Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json)
Hash identifier: YIz7Gxouc/bhlL9gPYY+0jP9FTei47RZ04m+sPuJ3hE=
Subject key identifier: 73:81:B9:3D:FA:82:A5:28:9A:D5:06:A1:67:7D:8F:D6:C2:AE:45:73
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 019D269608E6E7C0DF11816C4072C8FFEE10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
Manifest number: 1375
Signing time: Wed 25 Mar 2026 20:01:00 +0000
Manifest this update: Wed 25 Mar 2026 20:01:00 +0000
Manifest next update: Thu 26 Mar 2026 20:01:00 +0000
Files and hashes: 1: ODWTOuQzruA6ho_UERn0GtVqVf0.roa (hash: 0ZGtpcC1iCRZQmVMpvlkv+WlgjdEhITWUsgUWVKAkJI=)
2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: Z3hvmQrGafdQKOUa/FFga7TZxhH6PV76mkg5Awud/LQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:08:e6:e7:c0:df:11:81:6c:40:72:c8:ff:ee:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: Mar 25 20:01:00 2026 GMT
Not After : Mar 26 20:01:00 2026 GMT
Subject: CN=7381b93dfa82a5289ad506a1677d8fd6c2ae4573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:89:a5:94:43:2b:70:44:ee:78:29:fd:23:04:
7f:fd:b0:fb:3f:7c:dd:71:ae:80:56:07:b3:3b:50:
28:95:77:a3:e3:0e:c0:16:fe:47:2f:0a:c2:d0:86:
06:0a:a9:8e:48:a5:44:16:f4:d0:ed:84:3d:46:1b:
51:43:12:8d:6b:ac:ac:e7:93:be:87:65:13:23:7c:
f5:5c:f4:14:c4:65:1c:14:9e:8e:11:37:ca:bf:5e:
cb:a6:a6:52:04:02:8e:fc:5d:23:66:61:de:28:a7:
56:34:b5:72:67:c6:8a:c3:03:a3:6d:88:d1:27:ca:
eb:19:b8:16:18:29:ce:c7:da:ec:dc:e0:b6:3b:30:
e1:b7:ee:c8:89:9a:30:61:b1:8c:df:9d:4d:73:e3:
2e:88:95:62:24:61:83:2a:7c:aa:a5:fe:43:7b:e4:
32:27:e7:16:12:59:f2:dd:aa:e8:5f:cf:27:61:0d:
ee:c2:95:98:36:72:cc:c3:06:0c:6e:a3:68:54:f9:
39:0c:c2:1e:74:ba:a0:07:ab:3a:25:c8:31:50:38:
ea:eb:8d:77:23:b9:2d:b8:58:22:2d:80:9e:44:d6:
45:da:01:7e:8f:1d:96:f3:5d:fb:df:6b:46:e5:3f:
4b:3e:8e:29:74:14:e7:a3:27:ec:82:70:18:70:e4:
9d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:81:B9:3D:FA:82:A5:28:9A:D5:06:A1:67:7D:8F:D6:C2:AE:45:73
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:4f:8e:f6:b0:b2:58:41:27:62:a2:19:bd:f4:8d:c4:d9:93:
ce:f5:54:4f:9d:13:a1:0b:34:71:60:27:bc:89:20:94:48:43:
6c:04:15:21:dd:3c:74:cc:3d:c1:1a:80:2b:5b:d9:61:47:c0:
3d:57:26:22:db:76:99:b0:a2:54:91:bb:1c:66:2e:54:75:1b:
9d:57:f3:01:80:e1:7e:60:cc:e8:4f:30:01:5d:3c:50:70:78:
21:7f:d4:71:1c:ea:85:03:00:db:fc:22:36:0d:9d:ac:87:d8:
fd:02:0f:90:bc:00:a8:bf:53:b8:65:61:81:5f:8d:1d:05:91:
e0:af:14:c7:c9:ec:18:bc:13:19:ca:3a:76:31:c9:42:e9:62:
f5:ba:6b:d6:99:5a:82:07:66:0d:e8:44:53:5e:8a:43:8e:33:
3b:bf:3d:79:2b:16:ec:ac:f2:a9:7c:f0:a3:90:cb:65:a5:df:
6c:d3:59:52:17:07:01:97:be:02:23:07:a3:a1:f4:0c:cd:c8:
bd:84:b3:68:50:2f:21:b3:13:f3:75:ee:2e:54:cc:1f:d9:9d:
e7:66:fe:48:68:7c:89:45:fc:cc:70:cd:06:39:86:55:32:05:
c1:f0:01:f9:30:c8:1d:cc:5b:67:14:d2:2d:3f:54:8d:92:5d:
b1:95:c5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:45 2026 by rpki-client