Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: 9mpnn3eZLRO04TLRCvryGqNKq4ymPkof89z6Of/7ps0=
Subject key identifier: CA:EE:7E:FA:8F:5F:22:8C:29:B5:55:1A:3D:4B:80:0D:84:38:E5:B6
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 0196BE92E0F777E21C5E485C21D373EA36A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1535
Signing time: Sun 11 May 2025 09:00:18 +0000
Manifest this update: Sun 11 May 2025 09:00:18 +0000
Manifest next update: Mon 12 May 2025 09:00:18 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: kukN6GeBNxQyQ5Ky+9hrBDy28XNUHWMledaI6Bfal2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:92:e0:f7:77:e2:1c:5e:48:5c:21:d3:73:ea:36:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: May 11 09:00:18 2025 GMT
Not After : May 12 09:00:18 2025 GMT
Subject: CN=caee7efa8f5f228c29b5551a3d4b800d8438e5b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fe:f0:9e:3f:ef:89:f6:03:02:e1:c1:64:51:
7d:db:42:7f:e8:8f:43:99:6a:d8:ba:da:83:c3:94:
b5:7e:a0:3f:80:0e:03:06:2f:3a:ac:ed:86:50:9d:
39:08:eb:c9:22:89:fe:49:16:53:ce:88:53:46:cb:
f4:b5:28:45:9d:34:b7:3d:48:67:10:63:1c:ec:f7:
45:42:65:25:8f:f0:ae:e8:86:b7:e6:a0:5e:32:b5:
fa:64:9a:27:f2:43:57:3c:73:f7:67:18:51:84:ea:
7b:61:61:2a:9b:33:73:cc:69:81:6d:45:ca:32:86:
e1:a7:d6:fd:67:03:26:48:db:f6:2b:07:22:b9:de:
ef:4b:6a:c1:7e:59:02:89:d4:e5:3e:d7:13:f0:f8:
74:a4:17:6c:92:98:09:ed:9a:ec:db:9a:6b:44:5f:
8b:90:2a:d1:02:19:cf:51:15:30:a6:fb:88:bf:59:
e0:e9:7b:a4:92:f0:2e:95:c9:2a:a7:a1:bc:e6:ce:
cf:40:c4:81:f4:2b:78:d0:8c:eb:e2:1f:94:4d:f2:
ce:3e:fb:74:25:51:86:b8:77:60:c1:e4:a5:83:41:
6b:9e:e6:00:fc:f8:94:da:ea:c7:5f:a2:12:ae:92:
ac:b3:73:fc:0a:8a:bf:b2:7c:4f:05:33:90:23:b4:
22:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:EE:7E:FA:8F:5F:22:8C:29:B5:55:1A:3D:4B:80:0D:84:38:E5:B6
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:3b:cb:ca:3b:f6:35:23:ba:9f:73:86:72:55:28:9a:ad:f1:
af:48:9a:47:16:dc:6f:f3:31:1e:80:94:97:df:5a:4c:07:4e:
d0:ca:f8:e5:c2:00:6b:7d:ce:6f:8d:47:1f:5e:eb:a1:ce:a8:
33:c9:e5:b6:b1:38:a9:68:cc:75:18:ac:92:d7:eb:22:d6:d1:
a8:93:09:cc:38:b7:9e:f8:a1:9d:ec:93:9e:b0:28:55:c9:a8:
f6:92:2c:be:73:71:a0:37:70:e8:3e:2c:48:8d:0d:90:74:d1:
35:8c:28:66:c1:b2:2f:8a:f0:d5:06:1c:83:13:c2:83:44:4e:
e5:ed:4b:8f:18:83:bd:fa:4f:64:69:cf:61:64:e8:0c:ea:2a:
5e:a4:17:f5:46:b6:ac:c4:88:2a:2c:5e:b5:89:35:6f:11:29:
dd:c3:ee:a6:df:ea:1c:ed:2a:f0:2d:d6:fa:ce:fe:78:cc:59:
9e:93:d1:b2:5d:80:f0:3e:1e:bd:80:c1:97:20:e3:49:31:64:
17:34:44:d5:bd:22:ab:dd:76:01:ea:c7:3f:c2:fb:23:41:e5:
a0:3a:cd:c6:43:be:28:21:aa:67:9f:34:04:e2:02:98:9d:2f:
80:67:c1:fc:8a:cc:24:4d:bc:65:6f:bb:f9:b2:0b:d4:11:5a:
87:4b:25:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+kuD3d+IcXkhcIdNz6jajMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1
OTc2MzQwHhcNMjUwNTExMDkwMDE4WhcNMjUwNTEyMDkwMDE4WjAzMTEwLwYDVQQD
EyhjYWVlN2VmYThmNWYyMjhjMjliNTU1MWEzZDRiODAwZDg0MzhlNWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/7wnj/vifYDAuHBZFF920J/6I9D
mWrYutqDw5S1fqA/gA4DBi86rO2GUJ05COvJIon+SRZTzohTRsv0tShFnTS3PUhn
EGMc7PdFQmUlj/Cu6Ia35qBeMrX6ZJon8kNXPHP3ZxhRhOp7YWEqmzNzzGmBbUXK
Mobhp9b9ZwMmSNv2Kwciud7vS2rBflkCidTlPtcT8Ph0pBdskpgJ7Zrs25prRF+L
kCrRAhnPURUwpvuIv1ng6XukkvAulckqp6G85s7PQMSB9Ct40Izr4h+UTfLOPvt0
JVGGuHdgweSlg0FrnuYA/PiU2urHX6ISrpKss3P8Coq/snxPBTOQI7QihQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMrufvqPXyKMKbVVGj1LgA2EOOW2MB8GA1UdIwQY
MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt
ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj
LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuDvLyjv2
NSO6n3OGclUomq3xr0iaRxbcb/MxHoCUl99aTAdO0Mr45cIAa33Ob41HH17roc6o
M8nltrE4qWjMdRisktfrItbRqJMJzDi3nvihneyTnrAoVcmo9pIsvnNxoDdw6D4s
SI0NkHTRNYwoZsGyL4rw1QYcgxPCg0RO5e1LjxiDvfpPZGnPYWToDOoqXqQX9Ua2
rMSIKixetYk1bxEp3cPupt/qHO0q8C3W+s7+eMxZnpPRsl2A8D4evYDBlyDjSTFk
FzRE1b0iq912AerHP8L7I0HloDrNxkO+KCGqZ580BOICmJ0vgGfB/IrMJE28ZW+7
+bIL1BFah0sl1w==
-----END CERTIFICATE-----
Generated at Sun May 11 16:59:53 2025 by rpki-client