Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: RPREL0f9tyx6lme2aJySbJetCND6U/byPy38hxBDfvE=
Subject key identifier: 6D:21:9F:93:1D:04:5E:A7:03:EB:EB:15:4C:0F:01:EB:F0:FC:DF:DC
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 01987DF8538F4DCEFF357CDE87AF851C6E33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 15AD
Signing time: Wed 06 Aug 2025 06:01:22 +0000
Manifest this update: Wed 06 Aug 2025 06:01:22 +0000
Manifest next update: Thu 07 Aug 2025 06:01:22 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: KqrqYtBJyKSP1PwOPurCuT9FqgqGRZZnTpnQPdUbDMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:53:8f:4d:ce:ff:35:7c:de:87:af:85:1c:6e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Aug 6 06:01:22 2025 GMT
Not After : Aug 7 06:01:22 2025 GMT
Subject: CN=6d219f931d045ea703ebeb154c0f01ebf0fcdfdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:f5:ec:17:42:38:90:b7:b3:f0:33:a8:e5:
d1:93:a2:a0:aa:1f:cb:07:b0:22:f2:ab:21:d5:d5:
0d:e0:ca:e7:5f:06:da:6d:e4:8b:2a:27:0c:e0:09:
1a:a5:c4:13:1a:59:dd:c0:30:2f:f5:d4:90:43:ab:
64:d3:55:64:6d:63:51:b8:d2:83:62:55:d8:65:0b:
79:45:70:a6:29:b3:33:a9:89:a6:c1:70:a9:c6:6c:
7d:3b:74:34:c5:75:d4:6a:c1:b3:d9:a7:89:27:2b:
ab:d8:96:a6:44:c9:e4:12:12:cb:42:ee:1e:b4:52:
ee:ad:06:73:a1:1b:49:98:37:5c:9a:ee:50:3e:56:
17:70:45:30:5b:91:bc:14:01:21:6b:70:24:4e:8d:
a1:b9:6b:3c:c5:66:8e:3a:e4:35:46:fb:30:db:c9:
dd:0e:2b:24:f5:10:fe:17:36:be:3e:71:85:5f:fe:
7f:9d:b2:05:19:9b:7b:d9:01:e4:b0:ab:b1:1a:91:
15:d7:25:e2:c4:12:29:ec:95:d0:27:92:d7:4d:5f:
1b:72:f6:95:82:97:a9:da:de:8f:51:c4:a8:d6:70:
7e:92:42:4b:43:b2:27:7b:09:54:fb:b3:44:80:56:
c9:b5:a7:e7:a2:37:10:b4:0e:ef:0a:37:bb:98:c3:
1c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:21:9F:93:1D:04:5E:A7:03:EB:EB:15:4C:0F:01:EB:F0:FC:DF:DC
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:01:ba:83:77:3c:45:9c:ca:1d:38:ee:0f:ff:f8:d3:6f:0c:
58:0d:e9:14:45:33:fa:2c:b4:27:4b:15:12:d9:a1:4b:15:d2:
8a:78:37:43:2d:cf:3c:b2:74:70:9a:db:89:bd:0c:79:cf:d5:
51:97:c3:d9:99:2d:15:56:b0:a7:2d:24:14:5e:41:37:7a:24:
d2:30:e4:85:6a:07:b3:22:53:f6:1a:60:91:bc:a7:27:d9:b5:
95:24:31:f4:d9:95:49:4f:db:57:58:bd:5d:4a:f4:92:ac:9f:
72:d9:3e:ee:39:01:fc:0a:cd:d1:3a:a3:10:01:23:78:6c:b5:
e3:c9:ad:0f:5e:bb:04:44:35:90:32:16:93:b4:94:83:26:ca:
e0:2d:d6:f8:1c:62:fd:fd:f6:a1:1f:22:97:ee:3f:8f:f5:dc:
53:74:b1:86:d0:c2:df:e2:cd:91:b4:7c:20:6b:38:7e:63:c5:
88:f2:26:cb:ca:09:2d:fa:08:e2:71:0c:cd:29:ba:05:31:56:
51:e2:3a:e9:73:f3:bb:4f:35:16:00:1c:b0:56:80:0d:64:a8:
e5:60:a4:91:6c:e2:57:d8:9e:50:37:c1:97:63:95:49:c7:37:
0a:1e:ba:55:2f:fd:3d:c1:ab:4a:ef:58:9d:80:08:27:4d:42:
d1:cc:16:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9+FOPTc7/NXzeh6+FHG4zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZDRhZDRiZjQxNDE3YmEzODM4NGQ2NWJjMmQwN2MwZjY4
NTA5ZTEwHhcNMjUwODA2MDYwMTIyWhcNMjUwODA3MDYwMTIyWjAzMTEwLwYDVQQD
Eyg2ZDIxOWY5MzFkMDQ1ZWE3MDNlYmViMTU0YzBmMDFlYmYwZmNkZmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvn17BdCOJC3s/AzqOXRk6Kgqh/L
B7Ai8qsh1dUN4MrnXwbabeSLKicM4AkapcQTGlndwDAv9dSQQ6tk01VkbWNRuNKD
YlXYZQt5RXCmKbMzqYmmwXCpxmx9O3Q0xXXUasGz2aeJJyur2JamRMnkEhLLQu4e
tFLurQZzoRtJmDdcmu5QPlYXcEUwW5G8FAEha3AkTo2huWs8xWaOOuQ1Rvsw28nd
Disk9RD+Fza+PnGFX/5/nbIFGZt72QHksKuxGpEV1yXixBIp7JXQJ5LXTV8bcvaV
gpep2t6PUcSo1nB+kkJLQ7InewlU+7NEgFbJtafnojcQtA7vCje7mMMcFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG0hn5MdBF6nA+vrFUwPAevw/N/cMB8GA1UdIwQY
MBaAFN3UrUv0FBe6ODhNZbwtB8D2hQnhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2RTdFNfUVVGN280T0UxbHZDMEh3UGFGQ2VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8wOTQ5NjktMTNlZC00YzE0LTg1NzUt
N2JjOGMyMGEyMzVhLzEvM2RTdFNfUVVGN280T0UxbHZDMEh3UGFGQ2VFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8wOTQ5NjktMTNlZC00YzE0LTg1NzUtN2JjOGMyMGEyMzVh
LzEvM2RTdFNfUVVGN280T0UxbHZDMEh3UGFGQ2VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATAG6g3c8
RZzKHTjuD//4028MWA3pFEUz+iy0J0sVEtmhSxXSing3Qy3PPLJ0cJrbib0Mec/V
UZfD2ZktFVawpy0kFF5BN3ok0jDkhWoHsyJT9hpgkbynJ9m1lSQx9NmVSU/bV1i9
XUr0kqyfctk+7jkB/ArN0TqjEAEjeGy148mtD167BEQ1kDIWk7SUgybK4C3W+Bxi
/f32oR8il+4/j/XcU3SxhtDC3+LNkbR8IGs4fmPFiPImy8oJLfoI4nEMzSm6BTFW
UeI66XPzu081FgAcsFaADWSo5WCkkWziV9ieUDfBl2OVScc3Ch66VS/9PcGrSu9Y
nYAIJ01C0cwWVA==
-----END CERTIFICATE-----
Generated at Wed Aug 6 14:07:23 2025 by rpki-client