Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier: yd4nsiy7IzGe7FzkrT57RrqiGO08OL8rU0zoq2as5bY=
Subject key identifier: 38:84:31:C7:E3:CD:4A:B6:F6:B0:C7:60:5E:D3:EB:86:6E:A7:16:02
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial: 01965E03A696EFA7F370755B740C4F810B2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 15:00:19 +0000
Manifest this update: Tue 22 Apr 2025 15:00:19 +0000
Manifest next update: Wed 23 Apr 2025 15:00:19 +0000
Files and hashes: 1: Rt1gtqsL3XGckE6ravfPMbXd82w.roa (hash: 2JwbGC82Puo98akTLN0YA0GBgvd3GFrPbqPDWMBfEo8=)
2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: Ka5uurDG+cJ3U0nWZ1fza/srjRdlvHdF/VInFvjvy2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:03:a6:96:ef:a7:f3:70:75:5b:74:0c:4f:81:0b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
Validity
Not Before: Apr 22 15:00:19 2025 GMT
Not After : Apr 23 15:00:19 2025 GMT
Subject: CN=388431c7e3cd4ab6f6b0c7605ed3eb866ea71602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:76:7b:3b:3e:f1:12:aa:89:3c:fd:c1:a8:d1:
a6:2e:0c:bb:59:1a:ca:ab:b9:c9:7a:dc:a4:f5:19:
00:18:d8:da:cf:dd:4a:0b:d6:e8:9a:fb:f1:30:b5:
b2:a2:d8:c3:97:0f:76:7b:ca:f8:25:bb:a3:11:2a:
43:07:ba:04:7d:d9:e3:71:cb:1e:ed:36:32:11:0a:
cd:81:ba:1b:5e:ee:e0:22:d7:11:3d:83:40:5b:3b:
bb:db:28:5d:84:09:77:82:00:f9:ff:5d:25:fb:24:
66:5f:81:dd:2d:c6:3c:0d:3d:e9:20:b7:c2:86:0d:
5d:80:d7:ec:01:94:51:e4:41:49:4c:5c:a6:30:94:
a0:07:f9:35:14:9d:6a:90:cc:93:23:7c:b1:c5:32:
ed:b1:2a:c7:f3:f8:21:6c:87:db:69:5e:dd:33:e7:
d2:10:f5:17:92:64:89:3d:4d:3e:84:f9:15:73:e0:
49:cd:4f:31:8f:22:67:29:b4:bd:28:ca:10:4e:c0:
2c:0c:3b:bb:b4:e3:44:e0:8c:9a:db:35:54:bf:15:
98:6c:4a:4f:ef:ec:99:44:8d:af:a2:df:b1:00:7c:
c4:0f:f5:aa:f3:bb:a9:0a:8e:cf:9d:67:fc:28:92:
36:13:3e:25:e7:1a:07:ed:77:16:27:94:64:45:b0:
f0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:84:31:C7:E3:CD:4A:B6:F6:B0:C7:60:5E:D3:EB:86:6E:A7:16:02
X509v3 Authority Key Identifier:
keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:45:a8:1d:0c:d1:6a:de:be:14:91:ae:6f:76:18:dd:88:50:
42:3c:c4:0a:f9:b5:ca:a7:38:c2:59:56:71:23:38:c7:cb:d8:
7e:f8:66:a7:65:ea:ca:c2:5f:6d:01:5f:1a:fb:47:9f:15:b7:
12:da:1d:4d:11:af:cb:ab:8c:96:99:e4:43:b6:c2:00:3b:fb:
69:5c:dc:2a:ea:e2:7e:fe:b1:db:9a:10:a1:70:04:fe:a5:e3:
4d:4f:90:ab:ad:ae:b8:f8:ce:f3:cd:cb:cf:6a:c8:e7:5b:84:
02:d3:61:23:32:61:79:74:a6:b9:05:a6:96:7c:78:18:0c:9b:
fd:b3:9d:40:97:f1:9e:19:24:bb:59:b7:ee:44:5d:e1:97:22:
6f:a8:7c:48:08:44:0f:c5:11:55:54:80:86:b9:e0:0b:51:20:
72:e2:64:e1:24:f6:f7:19:ee:8e:4b:34:10:34:28:ac:76:df:
65:a5:da:90:1f:5d:d8:01:9d:1e:fd:3d:7a:57:54:cc:42:45:
fe:f5:07:0c:1f:06:7b:30:3f:9f:ba:83:d3:06:a2:b8:31:f5:
2d:d9:c5:be:c6:ba:4b:47:9a:a5:1b:f3:4f:7e:af:48:65:72:
8b:69:54:e7:f9:a4:90:00:36:18:68:c5:d2:75:71:a2:06:aa:
65:81:0f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:33:21 2025 by rpki-client