Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json)
Hash identifier: TK/gwfFe5UwDGZzs65x61FAbCCQJVkf76s8HErAF16Y=
Subject key identifier: E5:2C:B3:06:9F:E0:01:57:25:36:AE:4B:22:AA:AB:9B:FD:14:AC:1C
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 0196B9DAB0C7A89707CFE11346E5D50FE39B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
Manifest number: 1021
Signing time: Sat 10 May 2025 11:00:39 +0000
Manifest this update: Sat 10 May 2025 11:00:39 +0000
Manifest next update: Sun 11 May 2025 11:00:39 +0000
Files and hashes: 1: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (hash: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=)
2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: B2D292ziR/gVDriKFRGp9XApMjBgMd/i1+/u+iLHxRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 11:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:da:b0:c7:a8:97:07:cf:e1:13:46:e5:d5:0f:e3:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: May 10 11:00:39 2025 GMT
Not After : May 11 11:00:39 2025 GMT
Subject: CN=e52cb3069fe001572536ae4b22aaab9bfd14ac1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f5:ab:5a:a3:0e:05:08:e2:19:39:9f:b0:64:
fc:54:04:ea:78:53:63:61:3a:8c:bc:f8:d9:c2:5a:
d7:38:d5:5a:9b:f6:af:4e:2d:c4:6e:63:74:fc:f9:
61:ff:35:89:a3:30:ab:b5:85:3f:1a:b8:a8:46:c4:
fd:bf:5e:20:14:3f:eb:31:3b:4e:ae:ad:ac:2d:c2:
12:49:a8:57:d0:c8:5d:d8:b6:88:3b:64:64:78:2a:
fe:bb:49:bf:86:44:df:aa:7f:60:46:4d:87:1b:50:
9e:e9:6d:8f:bc:7f:9f:eb:6e:e4:a9:91:33:e8:b4:
b8:d2:31:d6:0f:6b:c1:86:41:fb:4c:99:61:77:9d:
e7:38:00:ed:10:da:99:8b:52:be:32:6f:e3:32:f5:
a5:83:d4:8d:9e:c8:e6:08:5f:98:f2:12:8f:e6:43:
b3:e1:30:32:8b:31:bd:59:2e:e0:44:c1:76:31:a1:
da:2f:5d:6d:5c:e7:fb:2a:bc:e7:b3:03:36:48:ac:
5d:a9:97:7d:41:1d:a1:38:3b:ce:09:1f:ce:25:4a:
84:c7:29:ef:99:26:74:3e:a9:8e:ba:6c:a1:a8:45:
b5:13:94:c2:31:f2:6a:f6:35:37:bc:7d:5f:82:82:
07:bc:f9:09:47:d7:1b:ca:9b:cb:06:67:04:a5:01:
1f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2C:B3:06:9F:E0:01:57:25:36:AE:4B:22:AA:AB:9B:FD:14:AC:1C
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:6f:cd:03:e9:20:da:32:0e:55:c8:01:41:3f:63:6c:4c:96:
4e:6b:47:1a:0b:5f:4d:1b:3c:de:85:a4:18:0c:ee:3f:e6:e5:
4e:57:74:a6:29:03:6d:a9:4c:77:7f:35:3b:d5:7a:9f:8b:c6:
79:2b:40:22:fb:27:79:e2:6d:fc:8e:36:3f:29:31:79:17:21:
04:1e:67:83:c3:8b:8a:7f:58:d2:ac:78:26:a4:74:59:00:58:
01:e3:06:5c:ea:36:97:64:d3:7c:6a:e8:60:43:2c:73:38:94:
31:45:5b:74:c5:07:28:0e:b5:c0:3c:4e:67:0e:6b:1c:58:e3:
3a:8e:34:85:b7:57:a2:58:ac:66:0c:34:53:c4:98:f6:4b:ea:
e4:98:b5:c0:71:27:9b:1c:3d:2a:e7:5b:92:dc:5c:9f:0f:10:
38:1f:de:c6:de:bc:64:d8:8d:05:0a:a1:50:fa:7d:64:65:41:
7b:9e:0d:d4:b8:5e:e8:35:4a:e1:a3:6d:ff:af:1b:2b:f7:b7:
3b:84:2a:8e:43:5d:16:22:9a:8e:71:9e:7c:d1:62:2c:77:8d:
8a:45:db:7a:08:1d:da:d0:d1:f3:24:9c:34:df:9a:78:50:39:
7b:8b:80:b4:c9:7e:de:1e:38:ec:1d:6e:20:4b:52:2d:24:bc:
06:7d:e8:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:40:35 2025 by rpki-client