Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: ekvwt/RwfGQ1dQf+ByEpF9ZnTTIWcmnFs2s7AsKDb78=
Subject key identifier: CB:32:94:BD:2A:18:0F:17:0B:87:6E:3E:9E:82:12:A8:F7:9E:AD:21
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019770AC6EFB693A602876365C06287CF083
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 23:00:38 +0000
Manifest this update: Sat 14 Jun 2025 23:00:38 +0000
Manifest next update: Sun 15 Jun 2025 23:00:38 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: MuGulHrL5T9AxlCfwQ5U8M4M14Scu06923ia3Q+o0zE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:6e:fb:69:3a:60:28:76:36:5c:06:28:7c:f0:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Jun 14 23:00:38 2025 GMT
Not After : Jun 15 23:00:38 2025 GMT
Subject: CN=cb3294bd2a180f170b876e3e9e8212a8f79ead21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bb:99:17:ff:da:bb:b9:3a:37:c9:bb:b4:f5:
b8:45:70:b5:d8:71:8a:42:71:45:0a:b4:ff:97:fa:
e0:f0:7a:47:14:2b:15:92:1e:4c:26:5d:e2:14:6a:
3b:a0:bf:ff:55:77:b1:4c:1f:8c:1b:df:8f:5d:d3:
8d:f8:d1:e7:dc:63:7f:f5:f4:01:db:66:6f:50:be:
5a:d5:21:43:70:4b:03:c7:8d:54:17:56:e1:e2:b7:
0e:c5:70:06:84:e6:84:b1:2c:c3:a6:ac:91:f5:73:
20:ad:b9:2b:7d:95:9e:42:d8:ae:29:1d:92:30:39:
67:39:e3:7b:6d:56:6d:82:59:7d:f8:fd:82:4e:a8:
2e:28:62:37:44:18:48:af:c0:66:dd:67:00:24:78:
a5:04:e2:c5:18:bc:0a:65:9a:1a:07:ba:44:a5:70:
96:f9:f2:18:63:8f:0b:e6:12:51:c3:b4:1b:12:9a:
df:36:f0:76:4d:05:42:c2:14:5c:26:c9:df:18:ba:
c7:cc:a4:2c:c9:89:1a:85:b4:74:58:f1:fe:2d:9f:
67:89:6b:88:0f:cd:93:2d:7d:ab:76:22:bf:82:d3:
3b:89:7b:a7:94:ec:7d:0a:a9:ba:60:54:e2:2b:12:
59:e4:33:9f:97:88:5a:98:01:83:71:9e:4b:76:30:
9e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:32:94:BD:2A:18:0F:17:0B:87:6E:3E:9E:82:12:A8:F7:9E:AD:21
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:31:92:07:4a:7d:65:b2:64:74:83:91:8b:b9:fb:6a:f9:bc:
42:82:fa:ed:a7:72:01:a5:50:01:8a:37:4c:a7:9d:10:f0:bb:
bf:4d:69:31:fc:b9:e1:6b:1d:7b:b0:16:8b:4d:41:91:5c:21:
f5:49:1a:40:6b:1e:6e:3b:fc:3e:bc:87:51:68:17:98:af:72:
87:be:ba:46:51:28:93:3d:11:44:f2:9e:99:70:28:d9:a3:d5:
8a:17:3b:d0:e5:d0:45:c5:66:60:a9:7b:6e:76:36:3c:0c:bf:
14:15:0b:6f:74:d8:78:db:f7:8c:4c:64:49:1f:82:cc:45:fe:
21:87:29:bc:3a:60:94:ae:73:ec:49:19:bb:b9:aa:50:de:8b:
6e:74:61:a0:49:aa:df:03:a7:28:dc:35:e9:67:9c:cb:dd:ac:
fb:ab:3e:f4:94:70:76:0f:55:c4:ef:48:de:32:db:aa:bd:83:
6d:32:62:c4:60:11:de:89:8f:c5:89:17:6d:c0:c0:54:e9:83:
2b:56:c9:9c:6c:f3:36:49:e2:0d:d6:0a:9d:df:ff:2b:cc:d5:
30:55:d3:eb:99:d7:11:c5:3b:da:02:ed:08:72:df:99:b1:34:
62:ca:3f:7a:fb:67:5b:5e:15:02:4c:35:52:5b:77:b5:99:1b:
2f:b0:b0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:04:44 2025 by rpki-client