Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
File: st8A84zO2SGXmTB2yzaFvzK8Xmk.mft (raw, json)
Hash identifier: CTAEM4iUYD49sH4jL+DWWL7GzUBWJvBk711NiDfAyxs=
Subject key identifier: DD:F3:E8:C5:6D:0E:84:BC:FD:5A:21:AD:6E:7F:23:30:E5:C6:B3:1B
Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69
Certificate serial: 0196C201E7582BBACE6ED65A6E2702819AE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
Manifest number: 109F
Signing time: Mon 12 May 2025 01:00:26 +0000
Manifest this update: Mon 12 May 2025 01:00:26 +0000
Manifest next update: Tue 13 May 2025 01:00:26 +0000
Files and hashes: 1: gbTQ5TFLqYdv3bxMQXRQSRcMIoc.roa (hash: rJ5djAjgxTYzs8j0EQsFjkKUrs3CGg0sgiibLKW68Ck=)
2: st8A84zO2SGXmTB2yzaFvzK8Xmk.crl (hash: lOkln64e8HlIbh04tTSilWVs48207Zq+fDgA6ypkFLA=)
3: wu3L_A3dWSKUeaU4lbLH5tQFGhs.roa (hash: QMvHM8N7K9OdWcNx9rJFFp+Z7jXiktM21WFlvU4ZxMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:01:e7:58:2b:ba:ce:6e:d6:5a:6e:27:02:81:9a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Validity
Not Before: May 12 01:00:26 2025 GMT
Not After : May 13 01:00:26 2025 GMT
Subject: CN=ddf3e8c56d0e84bcfd5a21ad6e7f2330e5c6b31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:37:d5:ac:b7:f0:0c:4e:24:41:0c:93:b1:fd:
46:28:e1:cb:dd:61:28:97:c3:3f:ba:8f:3f:7d:1f:
9a:a7:2d:cc:a5:6f:c5:f5:85:b8:b4:b2:f1:7f:c9:
c9:b8:b3:df:ab:d2:ad:06:26:06:6b:ee:68:e7:c2:
c1:2a:bd:92:bd:ed:57:8b:fd:b3:08:00:6c:6d:eb:
11:3b:e3:b5:a4:45:0f:ed:a1:f3:f4:b7:b9:49:76:
28:7b:cb:cb:e1:2b:c3:3b:18:c6:e0:45:41:35:d0:
94:33:98:2f:cb:7a:09:e7:57:28:5b:ae:d9:a5:e8:
35:f7:e2:13:70:6c:d6:02:95:8e:b6:ae:d5:be:ab:
e9:ae:ab:c8:7c:1a:0a:2f:f2:c4:02:7c:18:53:c0:
7b:77:ae:83:3a:66:34:48:e2:db:82:1c:78:6f:54:
88:01:65:c2:6c:35:c1:26:9c:0d:6e:9b:99:1a:cc:
25:47:31:1c:3a:38:b4:63:2c:40:a5:39:f7:1b:e5:
f5:24:2f:be:13:e4:9f:83:ad:ed:08:f4:33:da:da:
a3:2e:c1:bf:ff:67:4f:27:ec:97:cf:c9:dd:9c:dc:
a3:3d:b2:4f:d7:cf:f9:3a:c8:fb:9e:8b:19:e5:38:
44:3c:75:d4:4d:08:cb:c3:29:73:d5:60:bd:1b:d1:
17:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F3:E8:C5:6D:0E:84:BC:FD:5A:21:AD:6E:7F:23:30:E5:C6:B3:1B
X509v3 Authority Key Identifier:
keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:e0:4a:8a:cb:f2:c6:7b:64:e9:f0:fe:3d:96:8f:a4:e5:18:
d4:32:92:9a:eb:45:9d:07:f7:9f:8d:a9:16:36:95:b8:79:8f:
aa:14:4a:12:0e:0a:db:1d:24:3b:83:1f:a0:ae:d1:c4:b6:e9:
f9:ce:60:dd:09:6e:90:9f:a9:f6:9b:d0:fe:65:5a:8a:35:cb:
c5:b0:be:17:f3:b5:d1:ba:ca:c9:29:16:a3:0f:01:5c:a6:e8:
04:b3:4a:3f:85:45:25:7a:73:f4:28:fd:04:6b:c8:a7:21:55:
dd:33:03:ea:04:e3:54:56:d2:63:20:15:fb:11:52:16:34:b7:
e0:b1:92:4c:63:5f:a8:3c:7d:84:34:28:7f:b6:ac:ad:ac:d1:
c0:12:c1:a3:60:73:42:f5:18:86:e1:0b:c4:8e:42:01:36:8a:
74:32:5c:cd:27:18:14:51:47:82:ab:9b:e1:fa:1e:3d:b4:f8:
75:3c:c4:a9:66:95:30:8e:46:d3:76:66:8f:66:fe:14:5b:f1:
d2:61:3c:2f:a7:95:b3:d0:27:6b:55:50:98:ab:f3:cf:58:2c:
db:43:98:0d:00:79:45:34:2c:cc:c3:f8:66:fa:3e:54:19:62:
20:f9:a4:fd:70:4f:d8:22:90:22:ee:c1:e0:f1:1d:b7:ca:fe:
b2:00:ca:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:22:50 2025 by rpki-client