Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json)
Hash identifier: gbJguW/eFgL/z3CKQsNFTDqKG3mzS7j9K0e6QeIoDe4=
Subject key identifier: B1:31:F5:2E:B8:38:7D:FA:F0:7E:E9:74:DE:E1:85:D3:01:0E:0A:1E
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 01967FEAC16ABC4925CC64A764BB2726E2AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
Manifest number: 1003
Signing time: Tue 29 Apr 2025 05:00:12 +0000
Manifest this update: Tue 29 Apr 2025 05:00:12 +0000
Manifest next update: Wed 30 Apr 2025 05:00:12 +0000
Files and hashes: 1: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (hash: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=)
2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: kuCVDVbgRXH4SIkmrEinhWg+XaVPHD3Xn5hvyv+s2H4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:ea:c1:6a:bc:49:25:cc:64:a7:64:bb:27:26:e2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: Apr 29 05:00:12 2025 GMT
Not After : Apr 30 05:00:12 2025 GMT
Subject: CN=b131f52eb8387dfaf07ee974dee185d3010e0a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d3:9c:37:54:87:68:8b:44:7b:d1:16:1c:22:
d1:d8:1a:0a:16:b8:02:1f:07:b3:19:b2:d7:15:f1:
9d:9f:d8:04:8b:d3:94:a5:0f:4c:6a:5b:10:07:74:
63:41:ef:9a:f0:23:7f:f1:12:af:75:fb:aa:4e:94:
21:b6:d5:14:5c:d8:28:68:fc:ae:cb:4a:e6:3f:33:
1d:6c:52:ec:62:27:fc:8e:0c:c2:2b:4e:1e:89:78:
ea:59:f5:b0:a8:c6:56:93:05:f2:b5:d2:a1:72:a3:
0c:53:75:75:57:22:f8:7f:9f:83:8b:be:82:a9:01:
71:32:39:c3:e8:c4:7b:0c:6f:eb:43:2a:00:5f:19:
20:d4:7a:da:04:47:2c:38:9c:fe:60:65:fb:91:14:
16:5c:88:4d:d9:1a:ab:82:85:e6:c2:3a:4a:6c:02:
9d:ac:06:8e:b7:20:72:0b:7e:18:6f:2d:d2:6b:38:
52:6a:c5:f4:79:85:df:19:31:5b:66:51:a9:0d:b6:
e4:7f:e3:82:44:54:60:10:e4:f3:14:6a:be:90:00:
25:82:10:99:fd:3c:96:25:8d:44:44:b1:f1:f6:9a:
46:a5:24:ca:39:61:a8:51:cd:b7:1e:70:82:bf:25:
64:3e:a2:64:64:64:63:43:21:e1:05:fd:48:23:20:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:31:F5:2E:B8:38:7D:FA:F0:7E:E9:74:DE:E1:85:D3:01:0E:0A:1E
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:cd:64:f5:6c:fc:eb:db:ce:f0:eb:15:5c:82:5d:da:cc:ee:
6f:e4:94:3d:4c:39:40:fa:06:33:30:27:b0:d3:5d:98:cf:de:
41:51:d0:3c:fe:92:01:10:bd:6e:83:af:da:63:f2:ba:dd:21:
79:22:8b:6c:b2:3d:77:e3:ba:ec:ab:b7:5c:81:75:d5:2b:09:
7d:dd:69:bb:57:16:f1:5e:bb:ef:01:8d:4d:44:26:8a:82:76:
53:3f:a7:f6:86:86:55:58:21:23:d1:b8:94:d5:4c:a7:79:ed:
c9:70:60:51:07:c1:c3:cb:49:f0:7e:09:0a:8c:47:13:b1:82:
76:98:d8:2a:ac:dd:1c:06:04:99:01:f5:f6:c5:78:aa:46:4e:
41:04:5c:8c:72:a4:36:78:50:23:c2:32:9d:d7:9e:7c:b5:62:
80:e9:aa:bc:35:97:6e:f5:5b:ae:01:29:11:69:e3:db:5a:33:
f8:b6:a7:51:77:2a:27:0d:43:70:8c:d1:51:23:de:e8:c3:6f:
f6:90:12:43:58:58:d8:fe:ff:e8:25:07:10:14:3a:4e:6a:66:
a1:c7:46:2d:da:26:70:ba:8f:99:d5:49:75:12:c7:07:4e:ab:
86:f7:ab:b1:f1:4a:67:93:6a:d5:cc:d2:f9:86:9d:4f:cb:9d:
13:7e:69:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 07:43:12 2025 by rpki-client