Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: tCjjHqvWuMGvqXq4fTuTQOmOcOF1KxUUCu08pAXq6C4=
Subject key identifier: 88:CA:A3:D5:DA:8B:0F:BF:DB:F9:B4:89:F1:78:09:01:B8:77:F1:73
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 019D2996DA1C9656B09CE7698ED74864E664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 0B82
Signing time: Thu 26 Mar 2026 10:00:45 +0000
Manifest this update: Thu 26 Mar 2026 10:00:45 +0000
Manifest next update: Fri 27 Mar 2026 10:00:45 +0000
Files and hashes: 1: 0zoyQvyQtAcxybJRfWh9GMhsuXU.roa (hash: Nl+JhoxK6phZV0HP8vdC24526xfGx+8fsR9nnmIrPEk=)
2: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: bHCvG/2E5Udn/42cJn13oet+2wPQ92TaD+xhSCU9ZPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:da:1c:96:56:b0:9c:e7:69:8e:d7:48:64:e6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Mar 26 10:00:45 2026 GMT
Not After : Mar 27 10:00:45 2026 GMT
Subject: CN=88caa3d5da8b0fbfdbf9b489f1780901b877f173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:27:f0:c1:fa:46:cf:ce:93:b5:ad:db:7d:
23:48:7e:a8:df:00:af:34:6b:ab:29:60:4e:86:49:
ef:e4:a1:73:84:aa:b7:3b:53:bd:40:bd:f3:7c:1d:
d2:93:5e:8d:b2:95:f7:0a:41:f2:ea:bc:2c:82:95:
7f:61:7f:84:ef:30:ff:25:5a:ea:0f:69:0e:26:ae:
b0:60:fe:07:d4:19:64:90:b0:1c:42:29:0b:e7:e7:
15:bb:c8:8c:6b:5b:f7:23:46:91:ba:77:80:30:ca:
bb:01:54:93:3c:ae:92:bb:45:d6:37:0e:ad:f5:c8:
06:12:8e:76:46:88:2a:1f:e7:9a:50:71:02:03:de:
23:10:c6:14:fe:04:13:93:70:f7:44:7f:6b:b5:fb:
79:9f:bb:5e:b9:3d:43:5a:44:6d:e0:0a:3f:68:fb:
b6:1f:02:ec:df:14:06:64:ec:89:ea:d2:a0:80:67:
1a:81:df:11:0e:e0:d5:5a:10:8b:be:4e:fa:17:89:
7a:c1:ce:4b:d7:26:70:72:a3:b3:56:3b:b0:bc:b9:
ef:0e:d9:a1:e3:c3:4c:18:20:03:96:af:b5:00:8b:
36:d9:51:6c:6b:e9:95:49:3d:cd:43:ad:d9:ff:09:
e3:2a:5f:52:22:f8:1b:81:ac:0a:43:4c:8a:c9:8e:
65:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CA:A3:D5:DA:8B:0F:BF:DB:F9:B4:89:F1:78:09:01:B8:77:F1:73
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:34:8e:b9:f5:96:9e:0e:d2:d4:78:1d:d5:54:84:0f:5b:12:
c8:f9:a9:31:0e:c5:6d:72:64:44:87:98:94:43:72:73:98:f3:
90:83:56:4e:24:9a:05:32:fb:b4:85:e9:07:83:f2:9f:41:69:
e2:b7:38:34:a0:b7:83:0a:49:4f:cd:8d:8f:80:a0:cf:4f:ce:
9f:b7:1e:2a:2e:36:26:89:21:05:ac:b2:ce:f9:0e:ce:ef:b2:
94:d6:75:3a:25:29:df:32:55:9f:f1:5b:52:99:b1:91:94:e7:
51:cb:0c:4b:1a:9f:fd:65:18:76:c2:c4:e2:1b:10:59:25:c2:
98:99:a3:4b:e6:58:ad:fd:17:7f:85:78:c4:ba:a2:0f:36:34:
8f:f7:a8:61:6c:a2:03:a6:a4:b2:82:05:0c:f5:b7:fa:1c:a1:
7f:cc:9a:ee:a7:97:d1:0f:e5:47:76:29:d0:c0:67:02:14:d2:
cd:b4:6a:ff:e0:aa:d9:60:4f:85:be:e5:47:b9:65:10:66:aa:
d2:a1:0d:38:a1:ae:ba:d1:3f:81:74:1a:5f:d6:ee:60:92:f7:
69:3c:50:dd:b5:b7:b1:e3:03:0c:59:67:98:a6:bf:93:dc:2f:
8b:42:e1:42:25:43:78:ab:e8:d4:a3:32:01:49:4e:f2:ba:bd:
d6:e3:b9:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:26:39 2026 by rpki-client