Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: xxmFiwwOLxjL8qkFaUEH84dkwmPyK4zOpHFQ/bmSwM0=
Subject key identifier: 3F:91:02:79:BE:71:73:6B:D2:B7:71:4D:4B:5E:7F:C9:35:8A:C0:E3
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 019CA9460ED3D23C86FE13F1F4ED621B5AAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 12:01:06 +0000
Manifest this update: Sun 01 Mar 2026 12:01:06 +0000
Manifest next update: Mon 02 Mar 2026 12:01:06 +0000
Files and hashes: 1: 9muaEb76gYCulXMmMLPDvSg3Tfs.roa (hash: V31luJDNiwqlc5PDFE/H4c6gZhVQ7dVXjrntc2C134k=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: Ik4ZDJS8ueLlgXi72F1bFClC8rHhnp2ll/vCYL9pFvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:46:0e:d3:d2:3c:86:fe:13:f1:f4:ed:62:1b:5a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Mar 1 12:01:06 2026 GMT
Not After : Mar 2 12:01:06 2026 GMT
Subject: CN=3f910279be71736bd2b7714d4b5e7fc9358ac0e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:45:a6:0d:55:b5:c8:18:07:6f:3c:d9:6b:ec:
f0:ff:f1:fc:d5:36:cd:3f:82:59:cf:77:4a:ed:14:
62:57:21:02:c2:3e:29:9b:30:be:18:89:1d:54:4c:
fe:df:35:72:b2:c5:18:d0:05:bd:07:ee:aa:75:26:
d0:5c:1b:47:92:80:06:ac:13:c0:ff:2a:94:42:59:
75:7a:5e:dd:97:bb:5e:b2:a0:9f:35:78:9d:87:2e:
f9:c0:05:d3:53:9e:2b:5c:49:97:e5:39:d8:d1:06:
4e:58:27:6e:7f:f0:b9:7f:af:2d:c6:0b:46:fe:68:
39:f9:83:0e:f3:25:05:9d:d1:b0:0e:ca:f4:94:bc:
f6:06:fb:11:e1:8f:45:f4:f1:b2:80:9c:59:46:3d:
26:c1:47:76:c9:0f:34:c0:db:ec:3a:3c:86:5b:4b:
98:03:2b:63:4e:ce:f1:61:9c:83:88:fc:ea:11:a6:
72:a5:86:cb:d3:ac:34:f0:9d:8a:16:76:6e:f8:46:
95:46:04:1e:85:c5:8f:f5:b6:2f:3e:4f:a4:05:ca:
e5:b7:33:40:a9:a8:98:a6:b9:b8:4e:1c:92:0a:27:
16:71:3f:c8:8e:25:b8:1b:50:3d:7d:a5:82:39:04:
da:b0:d3:84:5e:19:30:01:b4:09:8c:51:0b:16:13:
ae:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:91:02:79:BE:71:73:6B:D2:B7:71:4D:4B:5E:7F:C9:35:8A:C0:E3
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:6d:b7:9a:27:9f:d0:6c:39:f8:52:17:60:e0:5a:91:65:33:
ef:fb:f5:96:21:ce:a2:14:cd:48:0d:4a:82:e6:3c:1c:e8:70:
b5:05:d0:10:23:8c:35:91:bb:ab:49:c7:ad:c4:03:b8:36:15:
06:f3:ef:16:46:cf:c2:16:8a:7e:e7:4a:48:85:ee:9e:91:14:
2d:3c:44:d4:39:51:18:89:dc:ba:9e:17:76:3f:28:e0:b8:a8:
01:20:8a:e5:fc:4f:b8:e6:97:0b:7c:66:db:cc:dd:67:b0:2e:
b8:1d:3f:e7:72:a9:fb:87:43:1e:d6:6d:7b:94:2e:29:3b:df:
6d:8a:68:8d:7d:a6:8f:35:b1:ae:4e:43:07:cf:65:ed:0d:73:
5c:21:40:8e:e3:d7:03:00:ab:56:b3:50:ef:61:9d:aa:06:4a:
d6:48:cd:ed:11:64:1a:dd:b3:50:f6:94:56:ad:18:75:61:c6:
a6:1a:e4:13:60:76:ca:ae:e2:ca:98:18:06:f8:48:9e:9e:15:
4c:c7:93:c0:c0:fa:88:c6:00:08:25:34:8b:8e:d9:47:0c:fd:
81:9d:ce:40:75:0f:ba:f9:b4:5e:29:d2:98:75:76:5c:eb:1b:
df:ba:d8:cb:62:cc:ae:ae:09:ac:af:05:d3:9c:46:1c:4c:b5:
12:f1:0d:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypRg7T0jyG/hPx9O1iG1quMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1
OTc2MzQwHhcNMjYwMzAxMTIwMTA2WhcNMjYwMzAyMTIwMTA2WjAzMTEwLwYDVQQD
EygzZjkxMDI3OWJlNzE3MzZiZDJiNzcxNGQ0YjVlN2ZjOTM1OGFjMGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UWmDVW1yBgHbzzZa+zw//H81TbN
P4JZz3dK7RRiVyECwj4pmzC+GIkdVEz+3zVyssUY0AW9B+6qdSbQXBtHkoAGrBPA
/yqUQll1el7dl7tesqCfNXidhy75wAXTU54rXEmX5TnY0QZOWCduf/C5f68txgtG
/mg5+YMO8yUFndGwDsr0lLz2BvsR4Y9F9PGygJxZRj0mwUd2yQ80wNvsOjyGW0uY
AytjTs7xYZyDiPzqEaZypYbL06w08J2KFnZu+EaVRgQehcWP9bYvPk+kBcrltzNA
qaiYprm4ThySCicWcT/IjiW4G1A9faWCOQTasNOEXhkwAbQJjFELFhOutQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+RAnm+cXNr0rdxTUtef8k1isDjMB8GA1UdIwQY
MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt
ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj
LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcm23mief
0Gw5+FIXYOBakWUz7/v1liHOohTNSA1KguY8HOhwtQXQECOMNZG7q0nHrcQDuDYV
BvPvFkbPwhaKfudKSIXunpEULTxE1DlRGIncup4Xdj8o4LioASCK5fxPuOaXC3xm
28zdZ7AuuB0/53Kp+4dDHtZte5QuKTvfbYpojX2mjzWxrk5DB89l7Q1zXCFAjuPX
AwCrVrNQ72GdqgZK1kjN7RFkGt2zUPaUVq0YdWHGphrkE2B2yq7iypgYBvhInp4V
TMeTwMD6iMYACCU0i47ZRwz9gZ3OQHUPuvm0XinSmHV2XOsb37rYy2LMrq4JrK8F
05xGHEy1EvEN9A==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:57:58 2026 by rpki-client