Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: W5QuMQzlQk6tq+oB45twM0VHq8JOkD4OeNsnBupKlmw=
Subject key identifier: B9:B1:EB:F0:9C:75:26:F6:A8:B8:18:C7:53:35:98:BA:69:ED:2E:54
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 0198D5159807B355C22F39C4696DC083F8DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 1615
Signing time: Sat 23 Aug 2025 04:00:18 +0000
Manifest this update: Sat 23 Aug 2025 04:00:18 +0000
Manifest next update: Sun 24 Aug 2025 04:00:18 +0000
Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: zzGx+jL6ZJ4KaCOVoHB19Xl9fyba8OVyJUXSAsA6PYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:98:07:b3:55:c2:2f:39:c4:69:6d:c0:83:f8:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Aug 23 04:00:18 2025 GMT
Not After : Aug 24 04:00:18 2025 GMT
Subject: CN=b9b1ebf09c7526f6a8b818c7533598ba69ed2e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:38:ef:42:70:79:83:92:03:35:b1:f0:fc:a6:
55:b5:87:3c:96:59:c4:69:d3:35:0f:a3:bd:0b:a3:
98:49:a9:e2:75:6b:58:ad:d7:88:bf:d1:b5:65:c9:
09:c5:c9:19:3e:be:29:f7:5b:0c:47:1e:32:09:54:
d2:38:e2:6f:6d:d8:d1:26:09:f0:01:62:1f:08:35:
88:ae:d7:0a:8f:23:b6:13:65:14:a1:c3:e3:38:f6:
53:a8:53:46:e0:95:87:98:30:eb:35:bb:57:aa:3a:
c7:4c:8b:da:80:8c:cf:16:c7:86:8e:58:58:e2:1e:
0e:61:fc:e8:00:c0:bd:70:72:07:ee:f3:a0:b4:51:
8e:08:ad:21:f5:bb:94:3d:95:7f:34:88:60:b5:df:
02:14:4a:18:f3:8d:b1:77:a1:8e:60:cc:92:f2:f0:
f8:d4:60:bc:24:e8:c7:e1:24:d6:e9:eb:1e:47:2c:
f4:67:1a:74:5b:f2:9b:89:69:7c:cd:7d:f1:41:19:
bc:d5:db:cc:0a:b2:1c:63:b8:cf:be:85:6a:65:c8:
bd:59:a6:1e:e2:d0:37:69:58:18:5f:be:e5:42:39:
00:b7:dd:ad:6c:80:23:a8:e1:10:9c:75:1d:4c:c4:
16:a7:69:a3:ba:7d:77:7d:50:cc:c0:2c:b9:44:2a:
f9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B1:EB:F0:9C:75:26:F6:A8:B8:18:C7:53:35:98:BA:69:ED:2E:54
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:5b:2b:fc:5b:6d:df:98:fe:f4:ed:39:d8:62:21:84:96:fc:
1d:76:53:9d:28:13:82:7c:7a:53:0a:74:0c:99:33:af:02:b2:
07:8b:96:15:f8:20:f2:24:39:28:55:e5:b5:14:7b:f2:90:e4:
50:9b:9d:53:5a:e4:c4:c6:79:1e:01:4f:74:8e:5a:b7:10:47:
68:e4:e6:7d:72:c6:0e:db:b7:fc:3c:7b:24:34:8d:20:a5:02:
24:d1:de:24:e9:65:3a:1d:cd:9a:69:96:1c:ca:67:59:b1:c6:
28:39:67:5f:4b:c8:a9:a0:39:cb:d0:d9:b0:76:43:85:ce:0b:
6b:81:0b:b1:1a:94:53:24:73:2a:38:4e:7f:31:70:fa:7e:43:
9c:8f:5f:2f:42:37:6a:86:05:89:41:57:45:d5:80:20:0f:8d:
7e:0e:e5:70:6e:2c:69:e8:51:68:ae:57:7d:a6:08:02:d4:f4:
58:2f:4b:2a:d7:b9:10:1b:55:ba:cb:38:ce:b2:ca:a3:57:dd:
45:ef:b6:9f:00:c8:13:dd:c6:72:22:52:b6:ca:02:32:2b:f1:
51:f2:5d:0a:36:2a:54:9c:d1:09:e6:f4:89:e9:13:75:e8:c2:
c3:3a:85:56:ff:92:68:61:20:c5:13:85:6b:e6:c9:f8:1d:6d:
ab:82:a8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:09:54 2025 by rpki-client