Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json)
Hash identifier: xo2wU4q4kEI5qNqMz5LdIL3+8MXAwJSjjwzFpCoIbbA=
Subject key identifier: FA:B5:06:60:59:7F:A4:7F:A1:F6:32:D4:97:FD:9C:0F:62:0D:2F:79
Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Certificate serial: 019512479B1E09DA52A857FD74B7224F9250
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
Manifest number: 1459
Signing time: Mon 17 Feb 2025 05:00:37 +0000
Manifest this update: Mon 17 Feb 2025 05:00:37 +0000
Manifest next update: Tue 18 Feb 2025 05:00:37 +0000
Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=)
2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: 6RqVvQt80m3nKJxyy1v2yEuRLbbhaSReJRDjHcBRTJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:9b:1e:09:da:52:a8:57:fd:74:b7:22:4f:92:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f
Validity
Not Before: Feb 17 05:00:37 2025 GMT
Not After : Feb 18 05:00:37 2025 GMT
Subject: CN=fab50660597fa47fa1f632d497fd9c0f620d2f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:08:63:dd:91:fb:df:eb:a3:da:2b:9d:16:98:
d0:90:c2:8d:1b:38:05:84:1c:8b:8d:f9:c2:a9:eb:
fc:d8:09:69:24:9b:db:71:d8:08:09:93:4f:29:09:
af:1f:8b:83:91:c5:98:b2:dc:a1:67:21:0a:48:89:
02:cc:be:ea:77:0b:68:f4:cb:f5:bd:cb:b0:9d:8a:
b1:ff:e5:f9:09:88:ec:f6:d8:07:f5:64:ab:69:68:
c4:9e:ce:9c:7f:d3:92:52:7e:a6:dd:5e:4d:ed:32:
76:21:2f:73:af:72:8b:68:e7:4d:22:08:fd:40:75:
b7:73:79:2e:ac:dd:ad:a9:12:44:43:59:8b:2b:1c:
2b:56:aa:03:d4:65:80:64:ae:35:a9:80:17:e8:e0:
0a:f1:2e:b9:0c:b1:76:c2:3f:03:56:84:28:48:f0:
bf:cf:94:1b:e6:ac:2a:85:db:21:aa:28:26:69:a9:
d1:12:36:7e:60:80:3a:ba:35:4b:48:24:a8:17:ab:
7c:b8:88:3f:50:63:3c:5a:fc:af:a8:92:89:2d:54:
35:11:10:c6:41:16:64:b6:ec:cc:6b:e8:24:81:29:
d0:31:74:a9:12:ae:3c:00:a5:bf:73:7d:13:59:4d:
b5:a9:6b:3a:b7:4f:f1:3b:7f:63:57:99:c7:a4:0e:
a1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B5:06:60:59:7F:A4:7F:A1:F6:32:D4:97:FD:9C:0F:62:0D:2F:79
X509v3 Authority Key Identifier:
keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:8c:09:0c:cb:b5:a8:9e:fa:c2:b3:6e:7b:7b:4e:a2:b8:07:
39:28:f7:82:d6:d6:34:2f:b4:3f:3d:88:98:62:8e:af:c7:59:
c4:9f:59:f9:41:3d:86:a1:69:d7:30:41:39:78:ee:38:ef:97:
eb:e2:e9:44:78:8e:2c:66:d0:1a:5f:ba:02:82:ad:59:b8:0a:
3e:32:41:00:3b:1b:0a:ba:2d:ae:89:bd:4b:c5:5e:8f:f9:88:
35:e4:15:6c:7c:99:3a:fc:1a:8f:46:cb:df:99:09:23:2c:40:
f5:66:dd:97:a3:59:87:49:3d:3f:cc:03:7b:86:44:13:c7:c5:
90:87:03:67:25:d2:b1:4d:de:a0:b4:6d:7b:86:c1:75:ea:e2:
5d:89:a7:e9:96:d3:e5:ed:c6:f4:f7:3f:29:3c:bf:64:0f:e3:
db:6d:19:6e:02:e3:b2:25:88:1e:56:8f:ee:f2:e6:50:aa:0d:
46:56:60:10:4c:37:d3:8b:5a:82:56:c3:54:97:00:4d:c6:1c:
b6:3e:8d:36:fc:1c:f1:4d:f0:3c:db:b3:2a:2f:9a:e9:46:01:
87:1f:c8:9e:38:e4:ca:f9:92:e1:41:51:a4:04:ac:51:aa:09:
95:c4:40:ba:f3:59:02:73:f6:c8:b8:83:1a:0b:99:0b:0c:6d:
39:7d:de:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:46 2025 by rpki-client