Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: stDBqrg8wz+PhZsAgf6LytkCHp5ECQOq4NscNszc8H0=
Subject key identifier: 2B:3B:0D:2D:2B:74:8C:FC:17:81:0D:E8:CE:13:1E:DC:3E:21:7D:BE
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 0196CA971B5E6A047F731CD4B1FF825875E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 153D
Signing time: Tue 13 May 2025 17:00:22 +0000
Manifest this update: Tue 13 May 2025 17:00:22 +0000
Manifest next update: Wed 14 May 2025 17:00:22 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: QSfLxKCPE0gOgXEyKv/dMgnjWjyTAYYReqJABN6dAmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:97:1b:5e:6a:04:7f:73:1c:d4:b1:ff:82:58:75:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: May 13 17:00:22 2025 GMT
Not After : May 14 17:00:22 2025 GMT
Subject: CN=2b3b0d2d2b748cfc17810de8ce131edc3e217dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:04:0b:a7:7c:30:66:0c:71:a8:f5:28:f0:05:
d3:ec:b8:0f:d2:ad:bd:d8:0c:72:63:a1:b4:48:7d:
16:d3:01:64:7b:7a:96:fe:4a:fd:57:70:23:d7:8f:
13:9c:b3:27:30:76:d8:da:e2:29:ac:b5:42:bc:fd:
be:ba:c9:2b:a0:7d:4c:cf:35:b8:ba:c6:74:08:0f:
3b:c1:29:1a:d8:91:82:c0:44:a1:03:96:ec:01:86:
56:04:c1:fa:ec:29:00:d1:8a:70:ce:38:77:27:3d:
54:cb:fe:48:4e:6d:24:c7:3a:ff:57:05:16:1f:36:
19:5d:e9:20:59:4e:05:ae:b1:a0:61:7b:ce:06:c2:
5e:f7:2c:4f:9b:25:a9:d9:22:18:e2:b9:e4:d7:8f:
32:5d:f6:65:20:eb:8d:33:be:7a:65:b4:a2:5b:e6:
cc:af:b1:e6:3c:70:5f:f9:22:d2:c8:2f:ba:48:24:
f2:d1:ab:36:e9:a6:7b:77:af:21:8f:46:e6:f9:4a:
e6:61:59:e1:87:7d:45:0f:24:fb:45:e2:e5:30:4a:
0a:21:ce:ec:64:64:58:3f:1a:01:e2:64:e8:9a:f1:
d9:e9:6c:c7:f8:9e:73:e4:90:f2:99:ae:81:68:03:
ba:f7:d4:54:6f:f2:51:ce:7d:4a:48:fc:9f:b5:84:
d0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3B:0D:2D:2B:74:8C:FC:17:81:0D:E8:CE:13:1E:DC:3E:21:7D:BE
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:00:d8:ba:be:63:84:db:31:c3:a2:d4:3f:61:c4:86:8c:74:
aa:46:e4:81:60:42:01:f7:a0:20:33:0c:e0:b8:49:05:0f:17:
72:8e:48:00:d4:33:cf:68:03:a3:de:05:14:99:fd:ce:57:df:
93:b5:49:7b:c4:72:d9:97:44:d3:69:0b:57:d0:37:10:13:9c:
28:23:e3:b2:95:b2:e9:2e:64:a2:2c:2f:70:d7:98:cf:e3:db:
8c:1d:d7:39:a8:da:2c:a8:30:af:3b:bb:ce:73:3e:48:ef:e3:
8c:a0:4e:80:ca:79:37:bc:de:3d:22:85:ff:86:9f:a5:20:4f:
7e:65:d9:c1:8e:15:c4:c6:ae:05:08:2f:ae:5c:44:e7:6f:07:
2b:03:f3:5f:bc:64:52:0b:42:79:fe:f1:94:65:69:09:28:7e:
9b:b1:67:23:4d:91:3e:67:fa:fe:f7:86:92:57:0b:1b:ea:37:
3a:30:7e:b2:b4:ae:87:56:9e:86:3c:90:09:fb:f9:6d:23:df:
cd:d1:22:ed:90:3c:f4:bd:32:c7:55:47:65:f4:51:a3:6a:0e:
ca:32:03:cc:64:86:92:95:22:c2:5f:54:6f:4f:f8:b2:73:61:
ba:6e:f5:46:63:e8:d1:5f:27:9c:ac:07:57:51:46:db:b9:f4:
66:fa:f9:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbKlxteagR/cxzUsf+CWHXlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDk0MDFlY2E2YzhhOTMwNmQxMDA5MmJiZTBjMmUxOTUw
MGU5N2YwHhcNMjUwNTEzMTcwMDIyWhcNMjUwNTE0MTcwMDIyWjAzMTEwLwYDVQQD
EygyYjNiMGQyZDJiNzQ4Y2ZjMTc4MTBkZThjZTEzMWVkYzNlMjE3ZGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwQLp3wwZgxxqPUo8AXT7LgP0q29
2AxyY6G0SH0W0wFke3qW/kr9V3Aj148TnLMnMHbY2uIprLVCvP2+uskroH1MzzW4
usZ0CA87wSka2JGCwEShA5bsAYZWBMH67CkA0Ypwzjh3Jz1Uy/5ITm0kxzr/VwUW
HzYZXekgWU4FrrGgYXvOBsJe9yxPmyWp2SIY4rnk148yXfZlIOuNM756ZbSiW+bM
r7HmPHBf+SLSyC+6SCTy0as26aZ7d68hj0bm+UrmYVnhh31FDyT7ReLlMEoKIc7s
ZGRYPxoB4mTomvHZ6WzH+J5z5JDyma6BaAO699RUb/JRzn1KSPyftYTQdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCs7DS0rdIz8F4EN6M4THtw+IX2+MB8GA1UdIwQY
MBaAFLLZQB7KbIqTBtEAkrvgwuGVAOl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWIt
ZTEzMzJlN2YwNmZjLzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWItZTEzMzJlN2YwNmZj
LzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUwDYur5j
hNsxw6LUP2HEhox0qkbkgWBCAfegIDMM4LhJBQ8Xco5IANQzz2gDo94FFJn9zlff
k7VJe8Ry2ZdE02kLV9A3EBOcKCPjspWy6S5koiwvcNeYz+PbjB3XOajaLKgwrzu7
znM+SO/jjKBOgMp5N7zePSKF/4afpSBPfmXZwY4VxMauBQgvrlxE528HKwPzX7xk
UgtCef7xlGVpCSh+m7FnI02RPmf6/veGklcLG+o3OjB+srSuh1aehjyQCfv5bSPf
zdEi7ZA89L0yx1VHZfRRo2oOyjIDzGSGkpUiwl9Ub0/4snNhum71RmPo0V8nnKwH
V1FG27n0Zvr5dg==
-----END CERTIFICATE-----
Generated at Tue May 13 20:42:59 2025 by rpki-client