Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: 93Vp2zrOvZQ8wCgHpzPo/teFKCkz0KJwGet74uTGI7U=
Subject key identifier: 25:46:7C:FB:18:46:B9:75:35:FB:87:B0:49:33:A0:BF:F8:C8:47:ED
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 019CAB6BA8C6977499E9AD087EE3859C7D36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 22:01:25 +0000
Manifest this update: Sun 01 Mar 2026 22:01:25 +0000
Manifest next update: Mon 02 Mar 2026 22:01:25 +0000
Files and hashes: 1: 7W79sTA0NxFZ4zMhc8AztOa-azo.roa (hash: tcnWpiANUyetrxx26pyTnP9yDe9GvVdkOz2GPw7slj8=)
2: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: sR6texXjbHtXk4QzcNtXcsVJvfpKDqAIHjcPyLUrs+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:a8:c6:97:74:99:e9:ad:08:7e:e3:85:9c:7d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Mar 1 22:01:25 2026 GMT
Not After : Mar 2 22:01:25 2026 GMT
Subject: CN=25467cfb1846b97535fb87b04933a0bff8c847ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:46:c3:ff:33:b4:9a:03:ce:df:4a:49:3f:49:
16:da:3c:d4:d0:ff:5b:25:78:0e:e4:50:f9:d5:20:
0d:04:d2:77:3b:a9:8e:48:52:17:e4:64:75:b6:55:
74:89:d7:26:a9:35:cd:37:1b:50:0b:aa:4d:20:ce:
6b:b3:6f:85:94:c9:39:ce:38:10:e4:28:e3:72:24:
b6:10:aa:1f:cf:0b:cb:31:62:7c:6b:89:b2:74:9d:
cf:df:c4:48:27:b8:3c:7b:1c:14:ab:9e:ea:87:46:
2c:89:d4:f3:24:28:d5:b4:a1:6b:59:9e:84:93:c0:
70:a0:06:e1:40:2f:c5:dc:54:6f:25:72:24:18:d0:
ce:bd:ba:fb:e6:b8:e4:77:31:9e:82:f9:b7:77:74:
44:b5:36:aa:c7:9a:48:ee:a3:ac:e4:be:72:27:d6:
ae:93:77:7f:70:2a:75:c6:19:77:97:b5:76:2e:35:
65:93:47:80:17:b4:01:7b:f1:d5:7b:d5:d2:30:86:
07:18:49:36:2d:ed:5c:4e:a1:3b:41:ff:c7:78:8a:
c3:50:33:6e:5b:ec:5f:e7:35:26:fd:ea:e6:98:bc:
29:c0:d2:13:17:1e:ec:0b:62:c1:33:e7:da:c5:7a:
58:d6:73:a9:2f:1d:81:0f:9a:7a:e6:a5:6b:3f:d6:
25:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:46:7C:FB:18:46:B9:75:35:FB:87:B0:49:33:A0:BF:F8:C8:47:ED
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:8f:b1:02:29:32:35:78:db:5f:11:47:13:50:18:9c:35:ab:
9a:18:05:71:21:23:f5:a9:52:29:d4:02:d1:89:5f:93:47:4c:
90:24:4b:6d:11:5a:ea:22:23:84:5c:da:3a:49:07:36:f9:22:
92:41:d9:b0:fd:4b:b3:31:d0:18:fc:da:d9:db:a7:1b:82:e1:
40:b2:4b:29:d4:e4:bd:9b:7d:4f:40:6c:22:ed:a5:60:c9:0d:
54:47:37:06:a4:ca:f8:6c:ae:93:4c:45:08:2c:82:3a:c6:87:
ff:f3:43:ac:34:ab:94:b6:4f:fa:a5:82:3c:21:6a:1b:4a:d7:
ac:8f:91:1f:86:c5:a2:b6:6b:c2:3f:0d:0f:30:f7:a7:ab:a9:
f2:25:55:53:83:15:94:87:1d:0f:8c:2d:6d:89:c1:c4:4a:e5:
f1:7b:64:89:8a:b0:dd:58:41:b9:e6:8f:5b:e6:85:27:0d:6d:
68:52:a5:f4:d1:0c:84:75:6b:65:b3:09:eb:c5:42:90:ad:04:
dd:e0:75:f2:c1:bd:3a:80:89:61:a5:36:eb:f0:41:6d:10:b9:
2a:69:c6:e6:eb:5f:77:57:0d:41:c6:7f:2b:0f:81:88:ac:cf:
17:24:4f:4e:60:34:06:32:00:cd:e9:fe:10:1e:37:dc:51:6a:
6a:0b:68:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:34:07 2026 by rpki-client