Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: +EvUerZ1NuazkUUK37BfIzMvJXoEuQzAAMGwwWK3QXE=
Subject key identifier: 66:CC:E2:2F:0B:50:F4:8E:D2:81:FA:03:77:95:EE:BA:92:5C:DA:B0
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 0196C382315DB2EFE5AC0C5704D0B7302A4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 1537
Signing time: Mon 12 May 2025 08:00:11 +0000
Manifest this update: Mon 12 May 2025 08:00:11 +0000
Manifest next update: Tue 13 May 2025 08:00:11 +0000
Files and hashes: 1: PDkI417cWn_abbXt0o9HD-0vD6g.roa (hash: mxVaLWpnhSe1agkXL4xYhLyldi4/weSHgH61n+a6Rqk=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: lCH7p7ap/pB/9iBv5MdtKtjVv+nEYDpw4k1de/agygk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:31:5d:b2:ef:e5:ac:0c:57:04:d0:b7:30:2a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: May 12 08:00:11 2025 GMT
Not After : May 13 08:00:11 2025 GMT
Subject: CN=66cce22f0b50f48ed281fa037795eeba925cdab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1b:17:39:51:38:a2:4e:95:07:e0:c5:d0:12:
6a:a0:4d:e7:8f:ac:09:04:b3:78:a0:81:5e:05:68:
69:96:3d:fe:5f:8f:b3:51:b4:cc:42:a3:7b:31:e5:
46:93:b0:6d:cb:c4:a0:79:14:c4:a5:18:83:d9:22:
f6:88:d2:6e:85:96:16:ca:b5:a8:17:1a:39:51:13:
95:9e:6c:97:8c:c0:1b:fe:bb:e3:89:ee:2a:2e:5b:
75:a1:13:83:2f:3d:64:a4:f5:58:33:2f:39:e4:80:
d4:5e:8e:0d:dd:44:32:54:72:52:dc:6e:38:cb:46:
53:a1:a4:79:49:1c:38:34:f4:1f:c3:4a:c7:fb:9d:
b4:d0:7c:b1:6c:81:42:0d:15:6a:20:84:cf:d1:7c:
40:da:6a:2f:54:c1:05:6d:16:5f:a7:7a:da:99:9f:
9e:a3:d7:78:18:ed:36:bb:2f:57:ba:6c:60:ae:f6:
49:4c:b9:e6:2a:6d:dc:93:5b:89:e7:ff:c2:d3:01:
17:94:a2:21:2a:02:5a:08:05:03:e3:a2:de:92:be:
78:e0:a5:d1:cd:94:dc:0e:42:d5:f4:7c:77:be:21:
0a:de:c5:b2:28:1b:9b:ab:9b:e2:26:6b:61:f7:b3:
f6:c3:64:1b:27:9b:92:03:54:e4:b2:9c:37:5e:56:
52:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:CC:E2:2F:0B:50:F4:8E:D2:81:FA:03:77:95:EE:BA:92:5C:DA:B0
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:03:3e:b3:b2:8b:01:3c:52:45:64:b7:d0:af:f3:e5:ae:30:
9b:e3:2d:4a:f6:fb:4b:a7:46:15:da:ab:0e:12:63:32:aa:59:
c5:33:5e:fe:c7:66:56:09:f8:36:c8:7a:fa:f6:cd:90:70:be:
15:c4:40:2b:47:27:3b:4b:c6:02:60:0e:b4:2e:b7:0a:8d:60:
74:5d:4e:fa:84:3f:cf:3b:b0:3c:c8:f9:4c:d9:f9:36:ec:51:
1c:6a:c5:7a:9f:cb:23:23:42:7d:a2:42:20:6a:19:e3:84:e8:
80:01:11:26:c1:a7:e1:a1:a2:9d:a1:3d:ae:c9:da:44:8e:71:
d0:a0:df:c4:35:3f:02:6c:ca:52:07:1a:63:89:9f:b2:dc:85:
15:45:71:af:e4:38:6f:2d:e4:57:5b:65:7c:2a:d5:4c:af:6e:
46:3e:52:3b:62:80:c5:38:03:89:ab:b0:42:91:79:52:c4:cd:
cb:5c:52:4a:5f:1c:8f:83:3c:2a:6a:cb:20:0e:68:8d:04:ce:
0b:a9:8d:68:e2:50:70:3a:3b:9e:59:83:1d:63:82:f9:7a:fe:
2d:15:60:10:e8:ca:ce:06:13:d3:3e:79:d8:b7:6c:cf:d9:a3:
a7:d2:72:f0:67:a2:ad:2f:ad:c4:34:67:36:9c:28:81:67:c5:
b3:a2:57:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:12:28 2025 by rpki-client