Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json)
Hash identifier: PItYMPVzvkU4ZwIPp26DVJuOsbYO08GIvIO405HOcK8=
Subject key identifier: 55:96:3B:A4:E2:92:5D:CF:65:C6:77:83:72:31:B5:56:A9:AC:DA:A6
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 0197C26DAA2BD304C04220E9A235693D89DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
Manifest number: 10AA
Signing time: Mon 30 Jun 2025 20:00:56 +0000
Manifest this update: Mon 30 Jun 2025 20:00:56 +0000
Manifest next update: Tue 01 Jul 2025 20:00:56 +0000
Files and hashes: 1: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (hash: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=)
2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: PWG1DvFFJcjauqHy5EHMzle3XivZNJsGusQL0SXzVwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:6d:aa:2b:d3:04:c0:42:20:e9:a2:35:69:3d:89:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: Jun 30 20:00:56 2025 GMT
Not After : Jul 1 20:00:56 2025 GMT
Subject: CN=55963ba4e2925dcf65c677837231b556a9acdaa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d6:1b:8a:ee:00:d5:df:2b:cf:ca:5d:50:a8:
e8:45:b5:b7:48:7c:98:e6:5d:45:62:f8:64:f6:a5:
8e:fb:05:86:e4:ca:ec:46:c5:e2:12:2a:97:ae:fc:
7c:a7:4b:ed:f6:d1:08:5b:c1:f2:41:85:d2:f1:c3:
3f:29:73:04:00:a6:bf:98:8e:4e:7f:57:07:b6:79:
00:d9:ca:67:b5:28:56:b3:25:53:06:a8:15:3a:3b:
83:43:c7:ee:e3:02:6b:e3:3a:85:11:4a:20:75:23:
78:49:17:01:57:71:9d:98:f2:95:74:f2:25:ca:14:
17:54:78:4b:8f:5d:58:60:6f:f0:55:7a:91:51:c0:
4b:3c:38:79:86:04:6a:71:0d:45:cb:ef:72:cd:8a:
1d:a5:7e:01:92:76:a1:9e:7f:1f:52:dc:4a:4c:9c:
15:99:7a:6f:fc:35:df:fb:63:4a:40:f2:8e:be:74:
f5:21:eb:f0:a1:a0:97:58:82:97:2c:37:7b:69:9c:
85:b9:c8:c4:f1:bd:5f:b5:e0:8f:69:49:87:a8:a4:
33:27:8a:b2:1c:f3:41:3f:a3:56:f4:65:e6:aa:96:
ce:d7:0d:70:9e:6b:c5:d4:18:55:69:43:a2:4c:72:
b0:68:ed:5e:46:f5:fc:a6:bc:0c:2c:84:b3:cc:0e:
a6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:96:3B:A4:E2:92:5D:CF:65:C6:77:83:72:31:B5:56:A9:AC:DA:A6
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:3f:e8:84:d6:64:1e:f5:dc:6c:1c:00:51:6a:63:0e:26:ca:
6d:e4:2c:7d:00:f0:3c:8a:be:86:61:4f:60:57:0b:59:f4:b3:
f5:2c:3e:0e:9c:44:f6:33:ca:79:fa:a9:a2:0c:67:ce:04:6f:
2e:b9:0c:1c:f6:ab:fb:7f:a3:b0:72:c3:47:0a:b3:18:73:9b:
d2:1d:f8:e8:e2:32:5c:53:cd:00:2e:bf:22:f0:2d:45:c6:1f:
d9:6b:a7:4a:d0:7e:9d:56:8f:d9:e3:df:07:b5:f9:16:9d:a9:
40:3f:a9:d5:c6:22:f8:2b:94:b4:2b:11:0e:2d:42:5e:1f:5a:
2d:25:8f:c5:24:62:e0:2f:c8:12:fe:84:b4:31:27:cc:76:af:
07:87:b4:f0:fb:99:be:43:7a:3d:95:fd:3b:a1:c8:bd:b5:e9:
61:07:85:97:da:49:ce:76:d8:94:fa:9b:6e:2f:59:86:de:dc:
3e:0a:01:ef:e6:c3:1f:57:7d:27:20:e4:89:68:4a:1a:d2:39:
9a:6c:d2:56:65:05:30:44:52:74:04:fa:ed:ba:6e:d1:ae:53:
f5:cb:3b:f0:d1:78:43:00:d3:25:dd:5a:4a:92:9d:9d:64:fb:
1a:d8:2c:6e:9b:69:60:7b:bf:e0:b5:f8:dd:dd:dd:89:7d:8e:
fa:9a:7f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 05:48:10 2025 by rpki-client