Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: HwWROSHUf1ezVJRTN6fL4o15S2WGNm/o9n+UR4iJcW8=
Subject key identifier: 6E:6F:9B:52:8E:FB:C9:89:F8:1B:BE:45:16:B7:B5:89:9D:B8:81:31
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 01987BD2B300C2822F1E6B6DF8827A5B006F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 161B
Signing time: Tue 05 Aug 2025 20:01:02 +0000
Manifest this update: Tue 05 Aug 2025 20:01:02 +0000
Manifest next update: Wed 06 Aug 2025 20:01:02 +0000
Files and hashes: 1: PDkI417cWn_abbXt0o9HD-0vD6g.roa (hash: mxVaLWpnhSe1agkXL4xYhLyldi4/weSHgH61n+a6Rqk=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: g5t1kxElxsycyjvoMWZC/ophKgsz/H2FKtuLuihQ2Yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 20:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:d2:b3:00:c2:82:2f:1e:6b:6d:f8:82:7a:5b:00:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: Aug 5 20:01:02 2025 GMT
Not After : Aug 6 20:01:02 2025 GMT
Subject: CN=6e6f9b528efbc989f81bbe4516b7b5899db88131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:39:a2:30:a4:2d:ef:0a:ea:f8:1d:31:26:47:
68:b8:f5:50:26:35:b3:52:f0:32:51:c4:39:c9:83:
a5:6f:35:94:29:57:dd:02:9b:e7:f7:15:1f:2a:08:
4f:38:b0:2c:52:0f:13:35:1d:ed:4c:fd:d7:de:bf:
a0:23:30:32:9a:2b:00:fc:d5:27:e6:69:a5:b6:13:
30:e4:98:8f:94:2b:d2:9c:8f:d5:03:d1:f7:bc:a1:
45:1d:59:34:97:93:ff:18:27:54:5b:20:6a:ee:10:
3d:ea:b4:fb:60:df:2d:a2:4e:6c:ce:60:3f:24:cc:
86:26:3d:96:1c:58:7d:29:53:a6:c7:19:d1:e7:60:
72:91:c4:2e:5a:02:10:1c:d8:8f:e4:59:81:60:0e:
c1:63:d5:aa:c0:d5:a7:94:87:ff:59:a5:65:e6:e7:
46:2d:19:30:a5:80:5a:b6:40:e7:b7:54:8a:af:77:
88:4c:99:33:16:8a:b7:53:ec:dd:83:cb:e2:b8:72:
0d:32:30:19:29:5c:34:20:7d:ee:91:4b:ac:cd:a5:
c4:2d:43:55:79:d3:5b:74:15:f6:a9:9e:9d:a2:b0:
92:c6:46:ae:6d:91:66:f1:dd:5d:bd:5c:13:a8:a7:
06:68:33:22:7f:2e:3c:61:7f:a6:16:23:ae:36:f1:
3a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:6F:9B:52:8E:FB:C9:89:F8:1B:BE:45:16:B7:B5:89:9D:B8:81:31
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:4f:9d:de:b8:f6:f6:0a:79:6f:13:1e:8d:d4:7f:58:12:f5:
08:5e:24:b0:83:6a:d5:81:47:10:8b:24:7c:d9:c5:ed:1d:a9:
b8:65:45:29:f3:bd:b1:97:22:6f:c0:b0:ea:bd:69:02:5f:5e:
c0:29:51:89:ad:be:15:02:e8:06:56:7a:3c:15:6d:0b:e3:9a:
83:3e:42:44:1a:ea:99:92:49:13:77:7c:f7:de:13:cd:15:be:
9f:8a:12:14:fc:77:df:0e:69:31:df:bb:45:8b:bd:21:b9:39:
10:3d:ba:38:a3:f8:6a:e9:c1:d1:e7:24:87:6c:2c:a4:89:22:
82:6d:fa:b1:5d:8c:6a:aa:fb:30:28:31:4d:c2:da:e7:44:74:
cc:9f:13:c4:cf:2b:0f:24:83:30:70:a2:9e:39:09:e3:0b:9d:
b1:29:12:38:5e:37:38:54:c2:35:43:ff:db:a8:b3:7c:7c:04:
15:04:1c:f1:ae:d1:74:9d:49:89:05:28:f3:c1:37:1f:a5:e6:
7c:72:fe:5b:cd:26:3f:52:d2:6a:7a:13:3b:b5:e5:b9:fd:eb:
31:25:91:c4:4a:22:aa:a3:a2:42:b9:4a:a8:45:a6:22:6c:77:
59:58:59:42:30:36:3a:5a:8c:2c:6d:3b:8c:10:06:4a:cd:96:
76:ad:6c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:12:05 2025 by rpki-client