Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: y0AbIWNyFI3S9IkEp0Gh77PcOFZgdr+K5QWuVr4WFiI=
Subject key identifier: 9F:3E:C5:0E:A0:5E:5B:11:52:4F:E6:FE:F0:09:FE:39:31:43:C8:2E
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 0199353718024035DA0B0451F235C15A5324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 0677
Signing time: Wed 10 Sep 2025 20:00:27 +0000
Manifest this update: Wed 10 Sep 2025 20:00:27 +0000
Manifest next update: Thu 11 Sep 2025 20:00:27 +0000
Files and hashes: 1: 8A-P_ORhWgCvGzrDZbvgnuXv8-Q.roa (hash: oBZBRDrJFN8P0rq4HbYuCOhWt6Wuv4vtGNK+w0AylXw=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: N7CLGf/ZgtTfaAlbum/6GotcRgjYuWSxenETXL3xHVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:37:18:02:40:35:da:0b:04:51:f2:35:c1:5a:53:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Sep 10 20:00:27 2025 GMT
Not After : Sep 11 20:00:27 2025 GMT
Subject: CN=9f3ec50ea05e5b11524fe6fef009fe393143c82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0f:3e:9c:04:f1:39:15:2d:5a:f0:ab:a4:bc:
94:f6:5f:be:e8:6c:4c:b4:b8:9c:47:12:f0:ea:49:
58:47:17:6f:55:f1:1a:44:e1:ac:c1:45:47:db:6d:
6c:8c:81:28:67:ff:d4:de:cb:d2:e6:2c:3c:fa:46:
97:ec:e7:72:09:15:ca:bf:08:58:8d:15:c6:18:b7:
78:e2:e0:30:90:c7:6b:e4:84:39:35:af:0e:5f:08:
10:de:14:75:67:2f:71:6b:dd:2b:f2:49:71:8c:3c:
5b:07:64:8b:bc:8a:62:82:19:1b:7e:b0:8a:bd:72:
f1:10:73:3f:7d:ae:62:ff:d8:e5:88:84:80:ec:3c:
97:f5:8e:36:a8:d1:57:5c:e8:1c:0a:bf:98:a7:64:
3b:8a:ee:99:d7:4a:fa:3c:79:d9:98:11:fb:6a:9f:
d9:81:f5:0d:4f:67:61:ad:c3:26:69:de:92:0e:c6:
58:70:43:3c:58:29:2d:79:ae:81:6f:c6:72:ef:d7:
95:54:d2:0b:c2:00:9b:69:7f:e6:b4:84:3d:4a:f5:
f1:60:10:ca:c9:02:f1:39:88:b8:69:a0:3d:43:fa:
bd:68:1c:bc:93:0a:4e:bc:8f:91:1e:d0:a3:2f:84:
54:38:fe:2c:24:80:66:a0:e7:2a:9e:89:11:cd:71:
94:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3E:C5:0E:A0:5E:5B:11:52:4F:E6:FE:F0:09:FE:39:31:43:C8:2E
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:44:98:d3:9b:f5:b0:80:21:00:55:6c:0f:32:1d:23:8a:07:
97:96:22:b1:0e:56:7f:8e:85:54:e6:b1:12:0d:d0:58:4e:fc:
a5:4e:e6:ad:9f:7b:e8:10:4e:e2:56:2b:4e:90:e9:9b:bb:92:
4b:f7:86:12:0d:37:1b:34:f9:64:fc:9b:7f:1b:b6:19:a2:b9:
66:31:17:c1:db:c7:47:e2:5c:c8:25:d9:f5:be:1a:e2:89:af:
5f:78:97:1f:7b:51:a0:95:2f:bb:45:9c:f4:0f:15:d4:4b:2e:
e2:e6:9e:eb:9b:2e:c6:79:70:e8:d1:d0:ad:2e:0d:a0:3a:1f:
99:54:15:a2:40:e0:b0:89:32:7e:46:ec:64:85:75:af:71:96:
01:ca:15:c7:0d:19:63:7c:0b:d0:91:ef:6f:9d:61:d7:8b:e0:
e0:d9:42:87:e9:c9:6c:bc:93:33:78:52:d4:d4:57:1d:14:2e:
99:52:98:35:e6:ee:e1:68:06:47:a9:54:57:31:69:9d:06:1c:
53:0e:d8:f2:2a:cd:de:aa:fd:40:a8:7a:17:0f:3d:ac:72:42:
aa:8a:c8:37:6d:15:9b:92:3f:62:67:77:63:b7:39:97:e4:b1:
ca:f4:a1:29:39:53:ef:28:13:21:f6:79:96:55:42:40:99:c5:
68:7b:e6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 00:26:19 2025 by rpki-client