Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: UhsYTIIWPmSojnxzytrqRUgbOPamJjf5DfyhTNrys4g=
Subject key identifier: 8E:D7:34:B2:8D:D8:72:5F:9E:A2:DD:04:40:B1:62:E6:67:F6:3F:08
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 0199FCFD4CDC04268DF39010693B0E3FA9BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 15:01:22 +0000
Manifest this update: Sun 19 Oct 2025 15:01:22 +0000
Manifest next update: Mon 20 Oct 2025 15:01:22 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: voRebXu/7QXcRIu3pAN6Dl2VUYOL24+lZZSdO+oVtjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:4c:dc:04:26:8d:f3:90:10:69:3b:0e:3f:a9:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Oct 19 15:01:22 2025 GMT
Not After : Oct 20 15:01:22 2025 GMT
Subject: CN=8ed734b28dd8725f9ea2dd0440b162e667f63f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e0:f6:62:c5:ee:36:56:f6:80:dc:31:69:8f:
ae:af:92:2f:2e:55:c1:51:41:c1:7b:da:ec:90:2c:
fe:f0:20:bc:9d:0c:d3:4f:5a:50:70:f2:7d:09:2c:
2e:2b:98:50:75:f8:5f:fb:2b:9f:6e:7c:ab:a1:88:
65:84:7f:26:95:40:9d:0a:04:c0:88:21:18:6c:66:
6c:c0:35:b6:ed:b3:75:03:86:22:d0:0b:a3:56:39:
f3:3e:c9:9b:18:ae:0e:38:76:29:1c:f1:8f:13:0f:
5f:96:d2:1a:96:f6:18:42:a7:0d:90:31:5c:60:ab:
8b:f6:8d:99:94:da:ce:4d:ea:f9:ef:a6:c3:17:40:
be:46:97:71:45:c6:66:87:7e:4f:bb:64:72:c1:b8:
4e:ff:65:9f:93:c3:5b:a2:04:af:c0:86:db:80:01:
d7:df:85:4f:6a:eb:3a:59:4c:b9:8e:fa:76:da:15:
12:c1:cd:dc:e1:5a:a2:1c:0a:5f:2e:12:5f:e2:09:
c5:4e:d6:99:83:6a:13:78:d2:9a:80:8f:82:23:93:
e6:de:dd:d7:1d:3d:43:44:ae:a5:64:ba:21:6e:39:
ba:29:48:21:4d:22:0d:91:4d:ce:7e:e6:3c:d1:16:
ba:d5:53:e3:d9:8b:de:e0:97:e3:2b:dc:16:e4:eb:
4e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D7:34:B2:8D:D8:72:5F:9E:A2:DD:04:40:B1:62:E6:67:F6:3F:08
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:a2:60:7a:49:a3:ba:9f:1a:9d:20:6f:25:a6:82:a5:ba:38:
de:32:1c:82:42:88:a2:e0:5f:04:a0:09:5b:2e:51:d2:c0:93:
1b:a9:0b:80:2c:3a:55:15:71:81:92:89:21:45:ac:43:61:6e:
29:5d:e0:47:9b:6d:0e:73:78:0a:20:56:3f:09:11:e7:da:61:
46:b8:15:ae:90:73:cc:db:36:0b:9d:03:7d:8d:82:1f:3c:1d:
a1:0a:64:19:bd:c1:f7:9f:ee:c5:5c:7b:3c:8e:77:f2:48:7b:
10:6e:08:f5:81:83:92:e6:0e:37:43:3a:78:a5:8a:c3:b1:6a:
13:d9:e1:68:67:9b:d3:f3:5b:e6:7c:5d:27:c0:a5:a2:82:b8:
15:3e:64:eb:e3:20:d5:c1:3b:e4:49:4b:30:b7:f2:d7:54:4e:
3d:96:b7:c7:38:48:27:64:95:af:23:e1:96:87:93:21:3f:f7:
38:3c:9b:ea:9d:6f:36:b0:fa:0c:80:7e:0e:9d:d1:af:0f:a9:
cb:8a:da:a0:60:f6:76:e4:41:f6:dc:5a:9e:74:7d:77:f1:95:
e4:79:d6:a6:96:e5:33:08:8c:3f:63:f8:40:e2:ec:ef:41:04:
a5:a3:49:1e:82:75:12:48:8e:f6:f1:c4:1a:41:44:fb:e0:5e:
55:e8:f3:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:03:11 2025 by rpki-client