Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: 1Xq3QyRAb4T7TnWB02vcidDAHyiyv/XYehSdXVDSGd4=
Subject key identifier: C5:24:6B:7C:5A:F8:0C:94:41:25:31:A0:60:FF:04:C8:48:B6:C2:44
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 0197B70EAF3A2DA326119B9093C723D8D189
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 1546
Signing time: Sat 28 Jun 2025 15:01:22 +0000
Manifest this update: Sat 28 Jun 2025 15:01:22 +0000
Manifest next update: Sun 29 Jun 2025 15:01:22 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: fGqPC7b88xxmgqt0vN3LGNpSAlgOzMJrXU+CF/CSJic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:af:3a:2d:a3:26:11:9b:90:93:c7:23:d8:d1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Jun 28 15:01:22 2025 GMT
Not After : Jun 29 15:01:22 2025 GMT
Subject: CN=c5246b7c5af80c94412531a060ff04c848b6c244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:77:86:3d:80:39:9e:91:d0:58:f7:b7:e6:0b:
20:93:5d:7e:70:44:25:20:7b:f3:a7:05:7d:f9:5a:
84:af:32:c2:65:b7:3f:39:fb:e0:f1:a4:02:80:4e:
19:9e:a4:8b:62:4c:4b:53:49:31:26:84:68:bf:7a:
bb:74:ca:71:93:09:0c:0e:29:70:b7:43:3b:11:9b:
32:b8:f4:0c:54:11:d2:54:e8:78:b1:a0:6b:ca:7c:
ef:d9:44:c8:38:5e:ad:0f:8a:99:5a:94:8e:bf:a7:
d9:b2:1b:8d:a1:3b:82:48:32:31:02:39:05:bc:f9:
40:52:18:fc:ee:d2:ee:a3:11:91:47:7d:83:8d:5d:
19:d5:33:37:b5:e0:7b:21:cc:76:03:7d:d7:a9:2e:
53:36:e1:29:cf:57:bc:0a:7e:e1:e5:9f:ed:ce:e7:
4b:8a:75:e4:58:87:e4:74:5c:f1:bb:86:d6:25:ad:
75:94:41:d7:21:7a:29:7d:f4:e3:6a:60:1e:1f:c4:
c5:82:17:fd:e9:0e:3e:18:4a:79:0a:8e:2d:17:72:
08:77:d7:83:8a:d4:b1:36:0d:b8:77:1b:f4:f3:c6:
8b:9a:1d:cb:9b:0c:b5:91:0c:d3:98:fd:f9:ac:ef:
e7:96:1a:42:91:c7:55:4b:99:2a:d7:91:5e:a3:28:
5d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:24:6B:7C:5A:F8:0C:94:41:25:31:A0:60:FF:04:C8:48:B6:C2:44
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:e3:64:53:c3:7e:ab:74:e9:19:1e:eb:34:74:3d:20:18:d5:
c3:a8:7f:d2:5e:40:3e:0f:0d:75:cd:d7:d9:8c:58:b0:31:8a:
99:ee:26:67:f1:fe:4b:7e:92:10:c4:ea:d2:3f:c4:1e:7b:b0:
5a:31:f4:3b:02:61:68:55:ad:ff:dc:4f:58:ea:2d:a0:d4:51:
be:5f:e0:34:b4:41:a3:74:b9:25:4c:be:d6:35:c9:7b:8d:dd:
66:79:b9:a3:74:ae:7f:9e:f5:56:f3:a8:17:8c:f9:d9:51:29:
c7:eb:7f:34:ae:e9:d1:65:65:f6:0d:94:8f:e2:6d:83:5f:8d:
c9:2c:55:51:22:e8:f5:b0:63:3c:60:76:e3:9a:41:89:fd:d5:
78:10:50:c3:8f:48:9c:c4:ae:78:3a:20:8f:8c:13:ec:2f:dd:
38:df:38:12:ec:79:2c:88:06:8f:64:39:2c:65:9e:e1:e0:4d:
30:5e:b6:e4:66:2d:dd:e9:4a:2d:ea:c6:57:66:03:d7:04:8b:
2c:dd:20:5e:a9:64:f1:9d:2e:8d:65:14:eb:c1:dd:c3:30:66:
27:88:46:31:78:2f:a3:29:04:d0:87:98:69:94:24:35:54:44:
12:b9:10:9c:56:7c:d4:9d:f0:7e:88:8d:f2:32:3c:ba:4a:66:
2d:0e:a2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:16:09 2025 by rpki-client