Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: w/DikjFQy5LxfLCfw5XO3HrQKTB63CrbOK0YNEO0P18=
Subject key identifier: 1F:48:7B:44:30:0C:A7:EB:82:BA:AE:E3:33:44:B4:C3:87:5B:28:C3
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019D3376124A4AD55815FB60D03D8280C9A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 188F
Signing time: Sat 28 Mar 2026 08:01:08 +0000
Manifest this update: Sat 28 Mar 2026 08:01:08 +0000
Manifest next update: Sun 29 Mar 2026 08:01:08 +0000
Files and hashes: 1: Yes7E1nCE9WsDeErGONsuMIwDwg.roa (hash: Aujc0YkvltRGmUvtiXkpAVJcAgOt8vjAA0FwFtGvrVs=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: 7bRu7E5OJ5l5FnP4kUTraCgNS4ODulpvh8S5IX1G9ng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:76:12:4a:4a:d5:58:15:fb:60:d0:3d:82:80:c9:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Mar 28 08:01:08 2026 GMT
Not After : Mar 29 08:01:08 2026 GMT
Subject: CN=1f487b44300ca7eb82baaee33344b4c3875b28c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5d:af:5b:12:0d:4b:33:e2:b3:fa:4f:b1:87:
fd:f4:f3:8e:3e:6e:54:31:95:50:e6:4a:c6:9e:0d:
3e:b5:64:cc:d4:6b:3b:48:26:30:0c:a9:d0:7d:9a:
3f:da:0b:08:22:68:34:8a:21:f8:80:1d:0f:c4:bc:
f2:1a:72:04:26:a9:0d:f8:ed:3d:85:ce:7a:3a:bb:
d8:66:94:6f:2f:0b:4f:d3:c7:68:c9:a1:16:3b:b2:
9c:a9:43:32:46:6b:be:23:6f:ed:28:77:57:35:28:
d3:38:f9:78:93:2b:28:19:75:0f:41:ef:29:56:76:
99:53:da:32:87:37:51:b5:48:64:bd:f8:e6:5f:62:
3a:1f:7d:ed:8d:70:e5:13:dd:e1:a6:61:99:35:cf:
69:7f:bf:a8:ea:ec:c0:3b:53:a3:3c:cd:03:ea:62:
e4:09:9b:35:36:42:60:89:b9:72:b1:e1:dc:24:60:
de:47:e0:ba:20:27:e5:07:11:cf:4b:d7:9d:c5:71:
18:10:08:87:8c:54:83:e6:e7:5f:d3:2b:8d:3d:e3:
1a:ff:84:87:21:2a:c7:1b:d0:d8:68:68:2e:cf:83:
7a:39:40:27:e8:62:dd:d4:65:22:ea:fd:cd:c0:b5:
99:56:17:17:49:8d:eb:c3:e6:d8:3c:4d:6c:67:f4:
c7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:48:7B:44:30:0C:A7:EB:82:BA:AE:E3:33:44:B4:C3:87:5B:28:C3
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:c7:82:7d:f4:86:0d:82:36:dc:32:12:57:c4:ea:82:fb:e3:
bd:25:1a:01:ac:c8:b6:23:1a:1f:df:5f:02:b1:75:2d:ae:f8:
66:89:bb:31:18:25:85:cc:b2:6f:b0:83:76:95:c3:16:bb:66:
ec:3c:4b:15:9f:1b:34:9f:30:9f:9e:eb:a3:92:23:d2:35:b4:
3e:ab:01:58:d9:6d:cf:4f:92:8c:1b:52:95:0c:0f:17:a0:39:
9c:56:d6:b4:f6:41:a0:50:d3:a8:4a:a7:54:56:60:60:87:36:
c6:b3:b9:61:63:1b:7c:6d:54:72:10:5d:83:07:70:62:1d:c7:
fe:e0:3e:bc:99:cc:c7:40:75:a6:1e:d0:12:a0:97:e4:ee:c7:
2c:70:df:0d:2e:e7:ba:bf:b7:f8:76:79:e8:f2:cf:0a:8e:d5:
df:bc:df:b1:75:ce:b0:c4:bd:cb:98:21:a7:36:07:b1:23:28:
fa:bf:ea:b4:ec:22:d5:dd:cd:b2:38:f1:6b:16:39:be:a9:85:
79:4e:63:2e:d5:2b:19:8a:ee:5a:f6:c2:09:16:6c:4b:ba:ee:
28:4d:7d:1d:31:f5:a6:14:3a:17:92:d7:6b:cb:4c:db:61:ae:
f0:90:97:5a:e6:c8:0d:6a:81:93:53:e5:62:d9:11:94:4d:67:
ab:64:4f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:39:24 2026 by rpki-client