Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: mR/iQH9v0VX7X5WvoZ7s1P3XiFKCpF2SJ9zrmUbxOic=
Subject key identifier: D7:94:13:AE:DA:B2:5E:C2:6C:FC:15:9C:3E:FD:BE:D6:E8:F0:33:80
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 0198D4E075B10A0B7EC965255FEC730349D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 15DA
Signing time: Sat 23 Aug 2025 03:02:16 +0000
Manifest this update: Sat 23 Aug 2025 03:02:16 +0000
Manifest next update: Sun 24 Aug 2025 03:02:16 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: KAiREsD4DpASSS2ukAUjQGoL4Fj51KVRNnMORh8fArE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:75:b1:0a:0b:7e:c9:65:25:5f:ec:73:03:49:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Aug 23 03:02:16 2025 GMT
Not After : Aug 24 03:02:16 2025 GMT
Subject: CN=d79413aedab25ec26cfc159c3efdbed6e8f03380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:a6:52:dd:16:1d:9d:51:73:bd:ee:42:72:
b7:3f:aa:44:ca:c1:ad:a7:02:d8:19:9b:7e:92:06:
00:24:8b:19:95:b0:67:8a:b5:02:7a:f2:85:84:98:
d2:ca:f0:a8:bc:3d:2f:a9:76:9a:fa:3d:d1:8f:2c:
6d:eb:2e:1f:d3:f5:7b:31:4a:f4:f0:39:2b:0f:9b:
53:fa:a6:bf:90:6d:5a:98:92:8c:83:69:98:c5:55:
66:c7:1d:d9:a6:48:d3:c8:f9:f7:a0:dd:2d:02:d3:
3c:eb:94:9e:01:95:cb:59:86:80:c8:09:4c:a9:37:
dc:8a:44:0a:68:74:8d:2d:ee:77:07:b0:dc:39:cc:
3a:ba:f9:80:24:61:e1:79:2b:29:62:87:09:73:e5:
1d:dd:0d:f2:ec:ff:d7:af:59:bc:6d:e9:46:e9:b6:
77:2c:a0:49:ef:6e:a5:2f:a0:83:b5:02:b9:8e:d6:
c9:47:10:c2:ea:40:8a:b9:db:b0:e3:45:3c:3a:22:
ae:7a:1f:70:40:01:da:c8:07:a3:e9:15:80:1b:9a:
8d:af:cd:e0:ac:2a:26:f2:98:f8:ce:3a:88:89:b0:
dc:9d:df:38:c3:f3:20:6b:47:f8:de:e3:20:eb:e4:
e5:40:17:60:7a:43:a1:96:77:18:db:85:36:77:79:
13:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:94:13:AE:DA:B2:5E:C2:6C:FC:15:9C:3E:FD:BE:D6:E8:F0:33:80
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:fb:16:9e:7d:11:bc:04:c6:6e:10:8a:fc:bc:1e:55:58:9f:
26:9b:50:5f:c2:33:80:63:3b:39:03:0d:44:2b:ea:b9:6b:97:
78:38:87:27:f2:45:3c:1e:b3:f5:c1:84:cc:6b:b2:2a:a4:ad:
dd:92:f6:a8:cd:8a:91:c3:79:9f:43:68:cf:b3:e9:85:f7:36:
37:c9:70:b9:ce:a1:ce:aa:e4:e3:83:ed:fd:d3:ef:c6:34:43:
74:2b:91:62:bd:9f:7c:fc:f5:b8:50:c5:2e:19:e3:9e:54:06:
98:96:e5:f2:c6:ba:f9:b2:f3:17:89:24:a2:5e:f1:53:04:e7:
1b:22:0e:6a:ce:ee:53:74:ab:62:8b:11:5e:a1:a8:2e:52:ed:
fc:9f:a9:f0:d0:32:8b:af:df:31:c9:66:11:da:1b:60:52:61:
37:9b:38:e8:e1:c1:7b:bf:c7:b2:72:6e:f6:da:69:50:03:ca:
22:a2:43:d8:11:81:15:e2:4e:e3:79:dc:d3:fd:99:d2:c9:29:
9d:0c:d6:8e:99:ee:db:e7:5c:3b:b1:97:85:e3:81:85:64:59:
86:06:14:c8:0b:6b:8d:23:10:ad:1a:10:91:21:ec:e3:73:0a:
00:36:b0:fc:a5:a8:ac:0e:d4:c8:38:23:fa:1a:42:22:47:cb:
89:4e:51:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:06:19 2025 by rpki-client