Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json)
Hash identifier: XNVZaZHrN48PL6LTfZK4VK9U121R3wmnNhpDpv6v6Jc=
Subject key identifier: 87:14:70:35:39:D8:FA:6C:94:BA:CA:73:64:7B:5E:34:ED:4F:0B:59
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 019780C43FA705E3CD1BE62F5FE10387B65F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
Manifest number: 1599
Signing time: Wed 18 Jun 2025 02:00:34 +0000
Manifest this update: Wed 18 Jun 2025 02:00:34 +0000
Manifest next update: Thu 19 Jun 2025 02:00:34 +0000
Files and hashes: 1: PDkI417cWn_abbXt0o9HD-0vD6g.roa (hash: mxVaLWpnhSe1agkXL4xYhLyldi4/weSHgH61n+a6Rqk=)
2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: eARzxU9WQSAb+LkkQ2XH2YjW5OTv8aoLE4KC7WW1LRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:c4:3f:a7:05:e3:cd:1b:e6:2f:5f:e1:03:87:b6:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: Jun 18 02:00:34 2025 GMT
Not After : Jun 19 02:00:34 2025 GMT
Subject: CN=8714703539d8fa6c94baca73647b5e34ed4f0b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:29:86:e3:7a:0b:64:fe:6e:87:59:7c:96:
6d:72:2b:44:0b:7b:d2:fc:70:5e:b6:11:d5:5c:87:
71:b2:8b:8d:99:95:69:6c:64:c9:e9:0f:45:c2:7c:
cd:a0:46:13:ad:4c:ad:4a:40:5e:80:a7:50:f5:a0:
20:ef:15:7e:f4:56:2c:30:de:38:30:28:f0:e1:fe:
06:af:38:81:dc:e4:5f:d9:ec:9f:09:69:0f:2c:2b:
16:bd:b8:1f:d6:92:7b:92:e4:85:86:d0:c3:11:ec:
7a:27:7f:88:a6:60:7e:a5:3b:c1:12:84:a3:cb:d5:
2b:6a:69:b1:27:0d:b6:b7:3f:2a:57:9f:a5:58:31:
98:a1:cd:85:c6:05:51:25:42:a6:71:2a:27:30:77:
96:4a:7d:f0:49:dd:92:8b:da:29:e3:4f:84:ff:df:
55:7a:19:37:1c:ff:00:11:98:b0:84:a1:8a:8f:a0:
3f:d1:58:44:46:61:e7:e0:20:17:a1:43:53:5e:e7:
12:58:60:53:63:5a:81:c2:08:26:cf:4d:14:e0:d0:
e4:f3:65:fb:c0:27:2a:e7:39:29:bc:a0:22:36:cf:
5d:85:15:9c:c5:90:17:5c:f5:68:e6:a5:a0:d7:4a:
7a:5a:d6:7d:80:83:6f:6a:e7:89:4f:29:07:dc:18:
6c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:14:70:35:39:D8:FA:6C:94:BA:CA:73:64:7B:5E:34:ED:4F:0B:59
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:af:c6:31:3a:c9:af:52:c1:ad:97:8a:c7:66:6d:17:a7:57:
07:47:24:14:1b:76:f7:4f:57:d7:ff:1a:98:e9:8b:8c:55:e3:
18:94:9e:62:ff:7a:22:d1:bb:d0:a5:ea:02:7d:04:e9:6a:0a:
79:33:c1:2f:c4:ed:cf:66:74:72:e5:ff:47:07:77:19:0c:3d:
32:4d:67:90:19:c9:64:6b:ec:70:d8:8d:43:af:d9:67:ab:01:
cb:a8:f9:98:40:94:b3:1a:15:52:36:30:1d:5b:c6:3c:3b:18:
12:ce:f2:1a:6a:77:4f:62:07:38:67:fb:e7:40:d2:92:b8:57:
7d:f1:b4:48:83:49:b0:ca:ea:c3:ae:44:e9:fd:f8:82:26:a9:
aa:cc:1c:97:fc:b9:54:7d:75:4b:13:25:01:88:66:6f:77:c2:
ff:60:bb:8c:b9:71:ee:5c:bb:18:5a:9d:91:c0:fc:a4:84:72:
06:04:3d:87:52:95:e2:53:9b:32:1e:ed:92:c2:f9:5f:77:ba:
ea:62:f3:70:fd:6c:d4:a6:22:18:41:4d:7f:59:3a:4c:78:bb:
f4:f6:db:81:6a:cc:ec:66:64:d5:94:02:13:e6:50:36:9e:e0:
d4:c3:6e:5c:27:6a:21:c5:20:a7:67:1e:c4:8a:79:3c:88:fe:
63:87:3b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 12:27:03 2025 by rpki-client