Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: X/pH4AxPTI8YJ0gDBLaU0ZpolO8tQX4MWN96HW1B6tQ=
Subject key identifier: BF:4A:71:85:2B:CB:81:F7:8A:4D:FC:3A:21:2E:C1:91:CC:6C:23:18
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 01989592538D38498C7D54DA5637DAD9753D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 1629
Signing time: Sun 10 Aug 2025 20:00:51 +0000
Manifest this update: Sun 10 Aug 2025 20:00:51 +0000
Manifest next update: Mon 11 Aug 2025 20:00:51 +0000
Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: tltXhmc5QbURV//YFcOjHbT63miu9qwVETdPHsXtvfI=)
2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:53:8d:38:49:8c:7d:54:da:56:37:da:d9:75:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Aug 10 20:00:51 2025 GMT
Not After : Aug 11 20:00:51 2025 GMT
Subject: CN=bf4a71852bcb81f78a4dfc3a212ec191cc6c2318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:62:69:ef:72:b7:fb:a6:18:55:e0:84:56:75:
cb:d6:b9:6b:51:f7:69:76:df:84:0c:33:37:40:f2:
a1:e4:58:15:85:9d:f6:f6:4a:6e:c9:73:f7:12:00:
df:2b:d2:dc:bc:2b:ca:6b:21:b0:46:ef:21:38:79:
d0:40:66:87:89:25:05:85:8e:8f:3f:1c:65:c0:9f:
02:a0:77:04:82:8c:4b:28:6a:7f:e8:fc:75:14:6f:
1a:8b:9e:d3:be:96:c9:23:da:85:8e:a6:f7:cc:b5:
ff:38:71:d7:ff:ac:4e:9d:46:e7:bf:dc:96:7b:c5:
e1:8b:34:58:50:a0:a6:31:18:83:ef:83:06:04:50:
7c:ea:ef:b0:7a:a8:c4:ba:a5:cc:48:4d:7d:f9:30:
58:86:bd:73:83:ff:39:7a:32:27:e7:35:1b:cf:c9:
a6:ca:96:5e:a2:5b:68:34:0c:9a:66:05:16:07:5a:
ac:14:10:d8:f0:f5:54:4d:e4:78:25:2a:61:b6:41:
77:db:ec:8c:15:06:59:c4:26:cf:a4:21:0a:27:f3:
3b:5f:8f:f5:c8:5c:06:be:11:d8:26:47:ee:6f:8f:
56:34:c1:8e:18:49:91:b3:65:63:3f:38:58:f9:ed:
7f:71:24:0c:11:34:36:dd:4f:23:36:1a:e2:d5:78:
0a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4A:71:85:2B:CB:81:F7:8A:4D:FC:3A:21:2E:C1:91:CC:6C:23:18
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:7f:74:ad:45:00:3a:16:c0:03:9a:40:04:ae:86:bf:32:44:
a1:ff:f5:03:8f:6c:11:1b:f9:ba:27:e1:8c:45:22:c8:64:b5:
4d:ae:c0:90:46:97:e4:d8:26:33:b5:b9:a0:b6:12:be:6d:f6:
dd:0b:2a:05:77:20:92:ec:b4:98:65:ac:20:c3:8c:47:f2:5f:
81:62:69:06:78:35:26:b7:f1:9c:66:8a:54:66:2a:d8:5b:c4:
5b:25:7a:d7:f3:12:fe:bf:30:4b:9e:14:0c:d1:b8:bb:56:e7:
73:71:cc:3a:5f:e6:be:dd:e5:eb:46:e6:c0:ea:26:81:09:63:
9f:f4:e9:a4:a1:b1:f1:c3:1f:d5:fc:4f:8e:7d:3c:b1:62:26:
a4:84:5c:be:16:cc:e6:de:ba:82:b3:eb:ab:4f:3a:1e:30:16:
0b:8f:30:3d:46:e9:1f:b2:78:17:1c:05:70:0d:f0:65:26:af:
18:d6:33:ca:48:30:18:f8:3e:63:be:98:5b:7c:63:8b:41:4f:
59:f7:32:7e:43:19:a7:69:cf:3e:72:78:38:8e:b0:b8:b0:dc:
f7:c0:5b:24:89:05:63:f8:4c:5d:58:1c:bb:a5:58:31:dc:9f:
72:7d:2e:91:1e:29:32:ce:56:e1:39:2c:20:92:85:1b:cb:3e:
62:a3:5d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:12:52 2025 by rpki-client