Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: kOUGWipvoql3Pnd7E2SXwMFo59NIJHpagUDOZQtiA1Y=
Subject key identifier: 58:49:DA:53:E6:77:71:38:BC:AE:5A:9E:92:45:E2:F8:31:AB:90:A3
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 0198D77382CDE8D5886D942FF66C2C1E2101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 15:02:08 +0000
Manifest this update: Sat 23 Aug 2025 15:02:08 +0000
Manifest next update: Sun 24 Aug 2025 15:02:08 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: 2FUVc1msVP59sYspFmKHYWcaTUx/Rs3+EtPtlEvl6p4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:82:cd:e8:d5:88:6d:94:2f:f6:6c:2c:1e:21:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Aug 23 15:02:08 2025 GMT
Not After : Aug 24 15:02:08 2025 GMT
Subject: CN=5849da53e6777138bcae5a9e9245e2f831ab90a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:86:71:ba:be:1f:7b:02:dc:be:c7:6a:77:ac:
43:1e:ce:43:84:c3:7d:15:15:01:b1:23:8b:2d:bb:
73:9b:a5:57:ee:b8:1a:46:97:d1:7b:01:a1:ff:fd:
bb:5a:6d:a3:58:79:1d:c5:cd:a0:33:3d:ae:a4:2f:
64:ae:08:23:3b:7c:11:cc:20:fe:f9:99:b6:b8:ad:
57:9a:2b:61:80:8c:a5:4c:f3:58:2f:fa:29:81:f2:
8f:44:3d:b2:f8:09:b0:44:1d:22:37:7e:3a:b9:c6:
36:f5:cb:a6:e1:9f:05:67:0a:e6:df:60:2c:e5:26:
3e:02:b5:e3:04:13:2d:57:f3:33:7f:f1:70:32:87:
0f:de:e6:74:8f:3a:90:d6:6e:b1:5b:7c:b9:89:32:
c5:cb:cd:a7:2a:a0:b4:e6:d1:88:58:aa:73:be:95:
83:8a:d3:4f:3a:82:15:77:f0:e5:2f:c8:ae:81:ee:
a4:b3:7c:c6:6a:3c:2c:23:5d:ac:ed:45:3e:71:ef:
b2:ce:0c:00:3a:ab:39:9d:af:06:4a:4a:93:ad:37:
b1:b3:aa:0f:96:24:ce:6e:ea:ca:de:69:8b:94:d9:
ba:5d:37:a6:ca:e7:96:b6:d5:72:3a:bb:ae:2f:b6:
bc:12:7d:78:34:bb:2b:6c:7e:01:7d:16:f2:d8:9d:
ae:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:49:DA:53:E6:77:71:38:BC:AE:5A:9E:92:45:E2:F8:31:AB:90:A3
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:74:1c:67:dd:e8:e5:a4:ef:f8:d9:2d:86:9e:70:cb:37:c4:
b0:b0:11:a5:54:d8:92:5c:22:1b:dd:26:77:4a:3f:4a:87:91:
42:06:05:41:52:c9:5c:6d:72:d6:7c:90:14:46:0c:89:83:f6:
57:bc:b5:9a:35:9b:ca:a1:5d:3e:a6:a5:cf:dd:fa:8f:ef:13:
92:32:5e:d6:9e:9e:48:7c:c8:51:b1:e4:ca:9a:75:f8:54:11:
92:ff:4e:a0:aa:68:b4:4e:a2:47:7f:3d:f6:ed:70:92:38:50:
18:f3:93:01:e7:01:f3:42:ce:52:cd:83:4b:13:2e:e9:b7:de:
73:c0:fe:a0:d1:25:25:cd:fd:6d:b1:a3:7a:7f:63:45:9b:44:
32:c4:eb:91:3f:d0:90:de:06:7b:ba:ce:31:f1:a2:92:1e:6c:
08:62:fb:ce:f8:79:18:70:ef:73:5c:69:7c:95:94:71:9d:fb:
b1:98:87:91:71:0a:80:e6:eb:37:7c:56:cf:39:92:00:d3:9b:
17:62:58:a4:69:ae:6c:e6:b0:4f:7b:e3:56:6d:3c:50:39:06:
90:d9:36:06:ad:59:f1:6e:35:9d:66:95:f4:ba:7a:ee:2e:61:
12:a0:12:bc:7b:98:d0:d2:82:28:52:34:f8:fb:e6:10:1c:3f:
ad:ab:bb:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXc4LN6NWIbZQv9mwsHiEBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1
OTc2MzQwHhcNMjUwODIzMTUwMjA4WhcNMjUwODI0MTUwMjA4WjAzMTEwLwYDVQQD
Eyg1ODQ5ZGE1M2U2Nzc3MTM4YmNhZTVhOWU5MjQ1ZTJmODMxYWI5MGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoZxur4fewLcvsdqd6xDHs5DhMN9
FRUBsSOLLbtzm6VX7rgaRpfRewGh//27Wm2jWHkdxc2gMz2upC9krggjO3wRzCD+
+Zm2uK1XmithgIylTPNYL/opgfKPRD2y+AmwRB0iN346ucY29cum4Z8FZwrm32As
5SY+ArXjBBMtV/Mzf/FwMocP3uZ0jzqQ1m6xW3y5iTLFy82nKqC05tGIWKpzvpWD
itNPOoIVd/DlL8iuge6ks3zGajwsI12s7UU+ce+yzgwAOqs5na8GSkqTrTexs6oP
liTOburK3mmLlNm6XTemyueWttVyOruuL7a8En14NLsrbH4BfRby2J2ujwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhJ2lPmd3E4vK5anpJF4vgxq5CjMB8GA1UdIwQY
MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt
ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj
LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp3QcZ93o
5aTv+Nkthp5wyzfEsLARpVTYklwiG90md0o/SoeRQgYFQVLJXG1y1nyQFEYMiYP2
V7y1mjWbyqFdPqalz936j+8TkjJe1p6eSHzIUbHkypp1+FQRkv9OoKpotE6iR389
9u1wkjhQGPOTAecB80LOUs2DSxMu6bfec8D+oNElJc39bbGjen9jRZtEMsTrkT/Q
kN4Ge7rOMfGikh5sCGL7zvh5GHDvc1xpfJWUcZ37sZiHkXEKgObrN3xWzzmSANOb
F2JYpGmubOawT3vjVm08UDkGkNk2Bq1Z8W41nWaV9Lp67i5hEqASvHuY0NKCKFI0
+PvmEBw/rau7Jw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:27:15 2025 by rpki-client