Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: I1BVGcY6S+csBKG0ZwDVsqCxJX9r5lOdOM5NxjeZjjg=
Subject key identifier: 1A:39:48:DB:86:7E:17:3C:18:CB:6D:D9:78:9C:08:42:43:F7:BD:A8
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 0197B7EA7EA34CFEF44CF5424D0C156CB3F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 08B0
Signing time: Sat 28 Jun 2025 19:01:27 +0000
Manifest this update: Sat 28 Jun 2025 19:01:27 +0000
Manifest next update: Sun 29 Jun 2025 19:01:27 +0000
Files and hashes: 1: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: TQUaFNa19TqU75u193WAIfCCXqrFB78mBYrYnYfWLcE=)
2: NfqHOhcJXcqSfQpuNgytLU6Q0gw.roa (hash: fdvl8Vjh1i6SnoxQG77IPFWNq1tbBXhWcHGwbwfOV50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:7e:a3:4c:fe:f4:4c:f5:42:4d:0c:15:6c:b3:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Jun 28 19:01:27 2025 GMT
Not After : Jun 29 19:01:27 2025 GMT
Subject: CN=1a3948db867e173c18cb6dd9789c084243f7bda8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8f:d1:45:ee:57:63:85:c8:24:87:9a:08:7f:
26:e2:ea:af:78:14:4f:34:c7:9f:c8:04:84:77:f4:
ea:af:4b:91:cb:8d:81:ec:e1:ab:d2:f1:a5:65:ff:
04:9b:c5:f0:1b:1f:d7:76:a1:db:58:07:5a:58:17:
c6:72:03:e0:94:07:c0:ed:fd:5d:7c:4c:c8:14:06:
fa:85:ad:8c:9e:31:c8:d0:ec:ba:ff:d1:cb:a5:8f:
c7:0b:89:f4:5f:b1:86:0d:ec:81:18:cf:c0:ed:2f:
ad:01:d9:b7:2d:d9:fb:70:3d:c4:5c:41:28:04:a3:
6f:17:ea:29:55:a6:e5:46:d2:47:a7:8b:9d:f1:49:
64:80:7e:cc:cd:c6:7a:71:01:13:5e:15:54:24:94:
c9:e4:99:10:64:a4:29:15:4d:91:5a:10:39:7b:dc:
01:e8:41:ee:73:04:5c:d1:3c:ab:95:af:c4:65:8b:
4c:41:76:41:d4:13:92:ad:c9:e0:9b:84:3d:92:b2:
5e:46:80:cc:d3:10:46:c4:a7:45:3f:ed:e2:ab:77:
dc:3d:ef:f2:8f:d1:91:a6:d5:f4:26:e9:cf:61:eb:
d5:f6:c7:02:d6:04:aa:30:e6:8f:dd:b3:cf:94:96:
91:32:5f:30:84:f5:67:01:29:b6:46:04:d4:36:6f:
9e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:39:48:DB:86:7E:17:3C:18:CB:6D:D9:78:9C:08:42:43:F7:BD:A8
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:a0:d6:0e:c7:90:23:0a:73:d2:c7:14:4a:20:47:95:b9:07:
d6:f3:72:aa:89:e2:70:78:2f:97:38:5d:d8:c8:6c:94:d7:cd:
fc:af:9d:34:2e:0f:cf:f9:bf:b4:3d:7c:36:fc:7b:49:05:91:
22:92:7d:64:9d:9e:0e:3e:66:b8:5a:3e:cb:fa:ae:ea:8c:e1:
e8:70:81:2d:a8:9a:d7:26:69:e2:69:76:f1:bb:17:3a:96:9e:
72:6a:b0:3f:97:b5:01:6c:3e:5b:bd:eb:3c:00:85:76:a4:43:
3f:f0:90:ce:db:52:cd:4f:37:12:9c:03:c8:5a:05:5c:7c:ef:
a9:d8:c9:13:7d:c5:43:a4:ac:b7:79:98:2d:21:df:a9:73:8b:
77:65:4c:1a:b9:ca:7d:c2:2e:cf:76:7b:51:36:c3:16:58:6f:
25:44:dc:3c:f3:b5:d4:3b:8f:cb:3e:95:bc:b3:81:b2:95:1c:
1c:e5:87:b8:2f:c5:f5:66:3e:aa:92:6b:26:86:6e:0f:d7:0b:
68:c6:02:d9:44:ed:ab:b6:db:61:5c:16:9d:42:44:90:0f:2c:
19:fa:e0:13:09:68:3e:e5:fe:fb:27:0e:14:0d:2e:53:a8:b9:
cc:a0:47:c6:bb:5d:62:c1:a4:51:ee:ca:4a:8a:dd:cf:b8:98:
34:89:dd:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:18:54 2025 by rpki-client