Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: /+H2rzfG3au/pHC9kokaOGp9GYPrZyPxxOOWz8Lcnfo=
Subject key identifier: D0:DC:7A:CD:FA:02:95:68:EA:1B:F6:5B:12:B8:31:60:64:F7:53:FF
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 01975346BF716945D6E106675A103D054F71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 06:00:34 +0000
Manifest this update: Mon 09 Jun 2025 06:00:34 +0000
Manifest next update: Tue 10 Jun 2025 06:00:34 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: 724Bp2fpZ4LmNPt53hQH2zSCJLcQNnb7S3bZteJBzyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:46:bf:71:69:45:d6:e1:06:67:5a:10:3d:05:4f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Jun 9 06:00:34 2025 GMT
Not After : Jun 10 06:00:34 2025 GMT
Subject: CN=d0dc7acdfa029568ea1bf65b12b8316064f753ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:27:2d:48:10:e1:f6:04:24:3c:ed:8b:18:
6f:aa:59:70:85:95:5b:37:d9:70:b1:bf:58:95:f1:
01:ab:a9:41:44:eb:f2:ef:06:4d:77:75:06:8f:9c:
a7:11:5d:6a:6a:84:cc:49:73:08:42:81:a7:7d:d9:
a1:db:46:6b:a5:21:f9:f5:f4:94:83:9a:af:12:be:
20:19:1c:63:c6:c4:fc:43:33:7f:18:6e:bd:5a:6b:
8a:29:a4:25:b0:01:4b:b7:b2:51:3d:6c:43:f5:ab:
53:f6:e9:e9:ff:a9:4e:eb:f2:72:e1:e6:79:15:f8:
a1:b7:b7:0b:6f:8d:6b:fe:f4:b5:71:95:f4:ed:31:
4f:0e:eb:d1:85:41:e4:29:62:94:87:ad:b9:00:61:
1b:89:6c:59:d4:e6:99:87:cf:1e:3a:fa:65:12:27:
35:34:0f:c7:e8:69:56:04:1f:bf:74:cc:12:85:20:
da:d5:20:ab:dd:fa:fb:4d:8c:7b:29:07:19:75:d7:
73:75:c9:c6:6f:83:00:b5:cf:63:f9:4b:1a:47:23:
d6:e6:7b:8b:96:f4:ff:86:a9:ab:24:c9:98:2e:59:
4e:2a:0b:cf:de:18:f0:16:81:e8:cd:f1:eb:e7:6b:
a7:ad:fa:af:3f:86:7e:7f:dc:9c:9a:f3:cc:70:74:
be:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DC:7A:CD:FA:02:95:68:EA:1B:F6:5B:12:B8:31:60:64:F7:53:FF
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:cb:5a:44:25:fc:5b:dd:ac:cc:ae:c9:b4:85:e2:e4:a3:29:
0f:86:b5:ff:5a:d7:50:ce:95:90:08:27:b9:14:61:1f:4f:67:
2b:0d:ee:f6:a7:81:32:73:24:e3:dd:69:af:f6:b1:8c:a3:d0:
cd:18:30:15:01:8d:69:0e:d5:9a:36:da:8a:c1:a0:6d:c7:10:
d3:74:94:b8:43:c5:fe:07:c8:36:ca:ab:ae:be:7a:aa:b7:40:
f1:a7:93:02:bd:04:72:4c:ed:d7:ab:fd:66:4c:b4:53:20:86:
d4:af:fd:8e:2a:ee:5b:ff:d7:eb:b7:2c:55:2d:62:b0:75:27:
bd:2e:b6:d2:d1:3b:a9:fc:97:97:c3:32:90:bf:c5:1f:be:e4:
e5:05:fc:a3:ed:5e:7f:01:bd:65:bd:b2:e8:28:79:fd:2c:3f:
cd:37:f1:67:9c:07:04:fd:97:a1:3f:e0:96:71:7c:1c:45:75:
9b:06:45:36:58:ac:cc:9c:70:75:4b:42:f8:d4:67:dc:12:77:
cd:ac:1d:c4:ae:86:e0:7a:7e:1f:f2:56:27:a6:05:1c:ac:ef:
6e:9f:19:d1:87:18:c3:b7:b8:f5:d0:5b:6b:8f:f1:7b:47:bd:
8f:24:7a:38:7c:4b:e2:28:dd:6b:92:18:2c:09:7c:e0:c5:b0:
ae:2d:92:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:34:24 2025 by rpki-client