Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: nxSZ49GXLHd5JxWfscNof4i4vhgfU/Sx0LacBsA4tmU=
Subject key identifier: F2:09:D8:37:E3:BB:6E:45:AF:2F:AB:4E:AE:81:59:FF:0A:98:04:24
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 0196C6837AFF77C2E25E0D9D9D8CEE9AFE22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 0833
Signing time: Mon 12 May 2025 22:00:27 +0000
Manifest this update: Mon 12 May 2025 22:00:27 +0000
Manifest next update: Tue 13 May 2025 22:00:27 +0000
Files and hashes: 1: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: cfXyGEv4NaK1KI0gTZG6PYgucR3CXZHiTuDqRcqD20g=)
2: NfqHOhcJXcqSfQpuNgytLU6Q0gw.roa (hash: fdvl8Vjh1i6SnoxQG77IPFWNq1tbBXhWcHGwbwfOV50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:83:7a:ff:77:c2:e2:5e:0d:9d:9d:8c:ee:9a:fe:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: May 12 22:00:27 2025 GMT
Not After : May 13 22:00:27 2025 GMT
Subject: CN=f209d837e3bb6e45af2fab4eae8159ff0a980424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6f:89:98:7e:ef:c7:74:81:e0:a3:3f:26:9d:
8e:03:87:92:64:9d:5e:ab:6a:1f:c4:51:4f:2d:59:
2b:79:86:68:31:03:ba:8d:a9:c5:28:13:d8:6f:93:
95:45:f6:8d:b1:f1:8d:f3:17:3a:5b:ff:8d:a8:61:
20:e4:07:9d:43:0b:ae:02:64:b7:16:71:bd:1d:e9:
ef:80:06:17:e1:e1:b6:7c:7f:c8:9d:f5:ef:a1:9c:
ea:3d:87:c7:5d:62:66:c9:5a:8b:ec:e6:75:e7:ff:
56:81:2c:d5:a1:ae:d5:81:d0:b9:ed:48:14:5c:83:
5d:30:0b:89:94:13:f0:22:3c:d6:70:ac:e4:83:9d:
a0:f9:6a:a3:44:16:8d:c5:42:56:96:fe:3e:42:7f:
f9:d9:98:75:1b:85:d8:19:37:55:4e:37:8b:75:06:
2e:e3:1d:a1:d6:9d:70:ce:9d:d6:8b:ec:9a:cf:d2:
70:20:66:e7:37:f9:bc:a3:2f:5f:08:e6:b5:47:28:
92:10:1b:9b:c0:4d:a7:5f:ad:01:cf:66:6d:03:8e:
7e:fd:60:64:7b:c9:c3:e6:a8:5f:1e:01:59:92:53:
a8:d2:e3:f7:b0:f1:80:ef:65:5d:f3:a1:7e:63:c8:
70:36:bd:17:33:6c:4c:e0:09:a3:ab:a8:db:50:83:
81:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:09:D8:37:E3:BB:6E:45:AF:2F:AB:4E:AE:81:59:FF:0A:98:04:24
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:4e:d5:ac:d7:7a:e7:cf:75:60:74:db:b2:3c:ae:b1:30:69:
55:5e:15:d9:48:0c:ae:85:7e:66:42:26:fc:24:28:64:7e:e7:
fa:b6:18:d1:61:ed:da:49:57:1c:4d:51:8c:14:39:eb:6a:cb:
52:f6:e0:f8:2a:cf:0c:08:a5:b8:ff:0b:34:46:02:72:23:75:
51:56:80:1e:d9:30:b0:7f:d1:70:86:c1:25:2a:e3:c0:d7:c1:
68:98:6f:22:70:50:2f:30:5e:c6:43:5e:91:dc:6d:ea:4c:fa:
14:07:e6:6b:f4:46:d4:08:f2:0b:21:88:2a:3a:9a:09:12:a5:
3d:25:a5:58:b9:8f:37:13:72:16:77:4d:c0:83:3e:22:5c:e6:
c5:d2:a3:d6:fc:49:51:8a:87:f5:f7:e2:16:1d:8a:9c:63:83:
1f:42:6f:15:5c:5b:49:73:88:38:3f:8c:ab:75:d2:dd:dd:cd:
8b:91:44:cb:3c:2b:45:57:fd:44:76:7e:f7:21:d7:92:1d:8b:
2a:61:da:9f:a8:9b:c6:2f:0e:80:44:c0:18:70:ca:52:d8:e1:
05:1a:6e:7a:c6:ae:e4:ed:01:de:c9:c6:e0:ef:9f:10:04:2f:
a8:0e:ef:ea:ca:8f:74:16:74:41:11:d3:f4:0f:ea:f6:53:2c:
32:cb:77:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:16:25 2025 by rpki-client