Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: YfQHmvVINCKuoYzY3hoyIX94tnSdCZm5HrtwK0G95l4=
Subject key identifier: A4:E6:77:5C:26:C4:EF:29:3E:5C:41:7B:E3:86:59:CC:AA:9B:B1:1F
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 019D9AE2C1347F41B948D74E19128AAC96CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 10:00:45 +0000
Manifest this update: Fri 17 Apr 2026 10:00:45 +0000
Manifest next update: Sat 18 Apr 2026 10:00:45 +0000
Files and hashes: 1: 7W79sTA0NxFZ4zMhc8AztOa-azo.roa (hash: tcnWpiANUyetrxx26pyTnP9yDe9GvVdkOz2GPw7slj8=)
2: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: dPDzNm8aFdsbAKHDQJpc/x5jvFstQBDdhGGIovap9xw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:c1:34:7f:41:b9:48:d7:4e:19:12:8a:ac:96:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Apr 17 10:00:45 2026 GMT
Not After : Apr 18 10:00:45 2026 GMT
Subject: CN=a4e6775c26c4ef293e5c417be38659ccaa9bb11f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:92:5c:13:62:1c:dd:0c:04:c2:ad:9f:3d:f1:
75:7a:de:e3:a6:52:d4:21:21:0f:80:9a:2d:b0:be:
a6:eb:3d:5d:5a:09:4c:b4:1c:a4:8a:19:ce:bd:85:
02:9f:95:b6:37:ff:d5:e7:bf:7b:ce:de:34:7a:79:
a1:70:3b:8a:eb:6b:f1:94:56:3e:45:f1:a3:ef:14:
cc:19:01:4c:85:b6:a7:b5:e9:fd:b9:84:2d:9d:62:
2c:bc:34:f9:98:05:e1:34:ad:d1:29:cc:b9:ee:ae:
b0:1d:90:d1:cd:41:6d:50:7d:c0:c5:9e:89:e1:ec:
cf:ea:2f:9e:49:a3:61:13:f4:a6:59:ec:89:09:01:
41:57:69:7e:f6:af:0c:e6:dc:aa:8a:2e:23:ec:55:
d0:ea:9d:1c:30:fc:a5:b8:91:ef:0a:4a:ee:af:3a:
b3:3d:a6:73:32:54:a6:c2:a0:10:d6:80:cb:fc:3a:
52:24:e4:d6:7a:6c:40:ce:d3:b9:a4:19:70:64:ed:
7c:42:1c:2f:b3:3e:12:e3:73:41:a8:fa:b6:0d:56:
f7:bc:1e:89:6e:c0:85:34:6d:ac:84:40:ba:a5:6d:
fb:b8:a6:7c:2f:66:7c:14:7f:a3:45:4c:b6:7c:eb:
a6:6d:14:79:e8:28:f4:30:8b:0b:49:38:83:72:36:
4e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E6:77:5C:26:C4:EF:29:3E:5C:41:7B:E3:86:59:CC:AA:9B:B1:1F
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a5:c7:b2:2d:dd:74:72:91:8d:31:41:11:0f:0e:37:e8:ba:
4f:e7:da:05:d9:a6:cc:99:f0:9b:13:5a:a6:0e:98:5d:bb:0f:
0d:37:e0:12:31:42:b0:c2:db:bd:95:37:d5:f9:8a:14:8a:dd:
88:e0:7e:37:72:aa:e1:5a:f7:12:9d:50:e4:6c:cd:47:ac:b9:
5e:0c:e7:3e:6b:4f:05:89:3c:21:3c:af:f6:de:11:ee:90:1d:
c6:a4:41:6c:2b:a7:08:38:f0:ed:86:8d:d0:d1:02:a6:07:4b:
49:05:7b:6f:70:8a:5d:bd:f6:f5:2f:67:8f:20:87:f0:a6:c3:
cc:ff:dd:34:c8:f4:7e:c6:2c:2d:d0:a2:3d:25:5e:1c:5e:25:
23:e6:bb:dc:4a:b7:bd:7d:cf:b8:06:d9:e6:eb:22:3a:6e:a1:
f1:da:1c:d8:60:15:db:f8:1c:05:c2:a5:65:9d:e4:69:83:7f:
e7:3a:03:2f:ef:6b:de:62:c7:ec:d5:cc:a2:57:63:36:65:4e:
31:7b:ae:9b:39:0d:0f:78:23:a6:14:f8:b0:37:e4:06:04:d1:
3c:07:fb:9e:dd:4c:19:e7:3c:aa:65:34:0d:8f:83:fc:76:97:
52:b3:7c:1c:bf:f2:91:51:08:0c:17:d8:3c:79:83:1e:5b:93:
b5:a7:94:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:26:28 2026 by rpki-client