Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier: 5PdvIM7WlgJp9R2YYNYo/wSKmaG1tBDHN/sZRFgBL9s=
Subject key identifier: C0:B8:D6:7C:D0:B1:B6:53:FC:63:E3:07:9F:F0:AB:15:C3:72:A5:23
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial: 01975BA4D908BAB00F771034D281FB0E0ED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number: 1586
Signing time: Tue 10 Jun 2025 21:00:19 +0000
Manifest this update: Tue 10 Jun 2025 21:00:19 +0000
Manifest next update: Wed 11 Jun 2025 21:00:19 +0000
Files and hashes: 1: 0qO4O1iuPzCMlLlUt1HamKiYOoA.roa (hash: cgE/JK3sVjQnbjv1N0QFg9l7ug/Hstmhscf6qZhJ3xA=)
2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: z2TdKePbMxo5CR+uxfCUd4T4bqAuhcM5GefhM/by0Kc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 21:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:a4:d9:08:ba:b0:0f:77:10:34:d2:81:fb:0e:0e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
Validity
Not Before: Jun 10 21:00:19 2025 GMT
Not After : Jun 11 21:00:19 2025 GMT
Subject: CN=c0b8d67cd0b1b653fc63e3079ff0ab15c372a523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0e:aa:39:64:2a:f4:73:04:9c:b6:67:e8:14:
e3:55:f4:43:38:9b:1e:f9:a3:68:b7:f5:7f:5e:a6:
5e:c6:a8:7c:f5:b4:b2:c4:68:84:45:33:c8:7b:e7:
e9:40:9f:55:ba:21:19:7c:ad:97:cb:48:63:ae:68:
cb:fe:c1:23:36:64:bb:40:6c:78:d4:6f:f3:d0:1c:
15:cf:ef:e4:8c:4c:89:5c:f8:74:a1:ed:84:ce:5d:
89:62:f5:63:1b:e9:16:24:e9:98:db:bb:72:9a:e3:
a7:08:fa:45:4a:38:b2:2f:e2:79:f5:df:1f:63:96:
ae:d0:b8:af:ed:d6:3b:ec:68:e6:1e:77:75:42:d3:
95:d5:8d:d3:74:b4:66:ad:2e:18:71:e8:d8:08:71:
e0:d7:ea:ff:46:08:ce:e9:06:69:b9:6d:fb:0a:3d:
21:f9:0b:d2:63:79:84:30:ce:83:2a:58:25:6d:7b:
8b:03:85:0b:62:80:79:10:b0:21:81:a5:f0:15:ce:
6b:82:bd:6d:46:44:f8:0d:ea:e3:09:b8:1f:ed:fb:
ae:86:b5:bd:63:a4:e0:83:b5:00:f1:d8:df:0a:af:
6a:df:1e:fe:df:b9:a8:09:6c:7e:57:40:3f:80:90:
3b:e5:99:7a:d2:ae:d3:5f:55:19:82:5a:5e:0a:99:
5c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B8:D6:7C:D0:B1:B6:53:FC:63:E3:07:9F:F0:AB:15:C3:72:A5:23
X509v3 Authority Key Identifier:
keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ea:f6:ea:c6:a4:dd:d0:94:e9:a8:0b:29:68:fc:9c:67:c5:
3e:db:c5:39:be:4c:14:b2:4a:f8:67:95:3a:60:0b:a7:9d:c3:
57:4a:6c:35:9a:b9:71:54:69:e7:20:81:e4:f5:9b:03:c6:92:
27:21:8c:48:da:43:fd:4e:cb:61:a3:8b:bb:f2:34:6d:9a:00:
f8:41:e5:6d:17:8a:3e:06:41:6a:a8:e2:8e:0b:68:4b:78:a1:
0f:32:6d:86:ef:02:69:78:97:52:5b:a3:76:8c:d3:11:91:c0:
1b:14:81:59:5a:e5:73:21:d3:50:e9:f7:b6:12:85:fd:5b:d2:
5b:08:b1:9c:3b:27:a6:ec:bc:5f:8b:30:e6:c0:ec:76:36:e7:
d3:99:a9:b7:22:e3:39:1d:d9:2b:38:f0:07:71:46:75:1b:07:
83:fd:a9:ed:58:d3:4c:f4:59:37:54:de:d4:ae:76:32:1f:58:
e7:ca:07:8a:b4:0c:e9:fd:d4:fa:69:a9:e7:4c:0d:c4:34:fc:
3b:66:cb:4a:20:30:cb:d6:9a:9e:07:5b:c0:08:90:68:7e:5c:
b2:1f:88:97:15:55:9d:3d:74:a6:c1:0f:69:a5:70:c6:8d:c5:
04:6e:84:9c:8d:40:af:99:d4:8f:13:c3:a7:07:ff:b4:6c:21:
4e:35:b0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:38:34 2025 by rpki-client