Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: JiK81bMe+0nAITWTCqlW/+VxkC9rmdES5FkqRLNCAQY=
Subject key identifier: 44:0B:A3:1F:19:44:A3:1D:AA:8A:88:58:C2:F2:F8:8C:45:1D:7E:48
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 019D26965EAD3FA6771C60447CEF596AC2BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 1852
Signing time: Wed 25 Mar 2026 20:01:21 +0000
Manifest this update: Wed 25 Mar 2026 20:01:21 +0000
Manifest next update: Thu 26 Mar 2026 20:01:21 +0000
Files and hashes: 1: kI6O0uFJPftBH4xW35fguwVIj3w.roa (hash: Y0KF9po9o55fM0XpVubG9yoHKNbR7AYN/MNkbuUq+D0=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: 0tv+Z2hpZiXEwHQmqQGeHMO1RCDdFzQzGLdSpbVHs0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:5e:ad:3f:a6:77:1c:60:44:7c:ef:59:6a:c2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Mar 25 20:01:21 2026 GMT
Not After : Mar 26 20:01:21 2026 GMT
Subject: CN=440ba31f1944a31daa8a8858c2f2f88c451d7e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:54:c5:b8:13:bd:26:12:27:96:6c:99:c3:09:
67:c6:26:41:27:f7:40:90:8e:0f:ca:48:1c:c6:47:
fd:4d:2d:62:79:0a:62:16:38:2e:be:a2:ee:a7:c6:
37:6d:39:0e:3d:15:19:8f:3b:b2:d0:1a:88:14:4c:
28:60:ca:d3:b9:55:64:19:88:9c:ca:f3:4a:04:7a:
29:4a:93:6d:83:ff:5f:91:85:ab:da:8b:7d:3d:45:
ae:d6:f4:ec:a8:68:81:8d:3e:fd:a1:79:6f:c6:7e:
09:82:02:c5:6f:2f:81:4f:71:f7:28:4c:3c:71:9d:
59:ce:65:b0:35:f3:3e:dd:54:3d:76:44:0d:e7:41:
47:01:be:8c:24:6e:4d:5b:f4:0b:4a:e4:af:2d:4b:
59:ce:56:e8:bb:d6:23:8e:fa:8c:c7:b5:70:80:6c:
76:e2:8d:35:52:85:7f:5e:46:bc:72:88:92:b5:ad:
ca:26:61:4d:9c:94:14:30:cd:c3:4e:bb:af:dc:52:
48:00:3c:9d:18:28:7e:5f:d2:2b:a2:d6:43:62:89:
74:24:74:a4:15:70:ff:79:61:d9:b7:59:7c:52:2e:
93:91:cc:56:37:b1:1d:27:1d:30:cd:e0:fc:de:df:
25:bc:20:69:02:0e:6d:aa:af:df:d1:4b:47:5c:b3:
fd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0B:A3:1F:19:44:A3:1D:AA:8A:88:58:C2:F2:F8:8C:45:1D:7E:48
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:43:f6:69:43:f7:e2:a6:82:dc:f8:a4:bc:b5:c6:50:19:5e:
24:56:b3:70:51:9b:52:66:db:bf:b2:80:e6:74:97:7c:5f:fa:
89:10:a2:70:fc:56:8b:6f:f3:11:28:68:59:b2:e6:2e:0b:aa:
62:29:f7:b5:42:d7:2c:c2:de:0c:a3:34:cb:75:ed:b8:66:ff:
b4:6c:2f:89:fc:03:9c:80:80:2e:8c:b2:a3:e3:59:9d:5a:fa:
09:c3:82:2c:b8:a2:3d:77:f8:eb:14:45:64:ad:a3:af:a5:99:
e5:fd:94:e3:b7:92:fb:d6:75:ce:79:70:13:9b:7c:67:7e:83:
3f:bf:2e:bf:9b:60:73:1e:e0:1d:75:cf:07:94:6d:fd:84:7e:
47:5d:01:35:53:67:82:ee:f6:e4:fe:01:4d:0e:c6:25:cf:f0:
74:d7:0f:94:4d:a5:be:99:bb:21:5d:b4:cb:45:63:b9:04:bb:
70:61:ba:48:19:62:41:fd:aa:b3:ae:2d:11:6f:16:da:6f:b7:
a7:f7:fd:fc:8c:a5:63:91:e9:c5:75:7d:f1:4e:06:b2:69:d9:
12:86:fc:4a:4c:4c:b6:0e:36:cc:e6:f1:81:14:e1:83:88:15:
07:04:37:b2:7d:a6:90:b8:57:8e:ad:5b:cf:ef:55:b6:2d:87:
79:49:d5:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mll6tP6Z3HGBEfO9ZasK6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZGIyYmZjZjU5ZDk5Y2E3MDgzMzcwOGZkMzAwMzJmMjNm
ZWY0ODUwHhcNMjYwMzI1MjAwMTIxWhcNMjYwMzI2MjAwMTIxWjAzMTEwLwYDVQQD
Eyg0NDBiYTMxZjE5NDRhMzFkYWE4YTg4NThjMmYyZjg4YzQ1MWQ3ZTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA51TFuBO9JhInlmyZwwlnxiZBJ/dA
kI4Pykgcxkf9TS1ieQpiFjguvqLup8Y3bTkOPRUZjzuy0BqIFEwoYMrTuVVkGYic
yvNKBHopSpNtg/9fkYWr2ot9PUWu1vTsqGiBjT79oXlvxn4JggLFby+BT3H3KEw8
cZ1ZzmWwNfM+3VQ9dkQN50FHAb6MJG5NW/QLSuSvLUtZzlbou9YjjvqMx7VwgGx2
4o01UoV/Xka8coiSta3KJmFNnJQUMM3DTruv3FJIADydGCh+X9IrotZDYol0JHSk
FXD/eWHZt1l8Ui6TkcxWN7EdJx0wzeD83t8lvCBpAg5tqq/f0UtHXLP9GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEQLox8ZRKMdqoqIWMLy+IxFHX5IMB8GA1UdIwQY
MBaAFLLbK/z1nZnKcIM3CP0wAy8j/vSFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzkt
NzM0OTk0YzUyYzFmLzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzktNzM0OTk0YzUyYzFm
LzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXkP2aUP3
4qaC3PikvLXGUBleJFazcFGbUmbbv7KA5nSXfF/6iRCicPxWi2/zEShoWbLmLguq
Yin3tULXLMLeDKM0y3XtuGb/tGwvifwDnICALoyyo+NZnVr6CcOCLLiiPXf46xRF
ZK2jr6WZ5f2U47eS+9Z1znlwE5t8Z36DP78uv5tgcx7gHXXPB5Rt/YR+R10BNVNn
gu725P4BTQ7GJc/wdNcPlE2lvpm7IV20y0VjuQS7cGG6SBliQf2qs64tEW8W2m+3
p/f9/IylY5HpxXV98U4GsmnZEob8SkxMtg42zObxgRThg4gVBwQ3sn2mkLhXjq1b
z+9Vti2HeUnVDQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:46:10 2026 by rpki-client