Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json)
Hash identifier: 2XHpzqGOd34EooXpiixLsv/RkqM+SQbhZDMIbj46ccA=
Subject key identifier: 06:EB:AE:83:E4:C5:0C:FA:67:6E:B6:CF:52:AA:84:A3:85:B9:F6:2C
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 01976F62CDD90AFAF86E7AF63EE98FC804F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
Manifest number: 107F
Signing time: Sat 14 Jun 2025 17:00:35 +0000
Manifest this update: Sat 14 Jun 2025 17:00:35 +0000
Manifest next update: Sun 15 Jun 2025 17:00:35 +0000
Files and hashes: 1: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (hash: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=)
2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: uXYw7w2WPzaFVRzj1u0ypW1VBjsFl45sdUhXE1M354I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:62:cd:d9:0a:fa:f8:6e:7a:f6:3e:e9:8f:c8:04:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: Jun 14 17:00:35 2025 GMT
Not After : Jun 15 17:00:35 2025 GMT
Subject: CN=06ebae83e4c50cfa676eb6cf52aa84a385b9f62c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e6:c0:5f:2c:2c:e2:94:24:fd:41:ab:bd:89:
8b:24:c3:fd:b6:97:99:8b:4f:74:7d:d1:b9:7d:49:
3f:43:26:97:84:ab:26:87:0d:73:91:ef:e0:8d:fd:
31:6b:d7:a0:b5:cf:81:4a:b4:cc:c7:10:a4:99:66:
35:f9:5f:5f:43:70:83:26:39:ed:6e:98:a7:be:66:
39:ae:6f:52:f5:cd:75:db:a4:66:19:98:44:3b:e6:
20:24:00:37:4b:00:4e:8f:81:71:c7:80:10:aa:47:
45:e0:46:75:55:13:9a:1f:ff:b2:4e:07:01:39:45:
24:c9:af:48:b0:4b:3b:87:45:9e:6c:a7:f5:f3:cd:
99:6d:79:5f:6a:31:c7:97:a5:ee:98:b6:5e:44:fc:
c5:3b:3b:ea:c6:7a:40:f5:bd:5b:2e:33:ab:25:51:
e6:7c:78:12:e0:8d:a8:ff:d9:12:ad:06:4a:05:a3:
6a:9e:1b:0d:25:b3:57:44:63:23:94:db:fd:ec:ba:
7d:ba:f0:eb:2c:6c:15:5a:00:87:31:14:d7:57:cc:
2c:ba:96:15:fe:08:44:2d:9d:3a:22:71:12:9d:ce:
76:a4:26:e7:38:02:2a:92:87:95:82:48:3d:a5:77:
80:d2:bd:0a:c8:fd:77:00:94:32:0c:fa:75:62:bf:
9d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:EB:AE:83:E4:C5:0C:FA:67:6E:B6:CF:52:AA:84:A3:85:B9:F6:2C
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:51:1e:5f:65:e3:25:8a:bb:68:01:00:5d:8e:94:ae:28:6b:
b7:8f:ed:e1:f1:09:02:94:9f:ad:19:8b:c9:d5:9b:c7:0e:9a:
04:7e:4a:dc:60:94:16:94:c7:c9:55:c7:d1:7b:ce:e1:4d:72:
12:eb:c3:87:68:6a:64:6d:03:3d:70:d3:a2:cf:1d:d0:50:2c:
e5:13:fc:21:91:9c:b8:9d:15:f9:65:a7:2a:f3:e0:e5:db:ea:
6a:d1:4e:4e:04:ee:03:f4:a1:9f:e9:0c:a0:00:dd:96:4b:4b:
74:00:5d:bd:ba:6d:48:f2:06:69:da:5a:d8:53:94:b3:0d:f0:
9c:43:50:f6:8a:08:c3:c4:0d:ad:7b:d6:3f:1a:54:09:cd:28:
39:c7:af:59:8b:52:dc:4b:11:25:f7:65:c6:63:98:b8:f4:ef:
11:10:96:a9:12:98:c5:2f:26:c9:06:0c:b9:ef:d6:a9:81:d8:
c2:db:eb:51:77:83:60:7b:99:cd:6a:62:f2:ef:27:e7:54:c0:
a2:3a:1a:d1:36:4b:6a:dd:6c:62:e6:f4:86:be:1a:d0:74:30:
37:f0:46:94:6d:de:ed:59:ac:ec:8d:cd:75:59:d8:af:8a:94:
6a:0f:89:85:22:30:ea:7a:60:24:20:5b:ce:6b:c4:cd:75:d3:
4d:e3:ce:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:07:25 2025 by rpki-client