Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: 1dj7eSLnPmOFfSWDfDyeXYzU615QiPG+3E3IAlk5k9Q=
Subject key identifier: 7A:97:3C:FA:C0:47:77:36:D7:7B:94:77:67:90:47:D7:74:B9:7B:FB
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 0197B745B272C47036ED0593B4DAD27B1CB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 1581
Signing time: Sat 28 Jun 2025 16:01:27 +0000
Manifest this update: Sat 28 Jun 2025 16:01:27 +0000
Manifest next update: Sun 29 Jun 2025 16:01:27 +0000
Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: ZBfj9st8hNQWS7I+yA0uulkAmoSsbgYmHNFEwSgM3AQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:b2:72:c4:70:36:ed:05:93:b4:da:d2:7b:1c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Jun 28 16:01:27 2025 GMT
Not After : Jun 29 16:01:27 2025 GMT
Subject: CN=7a973cfac0477736d77b9477679047d774b97bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a5:53:8b:dc:a8:ee:27:f9:47:6f:ac:3c:f6:
e9:f5:6d:fc:6c:37:d5:63:de:e3:5b:69:a1:24:a2:
52:79:05:fd:0a:46:da:97:ea:12:9a:f4:f1:76:87:
9b:97:1e:68:36:c2:af:d4:eb:c1:6c:fb:13:75:aa:
e4:70:bb:d4:31:42:34:c2:74:ad:4a:83:c1:32:33:
de:75:4e:0c:ed:36:08:4d:e3:86:28:09:73:13:d0:
1c:ea:e0:bd:27:27:38:44:7e:83:6b:5b:97:e0:0e:
87:89:a4:00:fd:a8:68:01:d7:e0:50:3b:af:41:74:
f0:bc:d9:f5:12:c1:6d:71:de:19:21:be:a9:57:b5:
da:fa:11:04:85:be:ef:f5:2b:ca:a5:8a:79:c9:f7:
69:f8:65:e3:46:e2:99:13:46:bd:92:d4:52:59:3d:
2f:4f:ae:6a:79:b2:86:9d:2e:e3:b6:8f:4d:11:83:
00:95:f7:d6:ef:d8:28:aa:21:1c:4a:98:87:45:2a:
ec:08:10:a3:63:2f:72:dd:52:77:8d:20:17:16:c6:
c2:0d:f7:73:a0:ca:e2:15:2d:a6:34:bc:b8:e4:d8:
33:0d:c3:a6:22:64:23:be:7e:10:3f:fe:b8:dd:f0:
91:af:f4:7a:46:f6:e9:cd:de:ee:b8:b7:bd:68:7d:
26:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:97:3C:FA:C0:47:77:36:D7:7B:94:77:67:90:47:D7:74:B9:7B:FB
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:3f:a1:a9:79:34:54:46:2e:46:ab:c2:50:25:58:9a:9b:05:
6b:7d:e3:5b:d4:9d:30:13:e6:65:21:54:57:45:71:df:be:05:
9e:a8:4f:81:7c:67:df:6b:1c:46:27:49:45:1b:4b:8d:11:b0:
7c:58:4b:5b:21:40:60:e4:19:c1:b2:31:04:9a:ce:bb:90:f3:
42:af:0e:6a:60:0c:bd:c7:8b:e7:81:d3:8d:12:fd:5d:18:f0:
2c:91:17:45:d0:1d:46:a6:25:8f:9a:53:81:6c:9e:dc:4e:7a:
9b:cc:81:2f:88:ec:35:29:5c:0a:4c:2b:61:f3:d8:78:1c:e2:
53:71:c6:33:2b:d8:92:9c:ca:78:41:e9:02:7c:cc:90:23:7f:
bc:f6:87:8c:c8:c4:ee:ed:59:64:94:6e:95:25:30:da:77:7b:
84:ca:4d:45:f3:5a:cd:7f:cc:28:15:3e:9e:ea:a5:16:b6:b9:
50:15:7a:88:97:2c:c9:04:bf:78:30:a2:f9:ca:7d:7b:6c:7d:
de:b6:01:ff:22:ad:39:20:70:bb:a2:5b:fe:e4:05:9b:60:74:
4d:18:ae:98:7d:09:10:b1:52:50:0a:d8:c4:66:0e:c8:ff:dd:
b3:fd:19:12:94:db:9a:98:1b:70:56:c4:41:22:68:2d:0a:4b:
28:12:3c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:02:01 2025 by rpki-client