Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: FwWqJPYy4+Lk/mJjbJblqOyoopr4NZkoyJrES+qUdzg=
Subject key identifier: D6:D5:87:A3:D5:99:2B:B5:7D:4B:52:73:C6:36:D1:27:FD:4A:3F:5D
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 0197703F21DD92EA35F7AA6A4B24702BBC5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 21:01:14 +0000
Manifest this update: Sat 14 Jun 2025 21:01:14 +0000
Manifest next update: Sun 15 Jun 2025 21:01:14 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: XehywJ5B9v/teT3vlyCMgaXPAhDjmW08jxJUSh4zlIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3f:21:dd:92:ea:35:f7:aa:6a:4b:24:70:2b:bc:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Jun 14 21:01:14 2025 GMT
Not After : Jun 15 21:01:14 2025 GMT
Subject: CN=d6d587a3d5992bb57d4b5273c636d127fd4a3f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4d:78:3b:cc:d0:0a:56:c2:3c:f4:2d:12:42:
38:15:1b:9c:39:42:f0:20:1b:1a:07:fb:f1:91:64:
d7:78:24:a8:c8:9e:45:35:e4:99:69:0a:26:54:55:
0b:0e:d5:2e:ce:01:96:24:36:17:bd:d0:79:2a:49:
6a:2d:af:f2:34:a7:0f:6d:71:08:c7:0b:4f:4c:c9:
d2:d4:10:d5:5c:e0:5e:14:75:e8:c6:d2:95:97:16:
81:51:0c:f0:fd:ab:04:e9:7f:34:db:0d:0d:55:db:
18:d6:d1:52:a1:c5:86:95:96:64:1f:ca:9b:14:9b:
44:f2:20:1c:4f:87:35:43:63:f6:77:f0:7c:9c:a6:
5a:f0:dc:00:57:99:b9:ee:bc:c4:ab:84:85:98:97:
d4:6c:ca:12:09:2c:63:d6:12:e9:99:1f:33:43:a3:
37:4d:19:d8:e8:18:db:6c:65:a1:e8:55:f5:61:34:
b6:b4:77:56:43:e7:c4:e5:77:9b:df:84:de:66:c6:
a9:14:a0:fe:28:fe:cb:fc:87:e3:bf:61:10:07:c2:
28:42:2d:3b:40:ee:5c:54:7f:5b:46:38:67:a6:4e:
df:ea:09:b1:9d:1d:52:83:9a:c8:10:c2:a8:17:74:
b9:a4:e5:cd:99:8a:4e:5b:95:4e:1b:0f:3b:40:06:
40:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D5:87:A3:D5:99:2B:B5:7D:4B:52:73:C6:36:D1:27:FD:4A:3F:5D
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:a4:bb:f4:bc:84:14:6e:45:dd:b1:46:cf:71:bb:6d:a5:f0:
79:ba:f9:88:1b:43:35:77:2f:79:d6:e6:dc:15:e9:d1:5d:6e:
ae:b6:ad:fc:e5:70:d2:58:c5:b1:29:10:68:e0:e3:65:76:90:
24:31:3d:9c:8a:7f:74:dc:db:b1:59:e9:df:85:a3:4c:05:06:
9f:ef:32:81:12:c0:47:c4:b7:2a:97:37:26:6c:78:7b:5c:82:
fd:1e:24:2f:59:9f:d8:6c:ea:6b:42:d3:70:ba:1a:ff:bc:72:
b7:56:01:c6:ca:7f:88:af:4d:55:87:b7:26:99:44:7b:ad:07:
0e:41:d2:cf:df:70:0c:da:d9:81:de:74:70:df:2b:be:3e:65:
34:be:e0:f9:3c:2f:37:67:2e:7e:bb:ee:24:d0:a7:29:74:83:
af:ac:fa:2c:18:e9:e0:03:95:0b:e8:9b:55:94:3e:a3:70:3c:
21:6d:4b:58:55:82:15:b5:bb:bc:3f:8a:a3:36:24:e8:dc:f5:
5f:5d:45:4a:0e:91:09:f0:05:b1:0e:79:be:00:91:53:42:14:
fa:55:11:7c:f1:ad:b6:d6:ba:d4:9c:6d:8d:aa:cc:c7:83:3c:
6a:e7:21:96:ba:d2:68:db:96:5b:b3:21:9f:9b:4c:8c:44:e2:
6d:d7:91:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwPyHdkuo196pqSyRwK7xdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1
OTc2MzQwHhcNMjUwNjE0MjEwMTE0WhcNMjUwNjE1MjEwMTE0WjAzMTEwLwYDVQQD
EyhkNmQ1ODdhM2Q1OTkyYmI1N2Q0YjUyNzNjNjM2ZDEyN2ZkNGEzZjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq014O8zQClbCPPQtEkI4FRucOULw
IBsaB/vxkWTXeCSoyJ5FNeSZaQomVFULDtUuzgGWJDYXvdB5KklqLa/yNKcPbXEI
xwtPTMnS1BDVXOBeFHXoxtKVlxaBUQzw/asE6X802w0NVdsY1tFSocWGlZZkH8qb
FJtE8iAcT4c1Q2P2d/B8nKZa8NwAV5m57rzEq4SFmJfUbMoSCSxj1hLpmR8zQ6M3
TRnY6BjbbGWh6FX1YTS2tHdWQ+fE5Xeb34TeZsapFKD+KP7L/Ifjv2EQB8IoQi07
QO5cVH9bRjhnpk7f6gmxnR1Sg5rIEMKoF3S5pOXNmYpOW5VOGw87QAZA9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNbVh6PVmSu1fUtSc8Y20Sf9Sj9dMB8GA1UdIwQY
MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt
ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj
LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT6S79LyE
FG5F3bFGz3G7baXwebr5iBtDNXcvedbm3BXp0V1urrat/OVw0ljFsSkQaODjZXaQ
JDE9nIp/dNzbsVnp34WjTAUGn+8ygRLAR8S3Kpc3Jmx4e1yC/R4kL1mf2Gzqa0LT
cLoa/7xyt1YBxsp/iK9NVYe3JplEe60HDkHSz99wDNrZgd50cN8rvj5lNL7g+Twv
N2cufrvuJNCnKXSDr6z6LBjp4AOVC+ibVZQ+o3A8IW1LWFWCFbW7vD+KozYk6Nz1
X11FSg6RCfAFsQ55vgCRU0IU+lURfPGttta61JxtjarMx4M8auchlrrSaNuWW7Mh
n5tMjETibdeRKA==
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:58:15 2025 by rpki-client