Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: 7jyptAoBeGkx9xgCz8o7zKbKVGqnXiCKblwY7SvsIzM=
Subject key identifier: 13:D3:FF:C3:E9:B1:F3:88:49:35:BE:40:BC:16:0C:ED:00:31:2A:D1
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 01976A3CE9C1CBD84C20E76D6EFC3C4AABCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 17:01:06 +0000
Manifest this update: Fri 13 Jun 2025 17:01:06 +0000
Manifest next update: Sat 14 Jun 2025 17:01:06 +0000
Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: ajpLipQg4YPsrM28x0l/HGBJNBp6i1CUXrRql9zhCX4=)
2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:3c:e9:c1:cb:d8:4c:20:e7:6d:6e:fc:3c:4a:ab:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Jun 13 17:01:06 2025 GMT
Not After : Jun 14 17:01:06 2025 GMT
Subject: CN=13d3ffc3e9b1f3884935be40bc160ced00312ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:60:da:53:4c:e6:7d:2a:67:27:b9:dc:e8:a2:
71:cd:f7:e2:62:0d:d6:f0:43:37:3b:5a:cf:1d:13:
1b:2c:33:5c:88:c2:4b:a4:5d:e0:19:b7:97:50:ea:
89:1f:f2:67:a8:28:c2:99:73:a6:af:e9:67:ee:f3:
94:3d:42:00:4c:12:a3:8c:2b:33:d1:e1:39:de:b6:
24:d8:ff:f4:fd:bc:dd:25:38:f5:4f:60:4f:4f:b1:
c6:78:13:67:01:2d:dd:8d:da:7d:d7:ae:1e:08:8c:
1e:ae:f7:ce:6a:88:a2:b9:11:f6:ca:c1:5e:71:96:
cf:db:90:33:9f:46:87:d0:75:63:b9:6a:ad:22:c6:
cc:09:48:62:ab:fa:49:44:63:2c:53:e4:e9:cb:a6:
6e:12:4f:40:a9:2c:3f:ed:69:da:67:4d:de:85:75:
29:88:da:7a:90:54:87:8f:6c:20:0c:3f:60:16:75:
69:b8:20:b7:9a:13:5d:cb:e8:d1:37:33:de:72:4f:
6c:66:89:1f:56:ae:f0:79:9b:1b:2a:41:75:d3:93:
2a:cf:58:44:a8:da:8d:1b:8f:75:52:0f:0c:63:64:
d2:37:09:16:ab:ef:3b:82:1f:1a:0c:a5:01:9a:4d:
60:85:8b:cd:39:33:fc:bd:ba:c3:4f:65:12:3a:3f:
32:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D3:FF:C3:E9:B1:F3:88:49:35:BE:40:BC:16:0C:ED:00:31:2A:D1
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:a3:89:e2:f9:d0:c9:94:b3:0e:e2:d6:35:d0:15:0d:55:1f:
bf:54:cc:55:ac:06:31:7a:37:31:87:1f:3f:19:e7:d0:ca:09:
90:e5:26:1c:36:e8:3a:1a:d7:ec:eb:75:4d:d2:e4:8f:d1:07:
52:39:8c:5f:0c:6b:62:ad:4f:c5:09:99:c7:63:16:fb:b5:a6:
16:61:13:cf:30:5d:19:6b:9f:66:18:96:4b:fc:4a:e8:13:e6:
3c:ca:53:fc:4f:de:96:f0:2c:38:0d:12:d4:a1:3c:25:7a:7d:
17:e8:f5:8b:98:99:12:09:cd:0f:6b:fc:0a:98:02:58:4d:c8:
75:d5:4b:b0:72:28:17:39:89:c9:3f:09:0b:3a:38:db:4d:95:
4e:64:06:b7:04:6b:cc:12:c6:8c:b3:d4:ac:92:ca:d0:cd:65:
be:e6:f2:40:12:73:3c:64:8a:0d:ac:53:4a:39:4d:7c:17:52:
58:08:44:62:ad:27:e3:7a:4a:e0:7a:f4:54:62:c0:30:db:20:
53:ac:a2:0d:dc:2a:ec:a6:64:25:00:04:85:46:72:67:5a:e5:
02:73:0c:8a:11:b0:11:47:14:8d:0d:ce:1c:f3:1c:6f:a2:79:
5a:d8:70:af:a3:38:9d:9c:6b:1c:04:d2:24:09:e7:7e:9e:3c:
51:d8:55:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:03:12 2025 by rpki-client