Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
File: IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft (raw, json)
Hash identifier: 7u08pGGg07frNoUtJOdd11ChJDUJFOGfJrAM2Z5lR+w=
Subject key identifier: 5B:85:CA:F3:DD:C2:84:67:5A:D0:54:1D:07:57:E7:E0:BA:55:5B:8E
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 01976C986E2EEB67ED2AED43A2F3D5E9661C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
Manifest number: 0889
Signing time: Sat 14 Jun 2025 04:00:18 +0000
Manifest this update: Sat 14 Jun 2025 04:00:18 +0000
Manifest next update: Sun 15 Jun 2025 04:00:18 +0000
Files and hashes: 1: IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl (hash: iTIvknn6H8AHCwU8ecbggv15IXRLMqK/WlXnxyAQzIA=)
2: NfqHOhcJXcqSfQpuNgytLU6Q0gw.roa (hash: fdvl8Vjh1i6SnoxQG77IPFWNq1tbBXhWcHGwbwfOV50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:6e:2e:eb:67:ed:2a:ed:43:a2:f3:d5:e9:66:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Jun 14 04:00:18 2025 GMT
Not After : Jun 15 04:00:18 2025 GMT
Subject: CN=5b85caf3ddc284675ad0541d0757e7e0ba555b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:85:cb:08:c1:aa:07:10:84:72:0a:fb:ec:ac:
1d:65:89:73:ca:90:08:d7:85:59:df:80:9c:36:16:
28:f1:c2:c1:09:53:13:39:8d:7f:70:f9:31:e0:9f:
a5:7e:46:56:91:51:5a:29:07:71:9e:60:e5:38:37:
04:b3:30:ca:6e:99:fb:43:6e:61:24:cd:1b:d7:51:
82:a8:49:b5:c9:a0:b6:7e:36:d3:f4:a9:63:e3:b8:
26:05:c2:dd:21:a8:01:f6:85:a9:bb:78:12:16:81:
d5:67:09:80:0d:1c:18:2a:bf:b4:55:59:89:85:f2:
39:a7:0e:ad:57:94:89:d5:76:45:08:37:f4:ef:ae:
db:ca:82:20:b5:f5:60:7b:58:52:92:b4:f5:e7:d8:
3d:83:82:15:65:30:7f:77:b3:3f:2a:18:bb:78:d5:
c0:88:45:f5:5f:08:c6:42:b7:2f:c5:df:33:16:6b:
a9:39:03:1c:aa:23:b3:e0:7b:7a:09:4e:4f:b2:70:
c5:a5:77:78:0c:b5:95:d9:f1:cf:79:8b:ce:5b:66:
18:40:62:01:fa:2f:58:97:c9:b3:dc:6f:bc:25:90:
af:63:de:f1:49:2f:eb:e8:50:e9:7f:ae:87:26:8b:
7c:40:fe:fa:00:59:fc:2f:ad:aa:7b:c3:95:7b:a8:
54:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:85:CA:F3:DD:C2:84:67:5A:D0:54:1D:07:57:E7:E0:BA:55:5B:8E
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:b4:24:83:37:aa:a1:16:76:b2:d0:40:e2:aa:08:fc:6e:99:
20:d8:d1:c2:5b:a7:46:62:a9:2c:11:6e:fb:5f:d4:c9:6a:93:
79:06:b6:9c:5f:72:de:54:65:b6:4c:fb:41:38:e3:b8:51:cd:
f7:8a:41:e1:e4:a0:26:20:de:35:7c:71:95:d6:4c:26:72:87:
dc:26:18:66:e5:99:4e:0e:6c:46:3e:3a:45:69:14:74:b9:cf:
48:38:4b:bb:ed:e4:24:60:33:a2:2d:cb:69:09:ad:9e:8b:c9:
e9:94:79:21:3f:db:16:da:61:b8:a3:d9:dc:b0:92:f3:64:06:
37:81:fe:51:83:8f:e7:91:1f:ce:93:e0:61:8e:e2:63:3c:99:
19:1c:22:40:4e:f7:4b:49:f2:31:7c:a4:db:7a:d7:df:84:d9:
79:26:5d:b3:f5:64:24:a7:48:44:8a:cf:9e:ba:16:77:18:a3:
2d:46:9e:11:f5:b2:76:05:55:61:a0:67:66:88:15:12:8e:50:
97:99:39:68:ef:30:07:e0:7f:fb:83:5b:fd:a5:e8:a4:8b:de:
70:a0:c6:06:99:7e:ed:65:db:8f:9b:c6:f5:44:aa:29:5f:79:
79:0b:a6:f1:d7:86:ce:ed:1e:37:be:9f:80:a9:26:9d:42:54:
d4:be:10:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:47:41 2025 by rpki-client