Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: PLjBOcaapudW+p3nD3hjaVauR9KGjWTzsa+FnnX9kt0=
Subject key identifier: EB:0C:9F:6D:87:DF:04:59:EA:6B:C7:93:E6:1B:1C:19:C5:13:90:3C
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 0196A31C0BCD935F04FA0BA090C9A166D53D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 14F2
Signing time: Tue 06 May 2025 01:00:46 +0000
Manifest this update: Tue 06 May 2025 01:00:46 +0000
Manifest next update: Wed 07 May 2025 01:00:46 +0000
Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: DDGIp3V05/ttyMSGoEsClbr7MxyDuMRSF47idGAX1nY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 01:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:1c:0b:cd:93:5f:04:fa:0b:a0:90:c9:a1:66:d5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: May 6 01:00:46 2025 GMT
Not After : May 7 01:00:46 2025 GMT
Subject: CN=eb0c9f6d87df0459ea6bc793e61b1c19c513903c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:88:87:a8:eb:d9:d0:65:d8:94:af:3d:28:39:
41:1e:9c:78:7c:f0:e1:36:3c:89:e5:56:bd:14:5e:
55:58:f3:3c:6c:42:74:52:7c:87:5a:fd:8a:f4:35:
20:ec:5f:7c:08:9b:59:65:cd:30:c9:53:af:f3:1d:
31:7d:43:1a:7e:53:2c:0c:6c:66:1a:97:4e:32:db:
cf:13:ba:3e:e5:86:37:53:e5:d0:98:f2:6f:17:7f:
f8:7a:04:dd:ab:2a:07:d8:63:90:d8:0b:7b:52:31:
6e:f8:ee:31:8a:3e:be:a2:4a:d3:95:89:fb:e8:6f:
7d:e7:c0:53:4c:25:4e:51:cb:44:be:3e:c7:cf:3f:
46:87:bf:7c:c8:39:3e:61:1a:94:13:78:e6:a0:01:
5e:52:2f:5e:62:9a:60:fc:8a:d7:b3:c1:b5:a7:19:
32:c6:bc:48:1c:e1:6c:bc:2b:b6:00:9c:d1:36:03:
79:86:a0:d7:93:a2:c2:bf:e5:40:01:90:f1:46:0c:
3d:c7:8c:32:93:85:40:f1:9e:7d:60:58:19:b4:74:
93:06:9b:4c:68:c6:ad:a1:3f:e2:0b:ba:51:a4:55:
67:c9:13:48:92:40:dc:c1:59:d8:87:7b:ca:2b:d5:
d8:2d:93:39:0b:61:e4:ee:dc:ce:89:19:01:e5:26:
d4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:0C:9F:6D:87:DF:04:59:EA:6B:C7:93:E6:1B:1C:19:C5:13:90:3C
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:04:17:c3:33:e1:24:51:ae:a8:60:9e:f6:08:e4:01:7d:cf:
ba:16:c6:b4:00:cd:5f:d7:14:00:bb:dd:0b:f7:b9:d7:57:c1:
fb:2a:75:f5:56:67:51:3b:96:14:98:b3:18:ff:a3:ae:cc:e4:
da:5b:c8:1f:57:35:8d:58:f2:2b:04:95:27:12:9a:a8:49:e5:
bd:73:8f:2b:6f:ce:f8:f9:0c:3d:64:ab:64:65:68:ce:b4:c3:
45:de:fb:c7:b3:f9:75:90:de:30:ba:5a:a0:a8:94:68:16:18:
19:65:ed:dc:0c:c9:74:af:47:dc:b4:b8:5a:64:83:32:0d:ed:
a1:f3:6f:7a:9d:f5:77:bd:68:4e:dd:f1:55:8f:37:a2:14:23:
6f:82:88:82:7f:3d:59:06:57:6f:22:00:83:69:68:7f:4f:34:
79:a9:63:56:18:48:00:1b:a8:02:55:e6:a8:8c:8e:8b:d7:40:
db:4d:de:9a:83:e6:75:33:93:fd:32:1d:96:84:90:a5:e8:a5:
e5:03:a6:5c:00:89:9d:47:65:39:19:df:a7:1f:99:04:31:77:
48:5b:26:66:88:d1:07:f7:7c:5b:2d:93:a7:62:21:38:f8:96:
1c:2a:a1:36:42:45:36:7e:3d:4f:20:c0:df:99:b6:e9:65:75:
57:49:c1:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZajHAvNk18E+gugkMmhZtU9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZGIyYmZjZjU5ZDk5Y2E3MDgzMzcwOGZkMzAwMzJmMjNm
ZWY0ODUwHhcNMjUwNTA2MDEwMDQ2WhcNMjUwNTA3MDEwMDQ2WjAzMTEwLwYDVQQD
EyhlYjBjOWY2ZDg3ZGYwNDU5ZWE2YmM3OTNlNjFiMWMxOWM1MTM5MDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIiHqOvZ0GXYlK89KDlBHpx4fPDh
NjyJ5Va9FF5VWPM8bEJ0UnyHWv2K9DUg7F98CJtZZc0wyVOv8x0xfUMaflMsDGxm
GpdOMtvPE7o+5YY3U+XQmPJvF3/4egTdqyoH2GOQ2At7UjFu+O4xij6+okrTlYn7
6G9958BTTCVOUctEvj7Hzz9Gh798yDk+YRqUE3jmoAFeUi9eYppg/IrXs8G1pxky
xrxIHOFsvCu2AJzRNgN5hqDXk6LCv+VAAZDxRgw9x4wyk4VA8Z59YFgZtHSTBptM
aMatoT/iC7pRpFVnyRNIkkDcwVnYh3vKK9XYLZM5C2Hk7tzOiRkB5SbUuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOsMn22H3wRZ6mvHk+YbHBnFE5A8MB8GA1UdIwQY
MBaAFLLbK/z1nZnKcIM3CP0wAy8j/vSFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzkt
NzM0OTk0YzUyYzFmLzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzktNzM0OTk0YzUyYzFm
LzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQQXwzPh
JFGuqGCe9gjkAX3PuhbGtADNX9cUALvdC/e511fB+yp19VZnUTuWFJizGP+jrszk
2lvIH1c1jVjyKwSVJxKaqEnlvXOPK2/O+PkMPWSrZGVozrTDRd77x7P5dZDeMLpa
oKiUaBYYGWXt3AzJdK9H3LS4WmSDMg3tofNvep31d71oTt3xVY83ohQjb4KIgn89
WQZXbyIAg2lof080ealjVhhIABuoAlXmqIyOi9dA203emoPmdTOT/TIdloSQpeil
5QOmXACJnUdlORnfpx+ZBDF3SFsmZojRB/d8Wy2Tp2IhOPiWHCqhNkJFNn49TyDA
35m26WV1V0nBZg==
-----END CERTIFICATE-----
Generated at Tue May 6 07:56:27 2025 by rpki-client