Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: jZFYYABv/m6lAyLSl2XVYizLKriX9rebgcWhGRQ5kuc=
Subject key identifier: 2E:9A:7F:C9:00:F3:66:F5:FC:71:9B:AF:02:14:04:22:0B:77:A0:E1
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 019D27E037A915B3C16C67EE3BBFDA127FBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 02:01:38 +0000
Manifest this update: Thu 26 Mar 2026 02:01:38 +0000
Manifest next update: Fri 27 Mar 2026 02:01:38 +0000
Files and hashes: 1: 9G6UAPf2NIi-dNj0UQ0ASo51_Xo.roa (hash: HhxpPntotNV+eDoBeE3OFEYS2ZF+Zfm27Bv5b0UVnBg=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: AwDi1a0eGt1ra4LRP5yYQExqSIMkv1I38I7/ymaTP8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:37:a9:15:b3:c1:6c:67:ee:3b:bf:da:12:7f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: Mar 26 02:01:38 2026 GMT
Not After : Mar 27 02:01:38 2026 GMT
Subject: CN=2e9a7fc900f366f5fc719baf021404220b77a0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cf:c1:2e:6d:4d:64:5e:3f:76:4e:c6:86:a0:
a2:5d:c3:93:37:bd:96:29:cd:a8:7c:a0:62:6c:4c:
31:86:79:5a:55:79:9f:83:9b:b2:d6:da:1d:8f:58:
12:eb:33:08:8c:17:62:11:9d:0d:58:1e:85:a6:1c:
4f:5d:d3:05:a0:a7:a2:bb:d8:90:e9:8d:30:c9:da:
52:c4:cf:07:76:54:52:7f:81:20:a1:f0:b7:9d:f1:
b9:a9:58:2b:cb:e6:95:28:b5:2e:cc:3a:80:4d:f2:
cd:36:43:e8:1a:1e:93:ad:ba:24:89:ed:9d:e5:3d:
31:23:50:37:32:b1:3e:72:74:dc:87:ff:ea:15:d5:
ec:e2:92:17:f3:6b:25:ce:d7:80:c3:0f:21:ac:e7:
6d:02:98:76:84:0b:fe:37:fc:e8:c2:9a:0e:ba:19:
b8:96:b7:fa:08:83:5a:fd:21:0c:67:d4:8d:5e:e6:
1c:c8:3e:47:f3:6d:96:e3:a6:b3:bb:f3:62:ff:d1:
11:6d:ba:ce:e6:a0:90:e8:3a:cd:d1:f5:b6:c2:43:
dc:5f:35:47:19:ff:5c:7c:c4:61:c6:85:b0:64:7d:
75:8e:6b:d0:79:22:38:21:12:ee:6c:85:15:59:2e:
5d:ea:c9:b2:c0:f6:ed:6d:a1:48:8f:8c:89:84:0c:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9A:7F:C9:00:F3:66:F5:FC:71:9B:AF:02:14:04:22:0B:77:A0:E1
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:51:2c:55:d2:04:cd:01:2c:a6:ac:47:58:d1:ca:09:0d:c0:
1a:9f:a8:68:89:8e:96:ff:c5:5a:f1:51:61:e0:d4:03:51:7b:
d4:0c:da:55:9d:3d:5e:a1:f5:b4:6c:2c:44:67:e2:6b:b1:07:
c0:01:70:ec:22:05:58:79:35:42:67:da:be:72:a7:14:b3:3c:
20:f7:db:46:ab:c7:b2:19:08:a5:11:f2:3e:18:8b:12:3f:36:
82:67:f8:5e:39:b6:7b:3c:f2:a8:1b:e0:1b:db:3f:7a:e8:4c:
c7:00:08:1b:ba:c9:38:06:c7:84:7a:47:4f:db:8a:e8:31:fb:
c5:62:2e:e1:b7:e8:df:c8:ce:31:d0:83:8a:72:76:61:a2:f9:
07:af:f2:fe:6b:9e:57:2b:0c:15:18:de:f8:5b:ed:01:8c:25:
89:b0:18:d3:a0:b9:f9:2c:59:5f:8e:29:97:99:2a:86:b1:10:
29:ba:b2:66:96:fe:47:a0:cc:93:8a:ce:c9:c3:fb:9e:f5:11:
9d:56:d0:91:ce:6c:63:3f:a6:3e:f9:8f:3e:1e:52:86:78:12:
6f:d3:38:83:24:d1:55:15:4c:1e:fa:7a:ce:d2:06:29:1a:57:
b0:f0:c1:7d:ad:ef:a7:3a:a5:d1:fa:4d:c0:cc:ba:43:49:b3:
ad:09:7e:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n4DepFbPBbGfuO7/aEn++MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5MzI4OTI1NmUzMzg4Nzc3ZDk1ZTRkNTMxNTY3Y2UzNjcy
YTE0OWEwHhcNMjYwMzI2MDIwMTM4WhcNMjYwMzI3MDIwMTM4WjAzMTEwLwYDVQQD
EygyZTlhN2ZjOTAwZjM2NmY1ZmM3MTliYWYwMjE0MDQyMjBiNzdhMGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8/BLm1NZF4/dk7GhqCiXcOTN72W
Kc2ofKBibEwxhnlaVXmfg5uy1todj1gS6zMIjBdiEZ0NWB6FphxPXdMFoKeiu9iQ
6Y0wydpSxM8HdlRSf4EgofC3nfG5qVgry+aVKLUuzDqATfLNNkPoGh6Trbokie2d
5T0xI1A3MrE+cnTch//qFdXs4pIX82slzteAww8hrOdtAph2hAv+N/zowpoOuhm4
lrf6CINa/SEMZ9SNXuYcyD5H822W46azu/Ni/9ERbbrO5qCQ6DrN0fW2wkPcXzVH
Gf9cfMRhxoWwZH11jmvQeSI4IRLubIUVWS5d6smywPbtbaFIj4yJhAzdLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC6af8kA82b1/HGbrwIUBCILd6DhMB8GA1UdIwQY
MBaAFEkyiSVuM4h3fZXk1TFWfONnKhSaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83YWUxMzMtZDBiNi00YjY4LThmNjEt
ZDRkOWEyZTYwZTY0LzEvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni83YWUxMzMtZDBiNi00YjY4LThmNjEtZDRkOWEyZTYwZTY0
LzEvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjFEsVdIE
zQEspqxHWNHKCQ3AGp+oaImOlv/FWvFRYeDUA1F71AzaVZ09XqH1tGwsRGfia7EH
wAFw7CIFWHk1QmfavnKnFLM8IPfbRqvHshkIpRHyPhiLEj82gmf4Xjm2ezzyqBvg
G9s/euhMxwAIG7rJOAbHhHpHT9uK6DH7xWIu4bfo38jOMdCDinJ2YaL5B6/y/mue
VysMFRje+FvtAYwlibAY06C5+SxZX44pl5kqhrEQKbqyZpb+R6DMk4rOycP7nvUR
nVbQkc5sYz+mPvmPPh5ShngSb9M4gyTRVRVMHvp6ztIGKRpXsPDBfa3vpzql0fpN
wMy6Q0mzrQl+FQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:28 2026 by rpki-client