Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: zWaZ4iRWnh/yZK/Wmm2pKCmWjXpdIDI46LAJQeYED7c=
Subject key identifier: E1:A5:78:9E:BA:EA:99:63:47:F8:45:A5:FC:23:D3:E7:34:1A:47:93
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 019893DB0638B1D268EECCDC2180E152A577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1628
Signing time: Sun 10 Aug 2025 12:01:01 +0000
Manifest this update: Sun 10 Aug 2025 12:01:01 +0000
Manifest next update: Mon 11 Aug 2025 12:01:01 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: ZuL7NVMkbCtn+55AQnXzwlu/k+e+O5F242SwRrhoYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:db:06:38:b1:d2:68:ee:cc:dc:21:80:e1:52:a5:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Aug 10 12:01:01 2025 GMT
Not After : Aug 11 12:01:01 2025 GMT
Subject: CN=e1a5789ebaea996347f845a5fc23d3e7341a4793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c2:80:64:ef:22:b2:4a:d8:7f:5f:7c:70:90:
ce:5b:94:a4:09:8a:81:23:7f:a8:ea:5a:88:9c:c6:
20:cd:a9:89:93:35:f5:07:be:4d:44:61:c2:4c:4a:
39:06:9c:eb:9e:b8:8d:36:94:c1:6d:f9:8e:64:cd:
95:29:61:96:a2:9d:d4:6b:19:f2:38:45:f2:e9:1d:
44:31:c7:36:ec:d2:03:13:6d:67:13:03:7b:b3:a8:
d3:50:17:c1:30:90:7f:a3:8f:50:25:a5:34:62:90:
0b:e4:be:7b:0b:8b:1d:b6:cd:37:99:1b:d2:69:f9:
8f:07:6d:9e:05:05:5a:b2:69:ab:4b:05:91:6e:70:
75:33:da:69:42:22:9a:b5:cb:89:eb:cc:0b:f8:30:
56:52:ff:13:3c:1d:b2:0c:ee:fc:a4:33:85:db:dd:
b9:68:1f:10:52:c3:de:bc:f9:eb:35:b5:1e:87:28:
ed:60:44:cb:13:51:b1:66:0f:09:60:eb:40:af:57:
8d:66:96:00:b1:12:8a:2d:55:c5:25:0f:1f:43:42:
8c:d1:24:ab:c8:f7:24:3a:04:02:08:05:47:f6:00:
04:b9:11:36:1a:d0:71:0d:08:99:ec:18:74:98:d3:
d2:88:e0:22:9f:81:a4:65:5a:88:d7:c9:7c:57:3c:
69:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A5:78:9E:BA:EA:99:63:47:F8:45:A5:FC:23:D3:E7:34:1A:47:93
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:58:c3:b4:29:a4:1c:d4:be:b8:94:e4:57:9d:b5:32:20:5b:
60:7b:18:76:fc:f3:6f:4a:b0:b1:b9:7b:14:42:e8:c3:4c:e7:
75:38:85:0c:8d:bd:9a:37:51:7b:72:0a:0b:54:05:5c:b1:a9:
d1:bd:e4:d0:a3:90:94:fe:10:54:a6:78:7d:05:8f:08:e6:77:
02:38:22:1a:1d:71:ce:68:bf:b4:3c:61:f4:0c:db:1c:09:a2:
26:70:fd:e2:3f:ee:4b:8f:67:59:ba:20:2d:ad:56:91:55:4f:
f3:ea:cb:a1:37:16:5b:a1:2c:f9:6c:db:b4:8e:14:10:0b:0c:
64:b7:4e:16:2f:5d:97:e2:3a:cf:56:a2:df:0f:99:e9:23:50:
e0:19:5b:70:b0:25:b2:55:a2:0e:25:20:ee:c6:1d:08:e8:14:
92:24:10:bd:8a:0b:13:10:14:ec:d3:52:03:82:55:f2:3b:e6:
bd:2d:85:a2:91:ce:70:ee:63:71:47:b7:99:c6:d7:99:0c:a2:
c2:bc:3a:e6:1c:09:68:40:a1:84:b9:13:ac:b6:de:5b:75:47:
ef:3f:31:e4:ce:f7:42:a5:10:c1:8b:ae:ed:71:af:98:69:41:
24:bd:6c:8b:2d:7b:be:1e:c5:63:ba:0a:64:f0:5d:48:d4:53:
72:f5:f8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:59:16 2025 by rpki-client