Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json)
Hash identifier: oC4zAnhOrI62Bc9urBaChZK6w8GtIySNbPJH/OiddNU=
Subject key identifier: A7:93:A5:B7:B0:FC:2C:9E:E3:CD:17:82:7A:14:6E:5E:D0:2A:AE:1C
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 0198D6988176A017B76311B781B88DC009FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
Manifest number: 1139
Signing time: Sat 23 Aug 2025 11:02:55 +0000
Manifest this update: Sat 23 Aug 2025 11:02:55 +0000
Manifest next update: Sun 24 Aug 2025 11:02:55 +0000
Files and hashes: 1: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (hash: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=)
2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: 0/GYCKDPC7WGsJmQW5ZzgoEZDFvefrBQs/t669lYkF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:81:76:a0:17:b7:63:11:b7:81:b8:8d:c0:09:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: Aug 23 11:02:55 2025 GMT
Not After : Aug 24 11:02:55 2025 GMT
Subject: CN=a793a5b7b0fc2c9ee3cd17827a146e5ed02aae1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2f:48:1e:ca:79:e5:b0:ea:0b:89:01:86:ce:
da:2a:28:f4:07:91:9e:76:74:e0:a3:9c:cd:45:4f:
c4:a4:f6:de:ca:0e:9e:fa:4d:95:2f:16:0e:c7:74:
12:b6:71:c2:a0:e7:a6:cd:2a:97:53:c6:d2:b4:b3:
54:e8:0b:b1:cb:bb:f1:61:ed:21:f1:78:f5:83:1d:
39:a4:da:40:15:09:20:2a:bf:0a:64:20:71:b2:60:
1f:ac:3c:1d:07:36:41:c6:e0:2e:84:fc:df:ca:93:
c6:9b:0f:ad:ed:fa:d8:ab:a2:0a:7c:b3:eb:83:f5:
04:37:18:4f:ed:1e:f6:76:0d:37:1a:fc:83:4b:49:
92:8c:09:26:6e:07:59:e7:6f:cc:ad:27:de:ae:8b:
52:73:a5:fe:69:83:bb:05:34:ed:26:31:6a:a9:27:
d8:97:9a:6a:1a:c7:99:fc:46:75:83:e9:21:6d:7c:
81:e6:58:7b:d8:b2:86:49:b8:3e:43:47:dd:72:d5:
f5:2f:ce:99:7c:2a:d9:d2:89:35:72:78:09:75:e9:
59:15:46:9f:12:10:13:ad:25:5a:7e:64:87:65:35:
a9:9e:99:0a:75:16:08:f0:91:dd:b5:fe:3d:72:48:
65:30:55:7b:43:7e:60:82:04:97:aa:99:98:1c:b3:
53:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:93:A5:B7:B0:FC:2C:9E:E3:CD:17:82:7A:14:6E:5E:D0:2A:AE:1C
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:bb:80:c7:46:2b:43:ba:5d:11:54:1a:aa:a3:89:f3:80:9d:
5b:95:9d:f7:e9:98:eb:ca:7f:42:ff:f0:0e:e2:10:36:74:87:
b2:c4:b1:5a:6f:95:f0:8f:bd:24:0a:52:ae:80:96:07:9b:59:
e7:6c:be:d7:65:cd:49:fb:86:e7:7f:81:ce:35:22:10:2c:2e:
38:0b:fa:3a:47:6f:77:2a:fe:75:b2:a5:7a:bd:70:18:63:47:
54:e1:79:23:db:5c:41:46:96:91:b4:32:8d:e6:f6:93:af:15:
fd:ef:a6:c5:73:8f:75:6c:c6:2a:c4:7e:fb:b6:b8:68:d3:76:
2c:e1:e2:f1:a1:fa:08:19:aa:c4:e6:db:55:af:f2:3b:ce:71:
94:94:1f:9c:97:61:8c:4e:34:85:3e:93:67:92:b7:28:14:6d:
9d:7a:3c:c6:55:7a:96:6f:94:ea:66:d9:56:97:3c:dc:2e:b0:
ef:1b:3d:f5:52:32:1e:7a:1a:ce:70:d7:8f:ea:08:59:45:3d:
b0:51:ed:f3:ba:6e:e4:e5:f2:82:80:c8:63:d1:82:73:c1:ba:
06:c0:58:b8:f7:f8:a2:3a:2f:78:67:c4:c3:c2:49:f1:db:5b:
62:b9:64:7d:de:ce:f4:37:c0:3f:4b:72:95:27:33:dd:1d:2b:
3d:9f:04:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:31 2025 by rpki-client