Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: woCsIXEYMdkLoFn/dB2WmtX1wV1Co5ugztiv3KnBX9k=
Subject key identifier: BC:CC:22:71:77:CE:3A:E4:95:6B:7F:A4:AC:23:94:68:B7:0C:97:B6
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 019DA4539ACCE2A776DEEDEDF03A2E96C8C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 18C8
Signing time: Sun 19 Apr 2026 06:00:35 +0000
Manifest this update: Sun 19 Apr 2026 06:00:35 +0000
Manifest next update: Mon 20 Apr 2026 06:00:35 +0000
Files and hashes: 1: 9muaEb76gYCulXMmMLPDvSg3Tfs.roa (hash: V31luJDNiwqlc5PDFE/H4c6gZhVQ7dVXjrntc2C134k=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: c1U2o8RHYJBBvBQCerUjn3Bbrh3vkGK992p2BU8Iixo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:9a:cc:e2:a7:76:de:ed:ed:f0:3a:2e:96:c8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Apr 19 06:00:35 2026 GMT
Not After : Apr 20 06:00:35 2026 GMT
Subject: CN=bccc227177ce3ae4956b7fa4ac239468b70c97b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:7c:76:6f:a4:f3:c4:2d:72:4c:c4:c0:06:
02:7a:d8:b2:b8:13:dd:70:90:17:d1:1f:a0:e2:40:
01:66:d7:81:11:12:e2:f1:92:47:96:bb:88:f4:80:
de:9f:25:fa:b8:c4:bd:0b:ed:e0:1d:8d:8f:5e:b3:
a7:af:5b:92:e0:ca:8c:1a:93:95:e2:98:eb:eb:0e:
5c:fc:40:03:92:10:d8:4b:4b:1f:53:b0:35:34:f2:
ee:1d:e2:a1:82:8e:8c:38:ae:7e:78:df:6a:29:7b:
87:da:d8:36:35:17:3c:d6:1c:3a:76:64:79:8b:02:
40:5c:32:f3:c6:a5:d8:d3:76:3b:30:74:08:fa:b8:
f0:42:8f:a8:37:53:c2:80:99:7d:b6:0c:a1:dd:4f:
07:b6:11:b2:ca:90:d8:33:83:36:af:4a:c8:ca:11:
c0:d2:f2:b3:20:18:e5:ac:6d:3f:c4:b8:3a:7c:d6:
f2:68:38:5e:33:21:26:cb:8e:fe:08:ce:40:24:32:
a2:85:3a:83:77:94:88:17:a5:c2:65:0c:c6:0d:22:
7e:51:f5:b3:88:f9:58:38:5b:9d:19:d0:d1:ab:56:
1c:1d:4d:fd:9e:55:55:26:81:a7:5e:b4:40:d8:29:
28:2b:0b:2b:39:bf:54:c0:d5:27:0a:86:83:60:76:
68:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:CC:22:71:77:CE:3A:E4:95:6B:7F:A4:AC:23:94:68:B7:0C:97:B6
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ae:35:6e:07:3b:ae:24:3f:67:88:53:b0:42:3f:e5:a5:24:
d6:fb:4a:d0:5a:f1:79:d5:c8:65:2b:42:e5:6b:6c:32:c0:f8:
c6:bb:f8:c4:20:41:6e:b2:58:e6:be:f7:bd:cc:21:29:3b:aa:
6a:e9:22:90:2a:13:05:d7:54:2c:38:d8:79:dc:57:55:ac:3e:
d5:48:9d:06:9f:02:fd:5c:8a:88:a7:2f:57:cb:03:99:fa:27:
aa:f9:93:75:5d:03:06:bf:4f:8f:12:8a:27:50:b8:a7:d8:8c:
7b:01:57:1d:6f:65:37:7e:28:f2:22:b1:a2:75:92:46:cc:9f:
12:af:b9:97:ef:4b:32:31:3d:c9:7d:fe:2d:87:a3:f1:f1:32:
3d:a6:19:37:a4:ae:19:4f:f9:ac:14:d3:1f:b6:dc:5f:5e:89:
03:89:78:2e:7f:26:62:24:0d:5b:cd:9b:f9:50:13:28:aa:2e:
af:5d:94:df:7a:9c:90:40:8a:04:cf:aa:7c:ca:05:f3:f2:07:
e8:31:14:1f:4d:83:0f:0f:e1:30:3e:99:a3:3d:f8:bb:96:42:
6e:4a:79:e9:0d:95:6f:2e:6f:8f:13:e8:38:e0:0f:0f:f2:32:
dd:e0:42:83:7e:ca:70:db:d8:52:19:ba:43:b6:1d:b4:ea:3c:
80:36:e1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:54:04 2026 by rpki-client