Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: m7ibq8El/D+TtUC3CB1g9pnwsWIWuUtqUe86y7ne6D4=
Subject key identifier: CA:93:D4:78:13:3A:B2:B2:7E:06:E7:49:FA:36:2D:9C:85:99:C2:DC
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019A269D2D3424391D1D0EBCFA640D6E431D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 06F4
Signing time: Mon 27 Oct 2025 17:00:26 +0000
Manifest this update: Mon 27 Oct 2025 17:00:26 +0000
Manifest next update: Tue 28 Oct 2025 17:00:26 +0000
Files and hashes: 1: 8A-P_ORhWgCvGzrDZbvgnuXv8-Q.roa (hash: oBZBRDrJFN8P0rq4HbYuCOhWt6Wuv4vtGNK+w0AylXw=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: htcEYs7Un5CcBYG8QOXiMlGugE648Tzm6ZSIJH+7wZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:9d:2d:34:24:39:1d:1d:0e:bc:fa:64:0d:6e:43:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Oct 27 17:00:26 2025 GMT
Not After : Oct 28 17:00:26 2025 GMT
Subject: CN=ca93d478133ab2b27e06e749fa362d9c8599c2dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2f:97:b2:8d:6e:21:b7:ee:07:e4:64:d6:d2:
6f:d5:18:55:54:a7:cf:21:7d:6b:11:e2:e1:8a:11:
83:f0:06:d3:50:fe:05:3c:3e:4e:ed:cb:09:0f:26:
ba:b2:89:11:b9:cf:05:ec:c2:7a:3f:e9:87:75:cd:
f6:dd:5c:22:af:c0:c7:fc:b5:b5:64:b7:63:01:eb:
43:ec:f1:cd:53:94:3e:56:57:c7:a9:ca:7a:5b:f9:
26:15:db:08:e2:d1:da:3d:a3:38:de:e4:23:9c:3b:
de:78:9a:67:2d:13:a4:ed:95:4d:9e:c6:37:56:64:
e3:94:6b:c8:ef:3c:e7:8e:f7:a7:76:8d:89:a6:cb:
86:95:12:a6:74:67:29:ad:dd:23:ee:3e:2d:d6:de:
c2:57:bc:4b:b7:51:e0:ef:5d:6f:b3:58:07:7b:96:
d3:54:44:5e:eb:d6:c8:89:e3:e3:85:a1:17:59:8a:
a0:53:20:59:06:03:cd:26:b3:d4:31:7e:ee:14:26:
90:af:fb:4c:e7:a1:8f:d4:0a:d1:e4:bc:24:9c:a5:
f6:72:69:24:74:c8:97:ba:0e:18:df:0c:e9:17:ba:
18:30:2b:69:39:b1:fe:f8:d1:fa:dd:e3:ab:ed:12:
cd:68:60:be:e7:2e:08:07:dd:bf:3f:22:57:58:50:
e9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:93:D4:78:13:3A:B2:B2:7E:06:E7:49:FA:36:2D:9C:85:99:C2:DC
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:e3:c3:a5:ad:cf:2c:93:8e:87:56:6d:ac:57:4f:ca:8e:78:
45:d1:43:32:e5:b4:48:47:30:68:58:43:71:b2:7b:89:89:0b:
0c:41:46:a1:35:ef:77:38:d6:35:7e:93:da:12:72:c6:c6:c1:
1e:74:5e:71:b4:ed:cc:68:9f:f6:b8:ed:40:f2:d6:e6:3a:7d:
e2:47:1f:cd:79:11:87:a6:e2:17:60:c3:45:57:3f:bb:76:10:
dc:2a:ad:fd:a4:0c:a6:ff:8c:a1:9a:4e:16:7b:ba:d9:09:72:
78:4b:7c:74:b8:c1:4f:b3:86:54:fe:02:54:99:40:84:56:6c:
77:13:dc:2a:20:66:11:93:a5:cf:ac:53:fe:6a:94:51:1a:de:
ff:d0:38:9c:23:7f:6c:78:70:5a:df:67:ba:85:02:43:3a:37:
32:29:84:0d:85:26:1a:ee:0a:60:81:5a:56:16:79:f8:86:bf:
4f:a4:5d:a9:84:03:d8:29:93:2e:9b:96:9d:cc:fd:dd:79:99:
1e:93:3d:ed:6a:b1:70:a9:04:b5:6d:0c:f4:d4:a0:d6:98:84:
ee:9c:a9:0e:34:9f:ae:d2:c7:e6:a7:cc:dc:02:5d:a4:cb:cf:
25:9b:63:69:fa:ab:91:4f:8c:d0:7a:2d:b1:37:51:eb:b7:04:
e8:62:45:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZomnS00JDkdHQ68+mQNbkMdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4Njc4Y2EzNGMzYzYzNjVmYjYxNmE2NjA3NzE2MGE0OTRh
NmU5ZDYwHhcNMjUxMDI3MTcwMDI2WhcNMjUxMDI4MTcwMDI2WjAzMTEwLwYDVQQD
EyhjYTkzZDQ3ODEzM2FiMmIyN2UwNmU3NDlmYTM2MmQ5Yzg1OTljMmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0C+Xso1uIbfuB+Rk1tJv1RhVVKfP
IX1rEeLhihGD8AbTUP4FPD5O7csJDya6sokRuc8F7MJ6P+mHdc323Vwir8DH/LW1
ZLdjAetD7PHNU5Q+VlfHqcp6W/kmFdsI4tHaPaM43uQjnDveeJpnLROk7ZVNnsY3
VmTjlGvI7zznjvendo2JpsuGlRKmdGcprd0j7j4t1t7CV7xLt1Hg711vs1gHe5bT
VERe69bIiePjhaEXWYqgUyBZBgPNJrPUMX7uFCaQr/tM56GP1ArR5LwknKX2cmkk
dMiXug4Y3wzpF7oYMCtpObH++NH63eOr7RLNaGC+5y4IB92/PyJXWFDpkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqT1HgTOrKyfgbnSfo2LZyFmcLcMB8GA1UdIwQY
MBaAFIhnjKNMPGNl+2FqZgdxYKSUpunWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQt
Zjg1ZjcyMWZiMWI4LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQtZjg1ZjcyMWZiMWI4
LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPePDpa3P
LJOOh1ZtrFdPyo54RdFDMuW0SEcwaFhDcbJ7iYkLDEFGoTXvdzjWNX6T2hJyxsbB
HnRecbTtzGif9rjtQPLW5jp94kcfzXkRh6biF2DDRVc/u3YQ3Cqt/aQMpv+MoZpO
Fnu62QlyeEt8dLjBT7OGVP4CVJlAhFZsdxPcKiBmEZOlz6xT/mqUURre/9A4nCN/
bHhwWt9nuoUCQzo3MimEDYUmGu4KYIFaVhZ5+Ia/T6RdqYQD2CmTLpuWncz93XmZ
HpM97WqxcKkEtW0M9NSg1piE7pypDjSfrtLH5qfM3AJdpMvPJZtjafqrkU+M0Hot
sTdR67cE6GJF0A==
-----END CERTIFICATE-----
Generated at Mon Oct 27 20:40:36 2025 by rpki-client