Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: vOZIxvDCxFB7UyyJidC/4fGrsRFe8E7lhwrNMPKQD3M=
Subject key identifier: 9C:1D:42:91:35:A7:CB:B2:D0:5F:65:0A:31:95:03:CB:B0:04:51:E9
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 01988C588F1D026557AF5405CF0333204DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 091E
Signing time: Sat 09 Aug 2025 01:01:10 +0000
Manifest this update: Sat 09 Aug 2025 01:01:10 +0000
Manifest next update: Sun 10 Aug 2025 01:01:10 +0000
Files and hashes: 1: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: 7s53j3V0LTQRsG8c/oiAK87pLP0n9mD3DbiZXfZ9w7g=)
2: NfqHOhcJXcqSfQpuNgytLU6Q0gw.roa (hash: fdvl8Vjh1i6SnoxQG77IPFWNq1tbBXhWcHGwbwfOV50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:8f:1d:02:65:57:af:54:05:cf:03:33:20:4d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Aug 9 01:01:10 2025 GMT
Not After : Aug 10 01:01:10 2025 GMT
Subject: CN=9c1d429135a7cbb2d05f650a319503cbb00451e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d3:79:b9:9e:a6:e7:3b:90:b2:d4:e3:0d:b8:
5b:01:07:f7:fc:a9:c2:ad:ac:91:56:74:25:a6:e0:
71:6b:49:50:66:de:fa:f2:04:e7:10:6a:56:e1:f8:
8b:59:c8:c6:75:f4:58:ae:8c:18:c2:06:fc:26:a3:
9b:ca:aa:7c:61:8f:47:69:ce:3b:ce:54:35:1b:cc:
79:19:fb:b0:3d:e5:dd:bd:8f:20:96:7b:29:b3:cb:
36:96:c8:d0:5a:69:aa:6f:94:f4:d2:b8:cd:9a:57:
d5:cc:5a:1a:9c:5c:c7:cb:e2:66:d8:36:79:50:7d:
26:87:0d:a4:84:7c:d8:02:f3:12:a5:68:d6:ef:86:
3a:b9:0f:c4:96:80:ca:f2:78:c4:fd:2f:94:59:7d:
50:d0:21:f6:8a:b0:58:47:d4:9a:80:44:56:01:a5:
3c:9f:41:54:3f:15:bb:27:d3:b5:ee:6f:bc:fb:cd:
aa:a8:80:5b:09:b8:67:3a:3a:44:fe:8b:25:d2:a3:
b0:1a:53:b7:b4:2f:98:b9:79:3f:e2:ee:f5:1f:1b:
eb:6f:5c:ce:bc:fb:4f:24:ec:42:6c:ee:c1:7d:ae:
ef:fb:7b:ec:fc:e0:bd:3c:11:8e:cb:61:92:1c:22:
31:47:8a:40:4a:69:ff:9b:f5:b0:c8:95:41:50:02:
27:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1D:42:91:35:A7:CB:B2:D0:5F:65:0A:31:95:03:CB:B0:04:51:E9
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:e5:c3:3d:b3:65:77:ca:26:76:ce:a9:66:bf:65:6f:89:ee:
24:c5:c7:57:f5:3d:1b:4c:e9:12:5f:97:bf:8a:04:ca:9c:3e:
93:27:42:88:11:0e:50:a9:76:03:a9:71:3b:2c:1b:18:7c:31:
76:3b:00:b9:a3:a0:d3:9f:e9:7a:dd:04:dd:a9:0d:46:14:c0:
39:01:57:d5:e1:c7:8e:d1:06:46:0a:4a:97:dd:a8:28:ea:5e:
ff:74:30:6f:35:c0:fa:a8:3b:0a:b3:98:c8:ad:80:07:be:ab:
79:69:92:bb:c7:f1:a6:0c:f8:ef:2e:43:a5:61:ec:c3:f1:ce:
c7:5c:dd:ef:ef:18:94:e1:58:29:ee:7e:15:b9:99:04:98:86:
88:2a:4d:31:ce:64:f7:45:4d:47:dd:59:fb:bb:c5:0e:9b:de:
48:1a:e5:c9:75:74:cb:31:80:e9:d5:77:91:bb:95:79:38:b9:
d8:f2:89:25:dd:91:9f:9e:a5:65:62:28:39:c8:5c:88:d4:8f:
a1:d4:b9:b8:9f:6d:c3:7c:b3:77:0b:ab:1f:45:a5:44:d3:60:
b3:e5:b1:65:72:b8:30:67:87:83:3b:1b:14:86:99:14:c6:c1:
22:0a:26:3b:6d:82:a2:bc:86:97:ed:fa:5a:3d:53:2c:5b:a0:
d7:c1:c1:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiMWI8dAmVXr1QFzwMzIE3aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNTMwZTlkMDllMmZmOGMzODQxMzYxNTU4OWE1ZjIwNmU3
ZjNlYTkwHhcNMjUwODA5MDEwMTEwWhcNMjUwODEwMDEwMTEwWjAzMTEwLwYDVQQD
Eyg5YzFkNDI5MTM1YTdjYmIyZDA1ZjY1MGEzMTk1MDNjYmIwMDQ1MWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNN5uZ6m5zuQstTjDbhbAQf3/KnC
rayRVnQlpuBxa0lQZt768gTnEGpW4fiLWcjGdfRYrowYwgb8JqObyqp8YY9Hac47
zlQ1G8x5GfuwPeXdvY8glnsps8s2lsjQWmmqb5T00rjNmlfVzFoanFzHy+Jm2DZ5
UH0mhw2khHzYAvMSpWjW74Y6uQ/EloDK8njE/S+UWX1Q0CH2irBYR9SagERWAaU8
n0FUPxW7J9O17m+8+82qqIBbCbhnOjpE/osl0qOwGlO3tC+YuXk/4u71Hxvrb1zO
vPtPJOxCbO7Bfa7v+3vs/OC9PBGOy2GSHCIxR4pASmn/m/WwyJVBUAInBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJwdQpE1p8uy0F9lCjGVA8uwBFHpMB8GA1UdIwQY
MBaAFCFTDp0J4v+MOEE2FViaXyBufz6pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVZNT25RbmlfNHc0UVRZVldKcGZJRzVfUHFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mMmRhZDMtYTZlNi00Yjc3LTgzNDIt
NjI0ZjRjMTQxZjJjLzEvSVZNT25RbmlfNHc0UVRZVldKcGZJRzVfUHFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9mMmRhZDMtYTZlNi00Yjc3LTgzNDItNjI0ZjRjMTQxZjJj
LzEvSVZNT25RbmlfNHc0UVRZVldKcGZJRzVfUHFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUeXDPbNl
d8omds6pZr9lb4nuJMXHV/U9G0zpEl+Xv4oEypw+kydCiBEOUKl2A6lxOywbGHwx
djsAuaOg05/pet0E3akNRhTAOQFX1eHHjtEGRgpKl92oKOpe/3QwbzXA+qg7CrOY
yK2AB76reWmSu8fxpgz47y5DpWHsw/HOx1zd7+8YlOFYKe5+FbmZBJiGiCpNMc5k
90VNR91Z+7vFDpveSBrlyXV0yzGA6dV3kbuVeTi52PKJJd2Rn56lZWIoOchciNSP
odS5uJ9tw3yzdwurH0WlRNNgs+WxZXK4MGeHgzsbFIaZFMbBIgomO22CoryGl+36
Wj1TLFug18HBvw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 10:33:00 2025 by rpki-client