Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: 7Dr8UAyVY8VF7PJhzeWFJYmtfTL0ItlB1AntqHErCn0=
Subject key identifier: 3F:26:C5:C8:23:34:D6:AF:CB:E8:55:C7:A9:C4:89:02:F5:E7:12:F4
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 019E1D224D7EB91AEB79E73FF4356F503CAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 1906
Signing time: Tue 12 May 2026 17:00:47 +0000
Manifest this update: Tue 12 May 2026 17:00:47 +0000
Manifest next update: Wed 13 May 2026 17:00:47 +0000
Files and hashes: 1: 9G6UAPf2NIi-dNj0UQ0ASo51_Xo.roa (hash: HhxpPntotNV+eDoBeE3OFEYS2ZF+Zfm27Bv5b0UVnBg=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: uejqWB3Kx0gjEDmD/7IbwnoBm1wVTg1UWyznsoZJez8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:4d:7e:b9:1a:eb:79:e7:3f:f4:35:6f:50:3c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: May 12 17:00:47 2026 GMT
Not After : May 13 17:00:47 2026 GMT
Subject: CN=3f26c5c82334d6afcbe855c7a9c48902f5e712f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dd:6b:e6:21:54:a9:db:b2:20:3a:35:97:6d:
b1:d0:07:78:b8:9a:33:99:be:b1:25:f6:ab:51:14:
55:ab:fc:4e:ec:52:ad:48:56:40:41:ab:08:5e:75:
78:3c:99:9b:bb:0d:61:df:2d:7c:82:94:39:01:3f:
7e:c1:53:cd:77:bb:c0:9a:6a:fd:f6:84:c5:0b:52:
84:a9:4a:83:40:ca:f6:a8:7b:15:66:3d:13:b4:52:
a6:89:d8:b5:b8:05:28:3d:a4:ae:2f:15:c1:1e:6f:
9c:10:e4:93:69:67:ec:8c:2f:f8:d7:3c:4e:88:42:
a7:0f:72:72:4e:67:6f:61:80:ce:58:8f:1d:b8:05:
19:56:3e:b7:44:23:38:b3:69:e3:c7:27:5b:b3:8a:
78:e5:65:8b:df:52:de:4b:f4:44:8d:43:76:cc:ce:
93:c7:e4:8d:9f:e3:f2:1c:a0:7e:c9:b9:10:bc:de:
13:33:77:53:6a:4b:ba:99:47:ce:a3:c1:90:a0:40:
74:a6:db:c9:b1:64:24:78:c2:08:20:6a:2d:83:cd:
c0:89:ba:c6:6b:64:b1:d1:cc:68:2d:d1:44:b6:d8:
10:68:b7:0e:db:63:ad:27:83:e3:5f:4e:fa:85:c9:
59:18:dd:47:84:55:40:b0:5a:9c:2c:df:40:63:38:
c2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:26:C5:C8:23:34:D6:AF:CB:E8:55:C7:A9:C4:89:02:F5:E7:12:F4
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:1c:15:50:31:09:40:e1:7a:60:4d:af:d3:af:4e:bb:c6:33:
85:a1:14:25:ce:ca:e6:1e:05:29:ab:ca:3c:81:a8:bb:4c:c3:
f8:e4:a0:98:b9:15:29:88:fb:95:80:17:77:e2:34:23:94:f8:
05:1b:99:bd:7f:55:22:aa:f4:4c:20:9f:39:ea:5b:ad:09:b3:
0c:b4:14:96:00:6d:1e:78:4d:95:33:86:44:3d:3b:80:05:98:
64:3c:5b:35:c6:d5:1a:5d:f4:88:e5:80:89:9e:c2:81:dc:0b:
93:aa:77:96:50:8e:9c:5b:e7:d5:9e:b4:54:d4:d7:68:02:10:
71:f8:f2:74:a4:bf:36:48:ea:09:1c:04:88:04:1b:3d:af:42:
a0:79:1f:2a:c8:84:f7:34:9a:0f:b4:9e:45:91:d7:a9:d0:83:
41:43:4a:37:35:c4:72:d9:9c:ad:ab:bd:e6:59:bc:f2:46:30:
f1:44:e2:de:40:3c:3b:6c:44:49:11:dc:0b:af:34:52:67:a2:
48:30:ce:78:40:3b:45:19:63:00:58:64:3f:da:a3:98:82:d2:
03:a6:df:04:fa:c9:d8:76:7b:f5:d9:97:2b:37:ec:e9:b2:a4:
18:5d:a2:73:e1:11:29:f3:0b:44:8b:af:42:2c:b7:b4:4f:0a:
f4:2d:d4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:24:47 2026 by rpki-client