Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: mfhZtqI8ei3ljR0mhciwMXBt1IWzUoAV6gR1YVraESg=
Subject key identifier: FC:81:B5:7E:98:2C:EF:64:B7:D9:FB:71:C9:79:1D:65:11:F4:E0:1B
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 0199228D235472581B2A631464C4937B1D41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 05:01:38 +0000
Manifest this update: Sun 07 Sep 2025 05:01:38 +0000
Manifest next update: Mon 08 Sep 2025 05:01:38 +0000
Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: E2Mk9K7rbjczUtc/XTndVOcBaRpQp/e6iovN+T9AEH8=)
2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:23:54:72:58:1b:2a:63:14:64:c4:93:7b:1d:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Sep 7 05:01:38 2025 GMT
Not After : Sep 8 05:01:38 2025 GMT
Subject: CN=fc81b57e982cef64b7d9fb71c9791d6511f4e01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:62:bc:f8:7f:fb:f3:e6:be:5d:11:a6:40:a6:
23:d8:dc:ce:3f:72:4d:9f:9c:56:c2:58:00:12:03:
08:bd:47:aa:4a:17:5a:9e:52:3a:25:f1:04:20:cb:
96:82:3f:c7:2d:53:db:ab:70:ed:c6:c0:54:10:12:
dc:60:2f:87:32:c0:af:87:57:ba:5a:7b:87:20:e6:
81:81:18:6b:2c:dc:ed:32:e5:7a:09:c4:99:b8:98:
dc:18:6b:e4:11:5a:0d:02:93:d3:a0:f1:1c:9b:53:
17:24:0c:2f:c0:86:bf:16:c3:31:2d:46:ee:b5:ab:
9a:0e:6b:56:9b:f3:73:1c:cc:5e:bf:f6:4e:36:ea:
6f:f7:81:15:2d:65:65:11:ef:a4:8f:2e:b0:9a:d7:
bc:fd:cc:3e:7c:60:4b:8a:dd:81:c9:1a:f9:24:c1:
2b:0b:a6:11:c0:04:c9:eb:eb:c4:d2:d2:66:74:5a:
c3:ee:c0:46:0d:83:c2:73:dc:ef:f1:09:99:e3:d6:
b7:59:2c:df:e1:e8:b6:b3:ac:dc:33:65:73:07:2e:
6e:ea:f5:69:b7:c0:d2:4f:fc:85:7c:39:08:88:69:
6b:45:88:00:e5:45:82:b8:06:eb:ec:34:bf:dc:50:
f2:21:63:45:3e:2a:c0:bf:80:34:56:31:18:78:0e:
36:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:81:B5:7E:98:2C:EF:64:B7:D9:FB:71:C9:79:1D:65:11:F4:E0:1B
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:f8:44:79:20:68:43:bc:79:26:c0:e1:8c:76:72:58:bb:39:
2c:ea:18:16:cc:70:5a:3f:f8:36:ba:dd:c2:25:67:51:c6:f5:
f5:cb:80:8a:68:d0:1f:15:4b:7e:6a:97:5f:f4:ba:5f:66:66:
c8:3d:8f:77:4b:25:30:97:e3:da:ee:e3:9b:d1:7b:a4:ff:42:
c0:c0:de:7d:a3:9c:8c:9e:01:3f:99:20:84:8a:27:d4:be:43:
00:a3:a6:f2:cc:92:5a:63:91:53:8a:44:c3:dc:b5:71:22:72:
13:5d:4d:dc:0d:68:c4:93:9c:74:fe:83:1e:67:60:ba:2d:48:
33:a7:99:ae:fd:8a:ae:33:2a:9c:58:f4:8e:ab:4f:4e:4e:48:
fc:a2:38:9c:0e:be:21:53:58:8c:aa:46:38:16:2a:b1:72:a0:
ca:5b:6e:a6:45:61:81:e3:c4:ce:c5:24:55:28:e9:4b:57:52:
dc:c1:7c:33:1e:13:5a:b7:c3:59:68:c9:e1:8c:be:78:83:a1:
ce:bf:c0:2e:33:ed:62:13:bb:b9:4a:0c:33:f4:3d:c2:c2:11:
9d:c5:79:c5:d2:c8:17:6e:1b:67:43:cf:3d:97:2b:f3:40:9c:
bb:75:ea:1e:21:a1:8c:7b:ad:72:ae:02:fb:6c:26:03:6d:d5:
e9:a3:2e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:10 2025 by rpki-client