Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: B4TG6FvZzJvoXRUGH5ug0OOFH//vkLpv8agK1F5WOcA=
Subject key identifier: 07:74:FB:F6:C0:16:D6:18:18:07:40:C0:FB:4D:BC:3A:CC:D9:FF:77
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 019D28BB640CAC35C2DB51399EDDF06964CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 06:01:02 +0000
Manifest this update: Thu 26 Mar 2026 06:01:02 +0000
Manifest next update: Fri 27 Mar 2026 06:01:02 +0000
Files and hashes: 1: 9muaEb76gYCulXMmMLPDvSg3Tfs.roa (hash: V31luJDNiwqlc5PDFE/H4c6gZhVQ7dVXjrntc2C134k=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: Lxk0EaKCffLlHBCo6q4c2J28i/S3QVVqG0sMzaTPAxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:64:0c:ac:35:c2:db:51:39:9e:dd:f0:69:64:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Mar 26 06:01:02 2026 GMT
Not After : Mar 27 06:01:02 2026 GMT
Subject: CN=0774fbf6c016d618180740c0fb4dbc3accd9ff77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:40:3d:58:9e:1f:26:6a:23:37:08:2a:17:7d:
2d:58:f1:d8:a0:45:d6:1c:42:f6:2a:2e:7f:09:79:
49:ed:8c:65:86:91:09:37:4f:d7:b5:9d:28:c4:10:
8f:b9:8a:40:e7:ed:50:c1:0b:a2:0e:65:78:75:48:
68:86:09:9b:ee:d2:af:b9:53:bd:33:01:77:fe:fd:
11:f0:7b:6a:17:87:74:9f:32:63:c3:de:5a:64:a0:
9d:c4:ff:86:7a:88:eb:ca:f2:fd:be:1c:f5:09:23:
d0:49:c5:c8:5b:11:e2:7d:15:a7:8f:25:13:aa:d7:
d2:02:c3:2a:6f:57:10:aa:41:96:d0:74:8a:e7:ea:
5d:41:44:97:4f:61:7f:27:32:7a:de:74:f0:7d:11:
11:c5:b6:85:2d:a7:07:39:e4:56:dc:b5:12:3a:6c:
1e:73:c9:8f:5a:75:c6:f7:d2:7d:04:59:68:a2:b8:
d6:fa:7c:8c:f6:8f:d8:0f:f5:f3:75:8b:a4:0e:3d:
d1:85:af:73:cd:64:6d:6c:a7:fa:d9:34:13:e2:b7:
92:71:ea:a5:92:a3:6a:87:d6:21:ba:2c:10:c1:21:
89:8d:12:92:52:4b:10:3c:02:8d:03:33:3b:31:4b:
87:f7:95:7d:3e:5a:7a:55:a2:0a:77:d4:a3:38:4e:
69:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:74:FB:F6:C0:16:D6:18:18:07:40:C0:FB:4D:BC:3A:CC:D9:FF:77
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:f9:c4:97:19:29:b7:ad:08:28:bc:9e:04:b1:4a:79:bb:16:
61:ba:52:15:de:93:5c:06:8a:8b:bb:e5:44:78:38:0d:e8:24:
f5:93:9d:42:f2:e5:dd:d1:e0:28:48:e8:0c:0a:49:04:fb:05:
e5:73:fa:9b:9d:f6:f0:9b:e2:27:1e:56:32:81:df:e5:28:01:
3c:de:02:a0:2b:18:fa:4f:f0:b4:57:4c:99:7a:5a:7a:f2:64:
50:c4:07:09:a7:b2:e7:c3:a3:60:e9:41:0e:56:53:af:ee:2d:
a4:1c:87:bb:07:0b:5b:7c:2d:97:34:fa:8e:af:b9:e0:1f:32:
45:ba:8a:16:3e:ce:39:4a:fb:d4:92:1b:6a:54:18:db:6f:b7:
98:3b:3b:49:6f:e1:1b:a9:d8:6a:c0:a9:8b:16:c1:84:2d:5a:
86:85:53:cb:04:c9:bd:dc:5e:23:0c:16:c1:fd:f4:0c:fe:32:
b1:27:2f:e8:b5:7e:06:46:6a:2a:f2:16:a8:e6:cf:3f:96:43:
2d:b7:99:78:7b:89:61:d7:7b:a6:de:93:55:00:d6:80:35:0e:
aa:59:58:06:b5:c1:f7:0a:3c:1a:79:72:68:f6:65:5a:86:35:
89:18:40:71:3e:7b:13:52:ad:d3:c1:5b:f8:33:ce:6e:4b:de:
63:a3:40:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:12:16 2026 by rpki-client