Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: le/PX7a3vUUl1sr7Z9ogkrpcP4XmYcwbFSt9SdJPadI=
Subject key identifier: 9D:47:09:B5:06:6D:C7:AF:F8:D2:E6:A6:FF:D9:EC:68:53:F1:6B:4B
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 019D37F71BD100B4F84A7D12C1CAB6ECAEF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 185B
Signing time: Sun 29 Mar 2026 05:00:34 +0000
Manifest this update: Sun 29 Mar 2026 05:00:34 +0000
Manifest next update: Mon 30 Mar 2026 05:00:34 +0000
Files and hashes: 1: kI6O0uFJPftBH4xW35fguwVIj3w.roa (hash: Y0KF9po9o55fM0XpVubG9yoHKNbR7AYN/MNkbuUq+D0=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: L7yh6KWG+ccvA7wV7QGxSXCb1cX9MAWGunQtwxCBfeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:1b:d1:00:b4:f8:4a:7d:12:c1:ca:b6:ec:ae:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Mar 29 05:00:34 2026 GMT
Not After : Mar 30 05:00:34 2026 GMT
Subject: CN=9d4709b5066dc7aff8d2e6a6ffd9ec6853f16b4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:36:81:13:6f:7d:98:81:a0:45:12:f3:02:6a:
97:16:ab:d0:e3:28:15:85:2d:fc:de:c7:d1:04:7f:
d5:f3:48:a5:a8:26:d4:39:d9:36:b4:a5:ba:e9:d1:
c3:c9:5f:f7:76:6d:cd:fc:ae:3f:7d:32:83:8e:98:
7d:cb:36:35:d2:9e:76:b5:ae:81:37:ca:a3:15:a5:
65:4e:ca:dd:75:33:9e:36:6f:2b:72:2c:f4:08:45:
c6:20:87:ad:e1:0f:65:2e:3d:f5:5d:b0:cb:8a:ad:
54:67:7f:f0:66:d4:d1:35:15:fb:ef:21:72:9c:0f:
95:64:04:5b:16:41:88:a0:e8:c3:ce:61:ff:dd:1b:
dc:ca:98:26:97:1f:02:4f:60:78:59:56:e8:93:04:
2b:2f:2f:18:5a:59:c3:aa:84:46:5d:5f:60:c6:21:
50:a3:1d:a9:26:2f:6d:7c:72:11:36:e3:17:39:fa:
88:2b:c6:e7:7c:14:57:78:57:85:e7:bc:5d:02:2b:
1e:67:3c:4a:b3:85:02:1a:e8:16:9b:63:07:a4:be:
69:52:1c:2a:9a:43:f7:6c:f1:00:45:b2:78:e4:56:
a3:25:14:ee:fd:b6:6c:a0:62:24:54:0c:e4:f6:23:
3d:f5:b1:aa:98:9d:06:09:30:02:1a:5e:e2:75:f3:
50:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:47:09:B5:06:6D:C7:AF:F8:D2:E6:A6:FF:D9:EC:68:53:F1:6B:4B
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:45:63:93:78:3b:61:ad:6d:9e:b9:09:8b:c8:77:27:00:45:
10:aa:b6:17:2c:64:29:5c:2f:6a:99:ca:6e:a4:02:4c:1e:46:
b6:15:d8:b9:31:cf:ab:09:b7:72:c7:8e:5d:d7:a9:86:36:77:
8e:2b:94:bb:bd:33:6e:22:64:57:35:de:d3:01:12:a1:ff:54:
81:fd:31:bb:3f:fe:ed:6d:41:99:d2:72:43:2d:db:57:28:e4:
f8:cd:e5:a0:9b:59:de:2a:1f:9a:ce:3a:8e:70:73:10:80:61:
90:9d:16:e7:48:a5:1b:ee:bf:1f:a8:9d:a7:53:07:4b:9f:4b:
8e:f2:7e:68:b1:5b:10:72:b0:07:9a:af:9a:24:df:2c:28:68:
2e:d4:c7:40:e6:3c:e1:69:f5:b0:18:46:00:9f:31:a9:51:80:
6f:96:c0:05:8f:19:32:54:9b:58:65:a6:eb:1f:2a:7b:e1:d5:
5c:e1:79:fe:9a:7a:fe:22:f1:d8:28:79:c0:a7:db:38:93:d2:
9a:b0:13:a2:f6:7b:3c:ef:31:b8:5d:cc:40:a6:31:ae:c5:c3:
c4:1a:11:4a:d0:20:36:5b:4d:fc:fb:bc:f6:fb:fc:65:fb:16:
81:ed:c4:ac:ce:16:b4:13:48:2f:d8:c6:c7:cd:1f:23:c6:61:
67:bc:17:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039xvRALT4Sn0Swcq27K7zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZGIyYmZjZjU5ZDk5Y2E3MDgzMzcwOGZkMzAwMzJmMjNm
ZWY0ODUwHhcNMjYwMzI5MDUwMDM0WhcNMjYwMzMwMDUwMDM0WjAzMTEwLwYDVQQD
Eyg5ZDQ3MDliNTA2NmRjN2FmZjhkMmU2YTZmZmQ5ZWM2ODUzZjE2YjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszaBE299mIGgRRLzAmqXFqvQ4ygV
hS383sfRBH/V80ilqCbUOdk2tKW66dHDyV/3dm3N/K4/fTKDjph9yzY10p52ta6B
N8qjFaVlTsrddTOeNm8rciz0CEXGIIet4Q9lLj31XbDLiq1UZ3/wZtTRNRX77yFy
nA+VZARbFkGIoOjDzmH/3Rvcypgmlx8CT2B4WVbokwQrLy8YWlnDqoRGXV9gxiFQ
ox2pJi9tfHIRNuMXOfqIK8bnfBRXeFeF57xdAiseZzxKs4UCGugWm2MHpL5pUhwq
mkP3bPEARbJ45FajJRTu/bZsoGIkVAzk9iM99bGqmJ0GCTACGl7idfNQYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ1HCbUGbcev+NLmpv/Z7GhT8WtLMB8GA1UdIwQY
MBaAFLLbK/z1nZnKcIM3CP0wAy8j/vSFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzkt
NzM0OTk0YzUyYzFmLzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzktNzM0OTk0YzUyYzFm
LzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOUVjk3g7
Ya1tnrkJi8h3JwBFEKq2FyxkKVwvapnKbqQCTB5GthXYuTHPqwm3cseOXdephjZ3
jiuUu70zbiJkVzXe0wESof9Ugf0xuz/+7W1BmdJyQy3bVyjk+M3loJtZ3iofms46
jnBzEIBhkJ0W50ilG+6/H6idp1MHS59LjvJ+aLFbEHKwB5qvmiTfLChoLtTHQOY8
4Wn1sBhGAJ8xqVGAb5bABY8ZMlSbWGWm6x8qe+HVXOF5/pp6/iLx2Ch5wKfbOJPS
mrATovZ7PO8xuF3MQKYxrsXDxBoRStAgNltN/Pu89vv8ZfsWge3ErM4WtBNIL9jG
x80fI8ZhZ7wXqQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:45 2026 by rpki-client