
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: eWVaNfm/RB5Lah52H0PddTHrzSU5bedjkedAXoGJFT8=
Subject key identifier: F3:38:B9:CF:27:FA:76:8A:CD:5D:75:CC:74:B9:DC:23:50:DE:A1:2C
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 01976C2B496E6AD1F9F2DE750594DE5A4195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 02:01:05 +0000
Manifest this update: Sat 14 Jun 2025 02:01:05 +0000
Manifest next update: Sun 15 Jun 2025 02:01:05 +0000
Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: U2zt2xYdMyIY6xj6zFvZNLibzmNewHJDon1kWz9m83Y=)
2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:49:6e:6a:d1:f9:f2:de:75:05:94:de:5a:41:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Jun 14 02:01:05 2025 GMT
Not After : Jun 15 02:01:05 2025 GMT
Subject: CN=f338b9cf27fa768acd5d75cc74b9dc2350dea12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f9:7d:c8:2a:ba:16:cb:21:cb:92:48:15:33:
fd:0d:df:a5:4e:22:81:48:b8:10:ca:31:42:97:bf:
4a:04:53:7e:56:48:69:e5:22:d4:04:95:9f:40:b1:
db:53:b4:70:fd:ec:0b:fc:9a:19:b6:26:d7:9f:97:
4c:b7:43:07:8f:b7:e0:7f:0b:29:87:cc:ef:ad:48:
c9:3e:95:10:64:2d:b7:a5:a7:b2:de:e2:21:76:82:
63:4a:8b:a9:35:d6:dd:30:8c:e3:67:7c:78:e6:18:
d6:9a:aa:cc:e4:9e:a9:e7:75:19:87:fc:9c:93:87:
27:b6:87:da:dc:29:a3:2d:86:f1:f4:83:63:73:ef:
26:02:3c:73:d2:83:9e:24:21:6f:97:13:3d:17:bd:
e5:9a:0f:04:c6:35:f7:d3:b7:02:5e:08:b1:2e:87:
99:d6:bc:ca:a2:a4:97:91:f1:54:59:be:0a:92:33:
e5:df:97:6b:bf:98:d8:80:b3:c7:5b:4e:8f:6e:0b:
9a:48:8a:71:87:4a:cd:96:6b:f4:80:34:46:65:a2:
7c:fd:54:a8:6a:e6:53:57:6a:11:d4:c4:70:d6:04:
2b:3f:14:99:ab:b2:21:7c:4b:66:63:7c:47:1b:ad:
a2:0b:d7:bc:c1:ea:ec:79:23:5e:41:34:7d:26:c1:
3d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:38:B9:CF:27:FA:76:8A:CD:5D:75:CC:74:B9:DC:23:50:DE:A1:2C
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:7d:71:42:77:0c:6a:eb:5f:ae:e2:b1:37:d4:1d:89:45:7e:
e6:2e:e7:66:5b:09:91:70:23:53:50:ae:d3:8f:a5:17:31:bb:
b4:1e:0e:eb:06:43:9b:3b:70:69:2b:50:05:66:dc:aa:2a:a1:
0b:c2:cd:59:45:ed:d5:da:5b:67:82:c9:83:65:51:7e:11:29:
5f:57:d0:4e:21:a3:be:67:5a:82:46:2e:cf:25:85:7c:a5:c4:
c0:f1:fa:76:28:2b:db:b1:a0:27:55:81:ac:29:57:7e:dc:65:
38:4c:12:0c:01:c9:51:da:86:85:a4:0f:02:28:2a:1a:96:25:
14:a4:7c:a9:7f:34:0c:7e:fe:9b:c7:fc:3d:6c:37:68:5b:cc:
08:66:f8:c9:e1:8b:83:ea:7e:b4:79:63:ca:a7:53:be:1f:26:
44:aa:49:d7:f0:43:99:8f:27:d8:b1:26:eb:e0:96:d2:c8:7d:
d2:a7:0b:cd:09:5c:18:9f:07:8c:df:bc:d3:ad:bf:a8:52:28:
ca:69:93:08:d7:b8:ad:7e:b9:ad:ff:b6:ea:08:67:16:36:22:
ad:ee:56:3f:72:33:7d:31:c1:26:c1:cb:22:fc:c7:19:28:a3:
50:d9:c8:3b:1f:4e:05:d7:8b:c5:63:2a:b7:da:87:0a:af:3b:
21:47:ab:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsK0luatH58t51BZTeWkGVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhZGNmMTk2NzI5NjVmNTFiMTZkODdhZmFiMWIxNDkwODJl
NmMzZWUwHhcNMjUwNjE0MDIwMTA1WhcNMjUwNjE1MDIwMTA1WjAzMTEwLwYDVQQD
EyhmMzM4YjljZjI3ZmE3NjhhY2Q1ZDc1Y2M3NGI5ZGMyMzUwZGVhMTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/l9yCq6Fsshy5JIFTP9Dd+lTiKB
SLgQyjFCl79KBFN+Vkhp5SLUBJWfQLHbU7Rw/ewL/JoZtibXn5dMt0MHj7fgfwsp
h8zvrUjJPpUQZC23paey3uIhdoJjSoupNdbdMIzjZ3x45hjWmqrM5J6p53UZh/yc
k4cntofa3CmjLYbx9INjc+8mAjxz0oOeJCFvlxM9F73lmg8ExjX307cCXgixLoeZ
1rzKoqSXkfFUWb4KkjPl35drv5jYgLPHW06PbguaSIpxh0rNlmv0gDRGZaJ8/VSo
auZTV2oR1MRw1gQrPxSZq7IhfEtmY3xHG62iC9e8werseSNeQTR9JsE9FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPM4uc8n+naKzV11zHS53CNQ3qEsMB8GA1UdIwQY
MBaAFErc8ZZyll9RsW2Hr6sbFJCC5sPuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8yZDJlYjYtMDVkNS00N2EwLThmZWQt
ZWJmMzJhMDQ2OWM3LzEvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8yZDJlYjYtMDVkNS00N2EwLThmZWQtZWJmMzJhMDQ2OWM3
LzEvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdn1xQncM
autfruKxN9QdiUV+5i7nZlsJkXAjU1Cu04+lFzG7tB4O6wZDmztwaStQBWbcqiqh
C8LNWUXt1dpbZ4LJg2VRfhEpX1fQTiGjvmdagkYuzyWFfKXEwPH6digr27GgJ1WB
rClXftxlOEwSDAHJUdqGhaQPAigqGpYlFKR8qX80DH7+m8f8PWw3aFvMCGb4yeGL
g+p+tHljyqdTvh8mRKpJ1/BDmY8n2LEm6+CW0sh90qcLzQlcGJ8HjN+8062/qFIo
ymmTCNe4rX65rf+26ghnFjYire5WP3IzfTHBJsHLIvzHGSijUNnIOx9OBdeLxWMq
t9qHCq87IUerIw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:31:07 2025 by rpki-client