Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json)
Hash identifier: gfkUhkeEXjoydRqXtq8/ewjh2Palyk2RP5ObaEeWXSc=
Subject key identifier: D3:4F:EE:CA:C3:58:88:1E:F5:06:5B:FA:D0:51:8D:7F:6F:10:1D:34
Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Certificate serial: 0195116C20C2AD25348E6F4B768B7AF458AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
Manifest number: 1422
Signing time: Mon 17 Feb 2025 01:00:53 +0000
Manifest this update: Mon 17 Feb 2025 01:00:53 +0000
Manifest next update: Tue 18 Feb 2025 01:00:53 +0000
Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=)
2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: iZOVKpNKxcPcGMUyKbVHjumLZHju4qqP7irKJnXtiXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6c:20:c2:ad:25:34:8e:6f:4b:76:8b:7a:f4:58:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485
Validity
Not Before: Feb 17 01:00:53 2025 GMT
Not After : Feb 18 01:00:53 2025 GMT
Subject: CN=d34feecac358881ef5065bfad0518d7f6f101d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:08:02:5a:16:68:72:e2:ed:0e:58:53:af:
40:9f:e3:60:bf:0a:95:7b:68:6b:4b:d7:9b:be:86:
81:44:84:e4:2c:0d:18:e6:bc:62:c4:ec:7a:43:e2:
59:79:69:6a:7b:75:d6:bd:43:67:d9:e7:8c:d5:0a:
0a:fa:81:3e:9b:31:a9:42:2b:97:82:03:2a:76:6c:
f3:67:e8:20:6e:bb:e2:46:67:ea:1a:bf:86:1a:5e:
e5:09:02:6e:0f:a0:d4:41:44:4c:57:39:2b:de:03:
4b:90:6a:3d:03:79:2e:8a:ae:13:2a:b2:09:fc:70:
74:91:d0:96:2a:c9:62:fb:cc:59:83:e0:f5:91:a5:
ae:b1:bf:86:c8:df:43:22:8a:d1:cf:fb:8a:f1:a9:
9a:a2:1c:42:0a:77:f6:b6:9b:6c:f0:98:d3:46:f6:
94:46:23:ad:83:8e:1f:a4:f4:76:18:74:10:39:c2:
03:2b:f6:eb:2c:83:35:76:19:89:83:c3:96:5c:36:
b8:c1:e7:ba:7a:be:f4:a4:ad:a5:60:8d:34:a7:e1:
a5:93:ee:d2:db:56:54:ca:43:15:5f:1e:84:9e:09:
49:3a:28:68:3c:62:d3:75:5c:ad:8e:05:df:8c:7f:
ae:06:6d:07:f0:60:68:e0:d1:10:46:c4:92:98:41:
35:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4F:EE:CA:C3:58:88:1E:F5:06:5B:FA:D0:51:8D:7F:6F:10:1D:34
X509v3 Authority Key Identifier:
keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:3b:f4:d8:30:82:e5:bf:95:de:0e:0b:0e:1d:fe:6c:0a:cc:
64:e9:76:95:c2:4c:bd:da:1c:b7:66:4b:bf:70:4c:34:6c:46:
93:38:77:89:23:5d:aa:17:fc:45:b2:c2:de:a3:71:17:c8:4e:
26:86:90:be:54:60:f2:49:3c:6e:9e:d0:aa:fa:d6:e0:e9:05:
48:a8:87:13:88:01:e3:39:a2:47:b8:45:87:42:e9:63:ff:f8:
98:cb:ba:53:78:02:07:1a:33:36:3b:21:99:53:71:3c:9f:ae:
75:8f:de:f6:22:8d:0f:b2:8d:a8:51:8c:5a:40:f6:f6:d1:ea:
90:e9:a7:28:a7:1f:24:1b:16:b2:62:49:e9:c2:65:bc:8c:12:
f2:10:a6:9a:27:a9:7a:bf:ba:d1:fb:22:4e:40:af:aa:5f:02:
d2:3a:d8:37:3e:21:c7:cc:51:2b:3d:fd:c4:c9:f8:59:b2:3e:
66:fe:7a:d7:dc:e3:a6:66:d5:21:06:1e:63:7c:d7:06:91:07:
30:83:7b:0d:dd:2d:ef:34:b6:4a:9b:b8:cc:c4:53:35:2a:4c:
59:4c:e6:cb:71:f0:e9:c1:0f:1e:21:fc:af:f1:c2:df:cb:3c:
3b:51:fd:c4:03:ed:44:27:cb:dc:21:7d:1b:dc:37:92:b7:a3:
58:c3:b5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:56 2025 by rpki-client