Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: 17fAV7gXjH7zKtdbBvgqPjn9YWtu5iqAdNC3GtocxGY=
Subject key identifier: AE:01:E9:67:B4:D7:42:B2:39:37:D3:08:79:54:78:53:D8:16:14:0E
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 0198D5BB896FB21D7D0EBB5E6CA0B6A42EF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 0944
Signing time: Sat 23 Aug 2025 07:01:34 +0000
Manifest this update: Sat 23 Aug 2025 07:01:34 +0000
Manifest next update: Sun 24 Aug 2025 07:01:34 +0000
Files and hashes: 1: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: qgmgrFxd5K7NTC11/7a5MqiBWvAYSMfKJ94hludRguI=)
2: NfqHOhcJXcqSfQpuNgytLU6Q0gw.roa (hash: fdvl8Vjh1i6SnoxQG77IPFWNq1tbBXhWcHGwbwfOV50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:89:6f:b2:1d:7d:0e:bb:5e:6c:a0:b6:a4:2e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Aug 23 07:01:34 2025 GMT
Not After : Aug 24 07:01:34 2025 GMT
Subject: CN=ae01e967b4d742b23937d30879547853d816140e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0b:14:c8:7e:11:fd:cf:70:81:da:41:b6:28:
b1:99:9a:c4:47:20:8f:e3:50:01:00:4f:a3:2d:62:
c8:6f:0e:ca:ea:a8:5d:32:5e:a8:11:5e:56:45:bb:
2f:b3:cf:b0:be:6e:33:40:e4:d3:74:5b:a5:af:e0:
1d:45:c1:36:40:0f:ff:68:0b:55:af:67:a8:bc:9c:
c8:da:68:53:e3:98:9b:8d:96:99:22:f7:a3:0a:46:
5b:ca:89:42:24:df:fb:3e:18:e4:ce:87:f3:3c:ec:
23:37:7f:de:f0:7a:09:c5:17:52:eb:cb:e2:c9:0f:
46:56:0c:5c:79:aa:b2:d9:aa:64:70:98:de:0d:2c:
46:35:df:8b:99:26:3c:d0:fa:5d:b6:2f:7b:61:d2:
c3:19:44:f4:21:8e:a2:14:36:03:8d:c9:3c:3e:10:
e1:dd:9b:8b:01:a6:2d:47:4f:5a:bf:51:d0:48:30:
04:8d:96:1f:1b:5f:89:74:e7:2c:56:c5:16:18:ba:
09:37:21:5b:56:f6:1c:4b:a9:8d:f0:b7:40:54:ab:
af:2e:e2:fe:a3:64:0f:c1:4f:1c:bd:7a:3a:88:69:
78:5f:9c:30:57:c0:83:ad:70:a8:43:2b:04:8b:40:
7e:f7:c9:69:59:9f:b7:27:94:36:b9:7b:46:dd:6c:
1c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:01:E9:67:B4:D7:42:B2:39:37:D3:08:79:54:78:53:D8:16:14:0E
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:ac:19:f5:9a:15:b6:ca:35:0f:f5:ee:26:6d:3b:72:48:86:
6d:af:bc:14:fd:2c:0c:c0:b2:07:75:eb:a1:21:42:62:dd:35:
db:d2:02:27:36:11:2f:8d:7d:66:9a:e6:55:97:60:63:b5:7b:
2e:2f:b8:da:37:0e:49:e8:77:e9:49:1b:c7:49:a0:3a:28:22:
fd:5a:ac:25:98:39:0c:4b:89:15:a2:1b:22:e4:e1:8f:c9:a3:
ae:7e:3d:13:d1:15:7b:54:10:83:e7:65:ec:52:41:e4:9c:14:
6e:ad:64:1d:ca:bd:e1:7b:49:a2:66:31:22:ae:a4:77:7c:ea:
b5:48:53:f0:3a:5b:2b:a3:77:23:88:ee:9b:45:bf:c7:26:9f:
90:c3:95:42:b3:91:25:41:ef:73:62:45:d9:fc:54:16:9c:e9:
dd:ca:3c:27:e2:df:0f:48:d4:03:8d:b7:b2:b6:fc:9a:d4:f3:
00:3a:7f:85:f3:ff:99:a6:68:ba:40:3c:99:0b:88:71:ff:ba:
62:88:69:8d:46:ef:f3:7e:74:06:35:40:9f:88:09:0f:68:35:
2b:ef:1d:a5:3a:39:58:69:78:77:d7:73:1d:88:0b:13:40:43:
3f:71:f5:a0:9b:61:38:6b:34:2d:aa:42:62:b4:7a:e0:39:f1:
00:e3:93:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:34 2025 by rpki-client