Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: uTYMxpgREyQzt4lg3Qd/Kaf+TPn4yWwBQ+SjfFb9jcU=
Subject key identifier: FF:95:55:57:3B:9A:DC:BE:3F:D1:D6:D7:BE:32:BA:D1:66:B6:6C:8E
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019DA378D37C44AB57E1BF7015CFAD41893A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 18C9
Signing time: Sun 19 Apr 2026 02:01:37 +0000
Manifest this update: Sun 19 Apr 2026 02:01:37 +0000
Manifest next update: Mon 20 Apr 2026 02:01:37 +0000
Files and hashes: 1: Yes7E1nCE9WsDeErGONsuMIwDwg.roa (hash: Aujc0YkvltRGmUvtiXkpAVJcAgOt8vjAA0FwFtGvrVs=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: W0vXUrC70+yPan2/VRkFTtsVWsF8G+YM31erMIt8Axw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:d3:7c:44:ab:57:e1:bf:70:15:cf:ad:41:89:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Apr 19 02:01:37 2026 GMT
Not After : Apr 20 02:01:37 2026 GMT
Subject: CN=ff9555573b9adcbe3fd1d6d7be32bad166b66c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8c:d3:fe:ba:e4:8d:e0:5b:e2:64:6e:98:08:
f7:52:80:2a:7f:31:74:7b:83:f3:fc:eb:7c:3a:dc:
4a:6e:c8:49:3f:68:fc:b5:c0:d2:b5:dd:9c:07:c9:
37:a6:2a:aa:9b:7a:0a:f8:1e:2e:79:7d:4d:30:4a:
fc:bc:9d:dd:32:58:69:cb:4b:87:6a:10:d5:41:3f:
71:e4:8e:f9:c8:89:3f:09:90:cf:fd:d5:d8:bc:94:
17:71:92:7b:b4:d3:9e:ef:b4:79:ef:4a:80:a4:49:
7e:e4:e8:1a:45:a1:cb:7b:a8:01:a2:3a:2a:e2:d9:
0a:85:9f:e9:4a:5f:03:ca:b6:de:47:f6:ab:ac:dc:
c5:68:49:d6:5e:c5:03:e6:3c:b5:14:c8:d2:ed:be:
42:1d:03:d4:31:e5:23:32:12:79:83:c1:76:03:30:
06:75:97:96:73:54:26:be:e9:b0:1b:08:d4:99:c1:
36:18:9c:51:ca:a9:06:0e:d4:ec:e0:e4:22:f5:eb:
2c:94:99:2d:3c:71:d0:2f:cf:f1:d2:97:0c:55:35:
66:07:dc:81:56:2a:24:9b:bb:c3:5c:81:1c:9c:ce:
83:69:d7:57:a7:9b:1a:29:08:e5:65:8d:17:16:ab:
7d:4e:20:93:8b:07:e7:0a:61:cb:60:2b:8b:98:2f:
24:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:95:55:57:3B:9A:DC:BE:3F:D1:D6:D7:BE:32:BA:D1:66:B6:6C:8E
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:80:95:38:7a:8f:38:3f:8a:ef:2b:15:bf:16:fb:47:ea:90:
68:37:87:10:62:0c:a7:2c:79:55:31:04:86:07:88:59:28:18:
f3:a4:86:f1:1b:2e:11:5b:3c:3a:c2:b3:5f:0b:e9:b6:54:cd:
e3:9b:61:74:5b:5d:30:0b:5e:51:d0:ad:a9:64:4c:52:37:a1:
0b:61:4c:da:b1:8f:38:c2:b8:4a:ea:09:34:27:57:46:40:0b:
7c:31:50:70:bd:e4:b5:64:a4:df:d4:5b:ce:4b:04:c3:8c:2d:
c6:f8:1d:f3:dd:df:d4:a8:c9:f1:91:02:89:c9:15:d2:f2:b7:
c5:30:dd:a1:59:03:77:b5:37:8e:1c:26:fd:0c:de:d1:74:01:
eb:a6:d9:5d:f6:d9:65:26:cc:59:97:44:b1:67:7e:b7:ee:f1:
5f:e9:87:b6:f7:3c:33:e3:f3:f9:86:fd:96:d4:c8:59:4f:42:
3e:d2:e5:2d:e0:64:ec:6e:5d:93:13:43:c5:6d:ba:a6:7f:90:
a4:bf:ea:c2:17:a9:63:60:6d:c1:88:b4:35:63:ab:33:67:f7:
02:2b:73:b3:ce:64:8a:ec:2c:28:c2:2f:63:1c:13:ea:7d:1a:
90:4f:6c:9e:2f:1a:eb:96:7c:74:f2:77:6f:2c:49:97:ee:f1:
e1:67:50:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jeNN8RKtX4b9wFc+tQYk6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDk0MDFlY2E2YzhhOTMwNmQxMDA5MmJiZTBjMmUxOTUw
MGU5N2YwHhcNMjYwNDE5MDIwMTM3WhcNMjYwNDIwMDIwMTM3WjAzMTEwLwYDVQQD
EyhmZjk1NTU1NzNiOWFkY2JlM2ZkMWQ2ZDdiZTMyYmFkMTY2YjY2YzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYzT/rrkjeBb4mRumAj3UoAqfzF0
e4Pz/Ot8OtxKbshJP2j8tcDStd2cB8k3piqqm3oK+B4ueX1NMEr8vJ3dMlhpy0uH
ahDVQT9x5I75yIk/CZDP/dXYvJQXcZJ7tNOe77R570qApEl+5OgaRaHLe6gBojoq
4tkKhZ/pSl8DyrbeR/arrNzFaEnWXsUD5jy1FMjS7b5CHQPUMeUjMhJ5g8F2AzAG
dZeWc1QmvumwGwjUmcE2GJxRyqkGDtTs4OQi9esslJktPHHQL8/x0pcMVTVmB9yB
Viokm7vDXIEcnM6DaddXp5saKQjlZY0XFqt9TiCTiwfnCmHLYCuLmC8knwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP+VVVc7mty+P9HW174yutFmtmyOMB8GA1UdIwQY
MBaAFLLZQB7KbIqTBtEAkrvgwuGVAOl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWIt
ZTEzMzJlN2YwNmZjLzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWItZTEzMzJlN2YwNmZj
LzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEICVOHqP
OD+K7ysVvxb7R+qQaDeHEGIMpyx5VTEEhgeIWSgY86SG8RsuEVs8OsKzXwvptlTN
45thdFtdMAteUdCtqWRMUjehC2FM2rGPOMK4SuoJNCdXRkALfDFQcL3ktWSk39Rb
zksEw4wtxvgd893f1KjJ8ZECickV0vK3xTDdoVkDd7U3jhwm/Qze0XQB66bZXfbZ
ZSbMWZdEsWd+t+7xX+mHtvc8M+Pz+Yb9ltTIWU9CPtLlLeBk7G5dkxNDxW26pn+Q
pL/qwhepY2BtwYi0NWOrM2f3Aitzs85kiuwsKMIvYxwT6n0akE9sni8a65Z8dPJ3
byxJl+7x4WdQCg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:27:46 2026 by rpki-client