Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: Ml6vJ2sPN3IHrZNpbbEIwaBHAGAxhH2qQUt4qJW1+7g=
Subject key identifier: 4D:67:58:9B:93:A3:10:FC:F5:02:AA:85:D3:48:7D:E0:41:DB:49:2B
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 0197470B66C78D893663D32CA5CC47334333
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 150C
Signing time: Fri 06 Jun 2025 21:00:18 +0000
Manifest this update: Fri 06 Jun 2025 21:00:18 +0000
Manifest next update: Sat 07 Jun 2025 21:00:18 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: f54uKzCRA1Wuvm2tKsfGzqyEKwP3d+LmkSwQDZrGTEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:66:c7:8d:89:36:63:d3:2c:a5:cc:47:33:43:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Jun 6 21:00:18 2025 GMT
Not After : Jun 7 21:00:18 2025 GMT
Subject: CN=4d67589b93a310fcf502aa85d3487de041db492b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f8:9a:8e:d5:da:c3:cb:ea:15:15:48:4f:02:
09:19:16:12:6c:4f:0e:7f:6e:7e:81:18:04:8d:34:
ed:7e:9e:0b:1e:71:c7:61:b5:8e:9a:63:b3:7d:83:
b9:9c:27:5d:19:76:af:88:45:72:dc:6d:82:6a:8c:
fd:e1:f0:e7:0a:45:b2:85:58:b3:b5:47:25:a9:f1:
63:f1:9d:6a:85:d0:8f:68:3f:42:6f:45:eb:9f:e1:
72:69:ca:39:40:d2:14:9b:11:69:c8:c4:87:06:fa:
5e:bb:29:91:86:03:3d:0c:3a:92:b6:63:fe:09:88:
49:3c:2b:4f:ac:a7:d9:2b:24:f9:b5:0b:fc:8c:2a:
68:1c:64:5c:23:8a:13:d6:9f:31:a5:63:24:ca:74:
cb:37:08:5d:d7:2a:10:7b:16:cb:46:1d:7e:21:27:
be:63:7b:59:2e:31:8c:23:d1:5d:25:88:64:69:13:
af:8d:e8:57:08:d2:05:a8:48:a0:13:8d:ab:63:7c:
43:af:0d:68:7b:b1:1e:c8:af:ba:91:d8:51:a2:04:
36:b9:fa:3f:5e:32:48:06:61:54:37:87:8f:86:99:
34:d5:37:3b:2e:03:5e:53:05:ae:cf:f6:9c:e6:9f:
55:b0:63:65:a6:da:fc:f9:a8:3b:31:35:d8:0d:4c:
87:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:67:58:9B:93:A3:10:FC:F5:02:AA:85:D3:48:7D:E0:41:DB:49:2B
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:80:d6:e6:9d:aa:1a:40:44:f1:89:b1:60:ad:0a:9b:79:ce:
79:78:4e:d2:6b:2d:31:67:bc:df:84:82:b5:30:a0:e7:13:f6:
db:0b:53:76:ae:25:31:97:78:15:bf:5a:61:e8:35:fa:7a:d9:
1e:b6:6c:05:29:38:2e:20:e2:13:af:ea:20:7e:d9:04:6d:73:
a0:8d:13:82:ba:a5:8a:64:2a:0a:5e:69:62:88:90:b1:a1:d3:
5f:5f:cb:a0:f4:7c:b6:87:de:90:07:2e:bd:4f:30:c9:57:f2:
0d:1d:18:fd:3a:7d:15:bf:38:fd:9e:ac:0e:3c:4b:ac:c0:6a:
31:83:de:20:65:29:fd:a7:da:01:6e:b4:40:40:62:ba:0a:04:
84:ba:98:6e:88:98:00:bc:27:1c:ab:31:72:79:e3:16:5a:ad:
ec:5d:70:8f:47:fb:bf:f3:f4:f9:90:0e:3d:77:b1:f6:83:7e:
de:aa:54:cb:2f:81:43:c5:a5:9a:7e:a5:f5:d1:5c:7a:6b:1d:
75:b5:f7:38:0c:ca:8f:b5:ca:fe:75:2f:ea:1a:15:8a:4d:dd:
70:5a:f1:c8:db:f1:2f:41:ba:d4:7c:da:fb:f2:8b:d6:5b:4b:
a9:23:5f:b6:d7:8e:8e:3a:f1:fe:82:60:c4:d4:c4:0a:6a:85:
5c:59:32:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:10 2025 by rpki-client