Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: TzFkNl3jjCMcSDtC0XR6a/K8J4sxieWfBZEWeaICo2c=
Subject key identifier: 85:07:66:C6:5D:AF:80:7D:F9:3C:7C:D2:F0:CB:13:2A:42:4D:0F:DC
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 01964D102EDFDDF26746473279E9155349A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 08:00:28 +0000
Manifest this update: Sat 19 Apr 2025 08:00:28 +0000
Manifest next update: Sun 20 Apr 2025 08:00:28 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: IqImyUi/gn+333+T4GitET6pN2UqfKrUtsioMmErrlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:2e:df:dd:f2:67:46:47:32:79:e9:15:53:49:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Apr 19 08:00:28 2025 GMT
Not After : Apr 20 08:00:28 2025 GMT
Subject: CN=850766c65daf807df93c7cd2f0cb132a424d0fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:9c:87:86:12:64:d8:ba:1f:b5:e1:03:1b:
3c:7e:64:18:df:0e:d8:f2:11:ec:33:cd:26:a1:e8:
fc:6d:3d:77:c8:28:da:89:36:f9:41:86:d4:46:d1:
9f:98:34:9f:bb:5d:c9:8a:66:00:1f:8d:a9:e5:77:
61:5a:09:24:6b:68:71:c2:ac:de:60:8b:f2:9f:86:
8b:c5:1d:eb:a4:cd:f2:ab:b4:68:82:23:d0:49:4b:
33:f2:f6:43:94:a9:0c:a3:b9:2d:39:40:c5:13:f8:
44:e0:21:30:0e:15:3e:13:af:9c:ab:7b:c6:50:10:
ba:a4:6e:a1:3b:be:d4:55:ed:2b:cd:9f:6a:56:cb:
c5:1e:90:e1:fc:30:08:46:64:04:18:f4:f5:e0:df:
b6:4f:22:26:77:71:ab:fc:6a:a7:4f:c2:a8:e4:8f:
73:59:fc:81:e4:81:3c:59:02:36:dc:e9:e3:cd:dc:
e4:bf:24:35:56:f2:94:e3:11:75:06:37:f6:f4:37:
2e:5a:05:48:09:f9:2b:1e:0f:97:6d:23:bb:3f:05:
0b:1e:d6:e5:38:c8:e2:86:9f:35:b7:8b:7e:5d:8e:
f5:6f:36:59:34:c3:11:ac:98:5a:4d:3c:31:fe:a9:
cb:6b:45:c4:23:fd:1b:83:c6:31:84:8c:9b:29:74:
ba:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:07:66:C6:5D:AF:80:7D:F9:3C:7C:D2:F0:CB:13:2A:42:4D:0F:DC
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ee:0c:8f:ba:83:90:11:2d:7a:1d:f6:68:9c:78:9e:2f:db:
ff:ee:ea:14:ae:d3:c8:35:83:38:2b:54:60:86:7b:8f:26:41:
c3:73:7a:74:55:b2:2b:6c:d4:05:6c:89:a8:9f:c9:70:a0:68:
01:8b:d2:29:44:e2:52:88:5e:a0:61:e1:d0:5e:16:5a:9e:76:
fa:9f:a6:11:aa:12:c2:94:0b:fa:50:da:22:25:05:26:3a:e2:
fe:51:f5:6b:8e:1b:ab:48:3f:1a:78:5b:a8:31:19:6f:1e:97:
c6:e5:b6:ac:e5:e0:64:f4:f1:73:01:d2:21:d9:1b:4d:01:ee:
d3:c1:fb:7b:a1:ac:5d:52:81:f9:3b:0c:32:5d:16:a2:9e:c7:
b1:33:07:83:d7:cd:bc:8d:34:78:f6:d1:96:25:d4:f5:7b:6c:
13:fb:3f:7f:8d:f9:ea:92:9e:cd:b9:00:13:1a:4e:35:77:dd:
bd:ac:e4:fd:e4:33:d8:f9:e6:17:33:dc:4b:66:a2:a8:35:83:
d1:94:fe:b3:70:42:d1:5b:e2:a1:0f:96:a3:3d:b4:e6:b8:14:
a8:db:ad:9b:ec:55:30:c7:c3:4f:53:86:2d:fa:17:f6:5d:04:
cd:06:d3:af:32:db:f7:07:dc:50:13:8c:b3:4c:c7:da:3d:6f:
6c:d3:2d:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:37:50 2025 by rpki-client