Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: McJWgnSR7MupIcvsqUbjUt3NO9piRNkGDlrVvew8hPc=
Subject key identifier: 53:CF:40:79:F5:70:11:16:86:71:66:A2:E0:A5:7F:E1:11:79:29:A8
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 019D9999483DB94D5E0F01426992F08A55CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 0BBC
Signing time: Fri 17 Apr 2026 04:00:52 +0000
Manifest this update: Fri 17 Apr 2026 04:00:52 +0000
Manifest next update: Sat 18 Apr 2026 04:00:52 +0000
Files and hashes: 1: 0zoyQvyQtAcxybJRfWh9GMhsuXU.roa (hash: Nl+JhoxK6phZV0HP8vdC24526xfGx+8fsR9nnmIrPEk=)
2: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: 9Cfrj+kJb3CW+OCFmLsU2kBltl2wNqVjSiG5rEOXQHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:48:3d:b9:4d:5e:0f:01:42:69:92:f0:8a:55:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Apr 17 04:00:52 2026 GMT
Not After : Apr 18 04:00:52 2026 GMT
Subject: CN=53cf4079f5701116867166a2e0a57fe1117929a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:ce:65:a9:78:ea:1a:8f:c8:58:52:33:00:
5d:e7:61:a7:fb:a3:ca:8e:0c:6c:42:54:e3:dc:3a:
e0:fb:60:23:c5:e5:03:67:d5:2f:99:e4:40:df:7a:
81:98:01:4f:52:11:11:fc:72:f3:d7:88:65:df:6f:
14:a6:84:f7:81:7f:33:b0:fd:8a:75:84:bf:b4:94:
30:2c:fb:46:9f:9c:6d:90:4f:15:62:84:80:66:33:
1b:cb:ce:50:1a:ef:26:39:ec:c3:e2:06:5c:c0:15:
e5:5a:14:3a:d2:5e:a1:ff:f9:57:69:1f:ce:d8:f9:
a8:d0:e8:a4:d0:25:0f:1e:02:a7:9d:a8:67:81:eb:
fd:2b:31:1d:fe:8a:42:66:7f:8c:0f:a8:db:8d:b6:
bc:6f:98:b5:f0:bc:99:97:cf:ea:ec:49:9e:a5:e4:
84:f6:70:d2:2a:59:5d:5f:ec:d0:87:8f:18:62:21:
3f:7b:17:19:84:ef:9c:5e:43:cd:d4:f9:e1:ee:5d:
42:48:a9:f0:82:75:bd:08:a4:2b:71:27:77:b0:a9:
3a:13:81:f0:c6:d5:d4:1c:8c:bb:67:4a:85:8b:d9:
c2:b1:74:3d:b3:63:7f:1c:dc:27:8c:fa:88:a2:7c:
a6:57:8c:38:db:69:64:80:28:42:2c:9a:b5:52:ba:
cc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CF:40:79:F5:70:11:16:86:71:66:A2:E0:A5:7F:E1:11:79:29:A8
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:2e:21:f5:2d:97:90:c5:e7:f9:1c:f3:bb:d9:a3:d1:07:9c:
72:a4:ac:5a:d2:1d:21:82:d9:55:a3:ac:c0:c6:43:01:73:77:
5c:09:18:98:25:80:69:9a:38:b2:19:52:cc:0b:aa:63:f5:50:
10:02:74:95:56:38:88:96:63:96:65:27:e9:4b:79:48:b7:8e:
cf:fb:e4:b3:83:bd:d2:75:b2:e2:35:fc:b6:a7:23:26:db:89:
e2:4d:24:d5:cc:38:08:b3:ea:3a:cb:f0:74:3a:55:cd:32:bb:
28:02:45:01:5b:02:c5:2b:3d:a6:da:f7:26:08:f6:96:80:1d:
fa:40:c0:20:7d:43:2b:b1:1d:36:0b:22:7e:8f:8d:90:e4:2e:
c8:f6:85:1e:4e:f4:0b:eb:08:e8:ba:69:fb:b8:f0:9c:45:ea:
50:9b:da:58:e0:8f:5c:ef:e0:36:f6:6f:ce:17:c0:74:63:23:
63:a9:98:23:1d:7b:a3:af:d7:1b:a5:8a:ea:1d:e7:7d:39:18:
66:ec:9a:34:a6:8c:52:ff:fd:78:22:ff:ce:d3:c8:7d:4c:4e:
10:d0:09:28:ef:1e:78:fb:f4:98:bc:12:4c:be:c5:3e:8a:3a:
77:1f:5c:87:d1:30:be:cf:a7:5d:02:80:a1:a7:09:48:25:62:
4b:24:44:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:57:03 2026 by rpki-client