Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: 0DqwNYhsQBaRdJ8LHym8q0hMyVvG/iNFC/35FD9/T9M=
Subject key identifier: AA:94:54:24:1C:01:2B:33:29:B8:99:64:83:B6:AA:91:24:16:04:B5
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 01964FDA4019439EF632A6B2E49723503853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 148C
Signing time: Sat 19 Apr 2025 21:00:25 +0000
Manifest this update: Sat 19 Apr 2025 21:00:25 +0000
Manifest next update: Sun 20 Apr 2025 21:00:25 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: kLKHUkxc/FMdd92F+Qp2XcKNaW+gh2mX+KY6TkvrjFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:40:19:43:9e:f6:32:a6:b2:e4:97:23:50:38:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Apr 19 21:00:25 2025 GMT
Not After : Apr 20 21:00:25 2025 GMT
Subject: CN=aa9454241c012b3329b8996483b6aa91241604b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:47:ea:a3:2b:cd:bc:15:e4:3e:56:a4:cf:f8:
3e:89:39:e0:c0:1f:2a:35:41:70:81:bd:01:59:e2:
f1:44:de:fc:07:e1:96:78:44:f6:47:5d:ff:01:77:
5a:f9:04:de:a1:55:e5:26:bb:79:ea:ab:d9:25:38:
f6:1c:72:a3:ff:c2:cb:fd:46:2d:93:b7:5a:53:d6:
dd:24:ba:77:97:45:3d:8c:bc:91:86:65:45:be:c9:
3c:8a:37:9e:63:07:c0:b9:04:62:62:04:2d:0e:9b:
3d:cf:b3:00:93:0e:d8:9c:8e:c2:d5:7b:25:24:82:
1b:2e:0e:de:b8:a4:14:4a:c0:80:89:53:91:7a:21:
3d:ca:9c:a5:46:40:34:de:87:51:8d:d8:9f:d2:42:
25:57:8b:60:1c:bb:f3:75:89:bd:dc:a6:56:04:ac:
66:cd:d8:6f:cf:49:87:63:1b:97:6d:fe:77:ab:e4:
59:9f:ed:12:4a:85:fe:f5:e9:f6:ac:85:7f:85:49:
cc:61:74:81:d9:33:7d:5b:ca:4d:20:6d:dc:47:78:
5f:87:a7:f1:e1:63:dd:05:2b:eb:e9:06:17:1f:cd:
88:4b:c6:e4:fb:2f:a7:2c:e6:74:95:58:4e:5d:19:
3e:15:75:0f:0c:c8:73:1e:c6:10:28:91:dc:1b:5e:
00:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:94:54:24:1C:01:2B:33:29:B8:99:64:83:B6:AA:91:24:16:04:B5
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:4b:3a:4f:f8:44:6b:8d:5c:84:62:4c:97:75:13:1a:b9:90:
c7:7d:b4:68:e7:14:25:fa:70:e2:a5:f6:46:b0:6f:fe:ee:83:
30:a1:61:d2:a1:c8:c0:ff:55:95:f2:c6:11:b1:50:7e:9c:df:
a5:67:aa:e1:70:f6:e0:2a:b2:20:1f:88:90:c5:71:18:b6:72:
ac:6c:93:3a:bd:34:8e:c5:0d:cf:43:bb:03:4d:83:fc:1d:82:
ed:0a:ef:f0:13:1e:bc:d0:df:b4:98:af:d5:43:d8:59:63:d1:
48:e4:1d:c9:28:12:16:e1:a8:54:36:32:75:67:d6:b1:e5:22:
00:b9:c9:a3:3d:a2:0c:85:64:1e:32:1c:24:22:eb:99:16:26:
18:fd:62:af:38:65:ea:bc:07:26:4b:6e:87:06:e7:9d:68:fa:
a6:f9:1d:93:b7:89:e9:fe:1f:d0:dc:49:e5:a1:9f:60:0d:58:
aa:52:ef:0d:e5:83:f9:30:2d:89:cf:6d:88:83:29:ba:7e:26:
23:57:42:84:8d:67:3c:5d:f3:cf:95:7a:35:85:8b:0f:a1:25:
9c:ec:7f:b1:8a:a4:1f:8f:88:06:71:42:61:4f:df:e2:16:6e:
8d:22:f0:b9:58:85:5a:fc:90:59:90:44:70:c6:a3:57:4b:6c:
b9:e0:a3:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:19:14 2025 by rpki-client