Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: 9Y8CjT38pSi6/8Hdvr2TTQWVALeSWACOzIx1iMwiyKM=
Subject key identifier: C5:B0:89:5D:52:61:96:6E:75:EB:23:20:78:3D:7C:86:20:06:3A:B6
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019CAE3522E3AFC9A6669EB6B480C90E74E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 11:00:43 +0000
Manifest this update: Mon 02 Mar 2026 11:00:43 +0000
Manifest next update: Tue 03 Mar 2026 11:00:43 +0000
Files and hashes: 1: Yes7E1nCE9WsDeErGONsuMIwDwg.roa (hash: Aujc0YkvltRGmUvtiXkpAVJcAgOt8vjAA0FwFtGvrVs=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: fyQALCQ2+OJVHoHDhlQ6Ghv0kaXkBvQ4ayrWpHFjcVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:22:e3:af:c9:a6:66:9e:b6:b4:80:c9:0e:74:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Mar 2 11:00:43 2026 GMT
Not After : Mar 3 11:00:43 2026 GMT
Subject: CN=c5b0895d5261966e75eb2320783d7c8620063ab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b3:8f:29:b0:de:49:9d:4f:ba:a2:8e:75:c3:
44:c7:74:70:74:37:cc:73:5a:60:75:95:4f:1d:3c:
ea:cd:a2:79:79:d9:8e:68:92:30:8d:18:68:c5:89:
7e:22:16:d4:e5:e9:95:42:c6:16:d4:de:0d:1a:8f:
4c:1d:63:2a:45:e7:54:0f:62:d6:2f:ef:40:d7:8a:
58:ad:40:3b:cf:48:a6:0a:7a:4f:f7:a3:7c:bd:7a:
c4:17:d4:88:f5:5b:36:5c:e4:3d:8c:85:46:e7:af:
23:72:2e:b4:6f:1a:f3:24:96:b9:c7:f9:9f:99:de:
eb:bd:82:12:04:60:e3:ba:5b:ee:69:ba:89:36:d1:
ac:b8:a7:52:f9:5d:92:19:ce:9a:42:28:c1:57:52:
ac:f6:68:3e:f9:80:b7:56:40:ad:30:e9:b2:d1:e6:
7e:20:84:fa:e0:63:53:64:ea:26:32:12:07:9f:62:
07:fe:85:ca:0f:29:29:36:08:9c:90:ba:0a:80:2a:
07:0a:b9:29:05:96:7b:d0:8e:6f:e4:47:51:09:11:
b9:28:e4:6d:f7:c9:b4:83:d4:5a:40:42:e6:23:00:
36:7a:9b:76:f0:a0:77:79:74:b3:bc:36:22:74:df:
34:69:11:d8:93:f3:ca:6b:9d:ae:a3:45:15:b3:88:
1a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B0:89:5D:52:61:96:6E:75:EB:23:20:78:3D:7C:86:20:06:3A:B6
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:25:60:cf:20:3e:c0:8e:66:99:cf:a3:e6:01:56:dc:60:74:
00:bb:12:5e:cb:57:64:a7:d6:52:03:9a:21:4f:11:49:32:8a:
70:bb:23:82:82:8a:8c:a9:45:9b:e7:6b:3b:43:cd:88:b5:21:
88:5e:aa:ca:d0:5d:93:ca:6f:3c:46:a3:ae:3a:d0:eb:2d:31:
55:09:c3:56:d1:99:95:fa:32:b0:35:13:37:94:d2:05:31:ea:
44:55:6e:ca:70:dd:df:88:44:4a:a5:b8:4b:ce:61:ef:d0:4e:
6b:1b:dd:e5:73:2f:b6:b1:e6:1b:38:66:48:da:08:9c:9f:db:
9a:de:11:e7:9c:a1:61:25:a4:9b:49:2b:99:51:7f:28:d6:56:
51:52:6f:66:39:87:7e:82:5f:08:f8:d9:9f:bc:19:a6:2b:dd:
b5:92:1b:a5:83:e9:d4:58:d5:46:ad:58:2e:d7:d3:d9:13:28:
40:25:f0:4b:4e:ae:1c:48:9d:c6:48:f3:85:fa:49:48:81:f5:
46:b6:0f:e9:ba:39:71:b6:31:93:2e:ff:ba:12:26:67:1a:0c:
e6:e0:fe:91:97:6f:e8:64:60:49:61:27:f6:17:2a:ef:4b:31:
63:53:ab:1c:36:b2:a8:8f:ce:d6:a6:73:8b:34:4a:f9:87:1e:
9b:51:ac:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:56:56 2026 by rpki-client