Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: QwW5LeHFAnT01TxpXeGL67pWk5lh2Q+gN5hPonQQ0Zw=
Subject key identifier: 41:78:24:73:CD:F4:89:AB:A5:F8:39:3E:3A:A8:12:65:E8:36:A6:05
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 019D382E7C74E6942EEF6F5FE3227F8BB68E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 06:01:03 +0000
Manifest this update: Sun 29 Mar 2026 06:01:03 +0000
Manifest next update: Mon 30 Mar 2026 06:01:03 +0000
Files and hashes: 1: 9muaEb76gYCulXMmMLPDvSg3Tfs.roa (hash: V31luJDNiwqlc5PDFE/H4c6gZhVQ7dVXjrntc2C134k=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: z9uvgvUi7lj2p51i2hAMaP2e4zQ6OxGwXeitlV1kwYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:7c:74:e6:94:2e:ef:6f:5f:e3:22:7f:8b:b6:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Mar 29 06:01:03 2026 GMT
Not After : Mar 30 06:01:03 2026 GMT
Subject: CN=41782473cdf489aba5f8393e3aa81265e836a605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:35:64:86:4e:14:65:86:ce:b3:5f:1e:3c:f3:
4b:f1:43:7a:7d:80:e8:ed:a0:d8:8e:85:db:a3:6f:
3b:0b:38:96:c7:f3:cf:a8:9d:b1:e7:3d:b9:ee:ae:
45:2f:ad:94:c0:c1:06:6d:e0:15:7e:be:0b:db:aa:
d8:fb:8c:1a:01:76:01:d8:99:4a:48:53:88:9e:cf:
19:36:8e:06:f9:e3:29:68:d1:3b:0f:59:64:18:03:
d7:93:79:92:c1:51:54:15:d4:01:33:94:ed:84:aa:
e0:06:24:f8:24:75:ee:71:db:8a:1e:c3:c9:c0:20:
a8:04:ab:50:15:43:31:c2:4e:d8:62:69:80:08:f7:
79:df:80:22:24:d4:fe:17:b0:e5:2a:8a:a3:64:d2:
0f:54:2d:4b:f6:c2:47:45:ee:a4:26:20:d3:a5:b6:
50:a4:02:7c:a5:62:92:98:4e:6a:f5:28:f3:f6:47:
89:8f:75:e7:3f:dc:9e:7e:f7:49:ba:4d:74:c6:75:
2c:66:9f:bb:67:aa:12:60:00:7b:73:2d:4a:e5:f7:
66:4b:15:8c:5e:f5:71:cc:c0:5b:16:86:48:47:3e:
e4:3b:e7:aa:2d:c8:0d:1a:5c:6b:97:4f:44:7a:ac:
8d:b4:41:42:56:45:4d:83:df:d8:0f:d2:e0:7d:c3:
e0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:78:24:73:CD:F4:89:AB:A5:F8:39:3E:3A:A8:12:65:E8:36:A6:05
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:9f:08:16:0d:15:1a:02:6c:3b:f5:99:2e:c1:18:72:c5:90:
cc:2e:80:96:3d:7c:9a:78:ba:2b:85:c8:5c:ae:21:fa:97:46:
06:c3:eb:2a:14:2e:3a:dc:a3:bb:73:9f:8e:60:28:e9:48:91:
e5:0d:bb:3b:36:4e:9b:b1:77:e6:2c:25:df:11:e0:07:7e:30:
c3:96:ff:7e:73:7d:bd:86:bb:03:f5:ea:c1:20:29:5e:67:81:
2b:76:b7:b4:f3:13:67:ad:0a:a8:8d:de:b0:a9:23:2d:c0:db:
15:32:df:3f:24:ff:03:17:cb:f5:ba:34:f8:ab:b1:5f:ef:5a:
89:db:ee:7e:c1:0f:38:a1:0e:c3:6c:f5:5b:ce:c8:f2:01:fd:
87:2e:f1:d7:a1:de:ca:9e:1e:e8:f0:55:84:e4:8e:50:5f:1d:
4a:30:40:e7:d8:64:bf:6b:cb:b0:16:ec:db:37:d6:13:ee:f6:
2c:a7:b6:a2:10:95:4f:cc:a6:9f:2a:72:39:fe:8e:ce:db:2e:
ab:f7:dc:2e:68:5c:0b:d6:9b:0b:56:b5:01:c0:16:e6:25:92:
ca:bd:ce:00:a8:4c:52:72:6d:19:d4:e2:43:47:d8:6d:1d:13:
a5:fc:29:9d:89:5e:dc:20:3c:54:8d:4e:b8:aa:6a:f2:37:01:
62:c4:bb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:24:17 2026 by rpki-client