Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: Ph/6d4MbIs1JqvnqpHVFHer5bXmgu2oLFvAMjyXt5e8=
Subject key identifier: 1E:68:D6:3F:EF:C3:AF:05:93:27:3A:8B:94:00:1C:3B:6A:3E:60:D7
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 0199FB462F5DAD7E4C1820671CA7486451B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 09DC
Signing time: Sun 19 Oct 2025 07:01:44 +0000
Manifest this update: Sun 19 Oct 2025 07:01:44 +0000
Manifest next update: Mon 20 Oct 2025 07:01:44 +0000
Files and hashes: 1: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: +5eXwvA/0j6MZqRpFxmyGWzIbUko1rXNYcmPkmTzxI4=)
2: NfqHOhcJXcqSfQpuNgytLU6Q0gw.roa (hash: fdvl8Vjh1i6SnoxQG77IPFWNq1tbBXhWcHGwbwfOV50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:2f:5d:ad:7e:4c:18:20:67:1c:a7:48:64:51:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Oct 19 07:01:44 2025 GMT
Not After : Oct 20 07:01:44 2025 GMT
Subject: CN=1e68d63fefc3af0593273a8b94001c3b6a3e60d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f1:00:13:51:5e:25:09:7a:f5:77:3f:53:eb:
bd:38:a6:6e:b5:34:22:d2:d2:b0:cc:98:20:89:6d:
64:ff:5c:8d:79:a9:bf:ea:97:ff:b7:ba:85:15:24:
81:e0:30:0b:67:81:25:ec:23:19:42:f9:67:81:0c:
c7:ed:ec:09:fa:a5:a2:e7:02:60:9f:4c:77:67:21:
c2:58:db:cf:3c:54:bd:ee:ae:ac:5a:91:8e:2f:7b:
09:4d:af:7f:b1:bc:45:91:24:39:80:6d:dc:c2:4a:
39:81:32:92:da:f8:20:b7:95:c2:ed:8a:56:ff:6e:
c6:1e:aa:fd:9d:b5:ab:10:c4:4e:e4:6a:e9:13:de:
aa:3b:c1:7a:83:05:05:dc:10:67:8a:5e:6b:04:79:
6c:f7:75:56:3c:91:35:ba:37:af:da:8b:12:26:4f:
f4:20:08:58:f3:0d:d6:3d:81:09:b2:88:55:96:12:
97:ae:be:5e:46:25:6c:93:f7:ac:56:ad:d8:7d:50:
08:45:32:96:17:88:61:38:71:d5:1e:2d:ca:f3:11:
d7:9f:b9:5f:e3:2d:e7:60:66:76:a6:95:2b:29:4d:
d3:7e:44:63:76:dd:76:bb:c8:70:66:cc:61:a8:f5:
be:04:80:98:25:23:e4:0a:2f:17:27:c9:42:e3:95:
53:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:68:D6:3F:EF:C3:AF:05:93:27:3A:8B:94:00:1C:3B:6A:3E:60:D7
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ad:30:a9:69:b3:b7:82:8c:7a:a4:46:d5:b1:62:37:83:81:
f8:af:e7:3c:19:98:cb:b0:07:a8:7c:94:0a:8b:57:09:be:0f:
6a:43:27:30:36:47:eb:ca:94:69:70:cb:1b:32:1a:16:12:8c:
52:3c:87:39:17:22:40:b8:96:89:45:47:06:86:d2:bb:07:23:
71:72:04:49:da:8e:c2:27:f2:82:a8:5b:42:56:65:61:db:5a:
b0:3d:e7:01:a1:d9:e9:e8:49:01:9d:82:cf:c7:2d:f9:52:b1:
7e:c6:5e:ba:69:2e:92:9c:04:5d:2b:cf:45:0f:19:d4:e7:98:
86:a4:fa:36:98:9f:d0:f7:cf:c8:f3:85:48:7c:e2:c7:8c:43:
26:42:5a:ff:01:6f:ec:7c:37:da:ba:e3:7b:cc:3d:7d:9e:a9:
b9:09:20:fa:49:da:4d:3a:14:d4:39:17:c1:15:57:85:8d:14:
51:40:0e:3d:56:1a:6a:c8:f6:72:ba:83:ca:6f:a0:f1:8a:ad:
4f:0e:e9:e5:a8:db:d4:9c:68:ca:83:b6:f1:70:0e:78:b8:39:
54:c7:12:9e:02:ec:4c:07:c6:15:f9:83:bf:45:7f:ff:1b:d5:
6a:de:0d:d5:da:bc:6c:73:98:1d:8e:12:db:20:11:0e:2b:bd:
19:90:49:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7Ri9drX5MGCBnHKdIZFG1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNTMwZTlkMDllMmZmOGMzODQxMzYxNTU4OWE1ZjIwNmU3
ZjNlYTkwHhcNMjUxMDE5MDcwMTQ0WhcNMjUxMDIwMDcwMTQ0WjAzMTEwLwYDVQQD
EygxZTY4ZDYzZmVmYzNhZjA1OTMyNzNhOGI5NDAwMWMzYjZhM2U2MGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvEAE1FeJQl69Xc/U+u9OKZutTQi
0tKwzJggiW1k/1yNeam/6pf/t7qFFSSB4DALZ4El7CMZQvlngQzH7ewJ+qWi5wJg
n0x3ZyHCWNvPPFS97q6sWpGOL3sJTa9/sbxFkSQ5gG3cwko5gTKS2vggt5XC7YpW
/27GHqr9nbWrEMRO5GrpE96qO8F6gwUF3BBnil5rBHls93VWPJE1ujev2osSJk/0
IAhY8w3WPYEJsohVlhKXrr5eRiVsk/esVq3YfVAIRTKWF4hhOHHVHi3K8xHXn7lf
4y3nYGZ2ppUrKU3TfkRjdt12u8hwZsxhqPW+BICYJSPkCi8XJ8lC45VTawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5o1j/vw68Fkyc6i5QAHDtqPmDXMB8GA1UdIwQY
MBaAFCFTDp0J4v+MOEE2FViaXyBufz6pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVZNT25RbmlfNHc0UVRZVldKcGZJRzVfUHFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mMmRhZDMtYTZlNi00Yjc3LTgzNDIt
NjI0ZjRjMTQxZjJjLzEvSVZNT25RbmlfNHc0UVRZVldKcGZJRzVfUHFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9mMmRhZDMtYTZlNi00Yjc3LTgzNDItNjI0ZjRjMTQxZjJj
LzEvSVZNT25RbmlfNHc0UVRZVldKcGZJRzVfUHFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArK0wqWmz
t4KMeqRG1bFiN4OB+K/nPBmYy7AHqHyUCotXCb4PakMnMDZH68qUaXDLGzIaFhKM
UjyHORciQLiWiUVHBobSuwcjcXIESdqOwifygqhbQlZlYdtasD3nAaHZ6ehJAZ2C
z8ct+VKxfsZeumkukpwEXSvPRQ8Z1OeYhqT6Npif0PfPyPOFSHzix4xDJkJa/wFv
7Hw32rrje8w9fZ6puQkg+knaTToU1DkXwRVXhY0UUUAOPVYaasj2crqDym+g8Yqt
Tw7p5ajb1JxoyoO28XAOeLg5VMcSngLsTAfGFfmDv0V//xvVat4N1dq8bHOYHY4S
2yARDiu9GZBJVw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:53 2025 by rpki-client