc84b8a1c619674f697adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a9:ab:43:c3:1f:25:4c:57:42:fc:25:11:88:
9c:78:5d:ad:a2:5b:7e:ab:27:b9:5b:79:0a:f1:3d:
cd:27:c8:ea:45:c9:8d:eb:e1:a6:75:cc:01:cd:7b:
af:2c:c6:40:2d:60:de:7d:c4:58:88:78:07:03:f4:
f5:72:d6:7b:28:6a:70:a2:c5:87:c9:b4:da:00:59:
b1:85:a8:c8:d0:64:de:48:4b:7b:ad:09:22:f6:da:
13:e2:f8:a8:b4:00:f3:98:fc:3c:3f:90:98:e1:6c:
8c:b3:e8:33:34:c0:6a:d1:ea:56:86:83:9c:f7:d4:
0d:3d:b7:5d:51:55:df:8e:6c:ef:53:22:01:19:27:
1f:4a:fe:b1:07:97:ef:89:46:d9:23:b6:3f:51:b0:
d0:c3:10:c6:25:14:5e:07:1b:8b:19:88:fb:a7:c5:
b7:54:54:b3:8c:6a:0a:a4:fa:62:0d:9a:19:aa:5a:
10:69:32:36:1e:1d:e1:a9:37:15:1b:93:f8:43:05:
a8:60:e3:78:d3:75:18:dc:70:73:0e:a0:c8:cf:ab:
c1:eb:72:60:1a:af:06:65:f9:69:93:c9:f9:b5:17:
f7:09:b3:af:f6:39:79:f8:6a:55:0f:d9:fd:98:7a:
91:b3:98:08:b8:2b:4d:a1:9e:e1:79:b8:9c:e6:27:
27:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:99:1C:B8:1B:EF:90:D9:BF:DC:84:B8:A1:C6:19:67:4F:69:7A:DF
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:25:36:41:f1:02:96:0b:c9:62:10:11:c1:9e:31:a9:49:ab:
5f:2a:c9:51:7b:ff:80:e2:8b:01:60:4e:78:7f:4d:21:38:1d:
c8:8a:23:67:76:62:89:d1:65:26:bd:2f:9c:10:7d:22:68:83:
44:a1:17:e1:35:bd:53:fc:f9:72:51:d8:48:57:c7:41:40:db:
c8:31:67:48:a6:a4:ec:1a:df:43:47:83:35:d0:c1:b7:4e:78:
37:20:2e:32:cf:f3:a5:0d:08:0d:ab:45:93:3a:e4:cd:29:0d:
84:65:3c:17:d3:69:c0:48:de:e8:d4:ed:24:f3:a2:da:2d:89:
4e:7e:ef:03:73:f4:2e:c3:35:78:10:d0:27:5f:ab:c8:14:79:
74:7b:58:2c:f3:d4:0e:23:8a:57:42:e4:ff:e0:11:17:13:74:
26:b6:c9:74:e3:b0:67:48:4f:15:49:7b:80:8d:4d:f0:49:ff:
ff:15:7e:5a:54:f2:62:dc:e2:0b:09:93:f6:31:8b:0c:72:f3:
fb:e4:59:38:b9:c2:a8:87:cd:f5:d4:6b:a8:6f:de:de:db:60:
dc:25:40:f3:43:38:33:75:86:ea:bb:1f:d4:0c:00:8a:b2:aa:
2f:b7:46:a3:7b:55:34:06:47:dc:17:e1:f8:e5:1b:ea:68:4d:
b5:1c:d5:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZbsfAp5u2yisyBsOgR63MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhZGNmMTk2NzI5NjVmNTFiMTZkODdhZmFiMWIxNDkwODJl
NmMzZWUwHhcNMjYwMzI5MDcwMTI0WhcNMjYwMzMwMDcwMTI0WjAzMTEwLwYDVQQD
Eyg3ZDk5MWNiODFiZWY5MGQ5YmZkYzg0YjhhMWM2MTk2NzRmNjk3YWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16mrQ8MfJUxXQvwlEYiceF2tolt+
qye5W3kK8T3NJ8jqRcmN6+GmdcwBzXuvLMZALWDefcRYiHgHA/T1ctZ7KGpwosWH
ybTaAFmxhajI0GTeSEt7rQki9toT4viotADzmPw8P5CY4WyMs+gzNMBq0epWhoOc
99QNPbddUVXfjmzvUyIBGScfSv6xB5fviUbZI7Y/UbDQwxDGJRReBxuLGYj7p8W3
VFSzjGoKpPpiDZoZqloQaTI2Hh3hqTcVG5P4QwWoYON403UY3HBzDqDIz6vB63Jg
Gq8GZflpk8n5tRf3CbOv9jl5+GpVD9n9mHqRs5gIuCtNoZ7hebic5icn3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH2ZHLgb75DZv9yEuKHGGWdPaXrfMB8GA1UdIwQY
MBaAFErc8ZZyll9RsW2Hr6sbFJCC5sPuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8yZDJlYjYtMDVkNS00N2EwLThmZWQt
ZWJmMzJhMDQ2OWM3LzEvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8yZDJlYjYtMDVkNS00N2EwLThmZWQtZWJmMzJhMDQ2OWM3
LzEvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaCU2QfEC
lgvJYhARwZ4xqUmrXyrJUXv/gOKLAWBOeH9NITgdyIojZ3ZiidFlJr0vnBB9ImiD
RKEX4TW9U/z5clHYSFfHQUDbyDFnSKak7BrfQ0eDNdDBt054NyAuMs/zpQ0IDatF
kzrkzSkNhGU8F9NpwEje6NTtJPOi2i2JTn7vA3P0LsM1eBDQJ1+ryBR5dHtYLPPU
DiOKV0Lk/+ARFxN0JrbJdOOwZ0hPFUl7gI1N8En//xV+WlTyYtziCwmT9jGLDHLz
++RZOLnCqIfN9dRrqG/e3ttg3CVA80M4M3WG6rsf1AwAirKqL7dGo3tVNAZH3Bfh
+OUb6mhNtRzV5Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:47 2026 by rpki-client