Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: 5tP7j23fsEURAq4Xgfkp+9B39Jh5YMWtAJpsH5rjh/M=
Subject key identifier: 5B:53:11:9F:D8:37:77:E5:3E:F2:10:00:50:52:CD:3F:E8:F2:8F:01
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 01965BDEC401333ABA169AD9BC02779FE6BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 05:00:47 +0000
Manifest this update: Tue 22 Apr 2025 05:00:47 +0000
Manifest next update: Wed 23 Apr 2025 05:00:47 +0000
Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: l87KjVv716zShonZJaK9wTsjb6BVm8lz1zQHzCfD3gQ=)
2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:de:c4:01:33:3a:ba:16:9a:d9:bc:02:77:9f:e6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Apr 22 05:00:47 2025 GMT
Not After : Apr 23 05:00:47 2025 GMT
Subject: CN=5b53119fd83777e53ef210005052cd3fe8f28f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5b:ed:25:f4:68:32:a7:e1:02:2b:d4:d9:b4:
6a:b5:9b:4b:92:85:ae:a2:ac:fb:2a:b1:83:a5:be:
e4:4a:dc:63:6a:7f:2f:c2:55:6e:bc:0f:86:46:38:
3a:3a:b6:33:86:92:f7:07:4e:2e:83:ff:11:bf:f8:
1a:e7:95:9a:c4:fb:72:e0:95:a6:79:9b:6a:9c:84:
df:7a:80:27:40:e0:b4:73:24:03:6c:ae:6b:ed:f9:
ed:56:8e:9b:0a:bd:de:2a:01:22:ca:85:e1:ad:10:
bc:ce:57:6b:ba:46:5b:c4:01:f7:32:04:25:f9:4c:
f9:ef:12:f1:ce:05:58:80:33:62:81:cf:7a:89:c4:
0e:cb:f0:dc:40:89:bb:44:b1:64:ad:b9:53:96:86:
fa:7c:65:59:ff:6e:47:b2:6b:91:65:8f:96:64:6f:
eb:f8:75:f5:66:2a:28:a1:50:ef:02:54:e5:7e:49:
33:96:51:9c:78:94:16:79:dc:c6:57:88:ea:52:07:
66:e8:ce:7c:2f:09:4b:6d:35:84:f6:64:9a:a7:c1:
59:c3:ce:96:9b:89:01:68:b0:36:3d:7c:6c:de:b6:
52:44:6e:02:50:e8:4a:a6:d4:41:ed:2c:0d:79:c3:
ae:2b:34:69:d8:d2:ca:bb:f6:c2:8f:1c:42:d6:ba:
43:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:53:11:9F:D8:37:77:E5:3E:F2:10:00:50:52:CD:3F:E8:F2:8F:01
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3b:d2:56:d5:a7:2e:a0:95:98:7f:ed:36:51:8c:e6:cc:98:
0a:15:bf:07:f6:96:6b:a7:de:82:ee:6c:bf:ab:e7:23:b6:5b:
d0:da:ff:c0:31:fa:b2:3f:a2:ad:22:b3:82:d9:56:58:90:0b:
b7:6d:82:a1:9a:fd:bf:67:32:a3:81:ef:dd:d8:e7:80:f8:e6:
cf:dc:8a:43:d2:73:68:70:bd:14:e7:de:84:63:d3:a5:89:8b:
30:fe:d2:bf:59:1d:09:60:b7:e5:c3:1c:8d:d4:a1:e2:5a:81:
fb:e0:8b:09:65:1f:41:72:94:37:98:a6:45:92:be:89:9b:66:
44:e6:a9:ea:ab:9e:9f:c0:72:a6:23:9e:67:68:e4:9b:e2:be:
d3:12:a6:90:7b:b2:c0:9b:2e:81:b5:0f:f4:f7:5e:c0:85:f2:
ca:a1:a4:4a:32:47:5f:cc:24:28:55:10:32:74:8f:46:92:a9:
59:87:25:c5:1c:8d:7c:fc:5a:2e:4b:4c:1c:9a:35:26:4e:e9:
f9:01:e6:b9:f4:ff:a3:22:4b:ce:77:0b:57:db:52:9c:7d:0a:
5d:58:da:97:54:5b:dc:4c:78:52:2a:6c:29:bd:e1:4c:ee:4c:
28:8a:dc:ec:8c:97:19:d8:a3:e3:6e:b8:52:2a:88:da:f3:43:
78:1f:5b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:03:11 2025 by rpki-client