Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: PAdDUxYaSCEd3KwuH5YGiF/TFz6qvFHbJJg4Aj/pNEU=
Subject key identifier: 33:E0:66:76:23:B0:16:56:A5:12:72:F4:8C:2B:E3:C4:00:79:AA:65
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 019A7225F9328EEB13AA1D248CC477057847
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 16B0
Signing time: Tue 11 Nov 2025 09:01:22 +0000
Manifest this update: Tue 11 Nov 2025 09:01:22 +0000
Manifest next update: Wed 12 Nov 2025 09:01:22 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: BiBvl+drRxWR+x+PTRbIcccC1vfyR1dRHmip/dODieU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:f9:32:8e:eb:13:aa:1d:24:8c:c4:77:05:78:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Nov 11 09:01:22 2025 GMT
Not After : Nov 12 09:01:22 2025 GMT
Subject: CN=33e0667623b01656a51272f48c2be3c40079aa65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:05:41:e5:54:ed:20:70:6d:e5:be:25:e6:68:
52:25:ad:e1:d7:29:7e:4d:46:69:66:5c:ce:4c:4b:
a9:a1:42:bb:fa:59:22:3e:03:8e:3f:76:16:87:79:
f9:eb:7d:4e:43:b2:34:5f:ce:14:cb:7b:1a:92:70:
db:7d:32:d5:92:3a:ec:1f:ed:7f:e7:e8:e4:8b:93:
35:23:3a:7f:48:24:52:cf:a6:0d:22:e2:41:34:5e:
f6:04:39:a4:7f:c1:e0:58:08:19:98:29:e8:11:85:
52:bf:24:12:14:af:04:a8:2f:2a:d8:3f:0e:0d:8e:
1b:1c:e2:db:ce:a5:ef:c8:ca:e7:a9:fe:15:0f:f9:
fd:51:6f:b0:ec:d3:bb:71:a9:b8:00:70:a4:05:7e:
12:cd:12:a3:15:1d:38:9a:26:22:00:a2:3b:68:48:
e9:c7:c6:78:ad:87:57:62:16:04:4b:99:e6:01:5c:
90:d0:96:69:b4:bc:cc:65:23:7d:80:55:53:6f:7e:
fd:52:44:a2:1e:c2:04:68:80:cb:96:a5:89:4b:ec:
8e:92:e6:a1:c4:a3:01:73:8d:95:b6:3f:f5:ae:37:
3a:8b:6d:e7:43:e5:9f:92:a4:2f:2b:0a:af:8f:e5:
12:4d:1f:8f:93:c2:c2:91:36:b3:d4:d4:a5:74:61:
5a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E0:66:76:23:B0:16:56:A5:12:72:F4:8C:2B:E3:C4:00:79:AA:65
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:c9:4b:3e:50:cc:ba:ac:b8:7a:9d:6e:81:8f:d6:e3:80:92:
4c:0b:b5:b2:da:4b:9c:32:5b:04:0c:54:f9:85:f9:16:eb:a5:
79:14:3d:27:fd:4d:5c:08:8f:87:7a:e9:7e:5a:0d:ca:c8:b9:
bb:62:f4:68:af:4f:ee:f7:12:a0:fd:74:e3:60:b7:07:bd:d2:
cd:70:4f:18:5c:05:72:92:97:20:44:2a:3d:6c:81:8a:b0:93:
33:b7:ba:3a:db:67:83:aa:34:28:43:91:fb:95:40:35:11:2c:
a3:51:8a:41:5b:e3:8b:ca:b8:b9:49:ab:5b:21:4d:01:53:10:
34:af:9c:a2:25:68:93:d6:c5:bd:69:bb:13:7c:51:e8:5d:76:
86:f2:9b:5d:ae:91:f2:5e:d1:3b:15:a3:d9:f2:e9:83:19:71:
27:f4:c2:d2:ce:d7:ad:2a:ad:a4:9d:78:4d:eb:2f:ae:eb:00:
e3:5e:32:b3:1a:d2:27:1d:0b:92:63:50:1f:f8:c7:48:a3:d5:
be:12:79:05:4c:1c:0f:9b:ce:44:24:78:0c:cd:41:5f:88:e0:
95:9b:66:9c:e9:43:8c:8c:3d:d2:b3:41:68:17:1c:52:3d:a4:
4e:f4:f0:95:d3:a1:c9:65:b6:c1:bf:33:ca:12:35:58:b0:8f:
1e:ba:1e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:16 2025 by rpki-client