Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: mPyvtcVwLkpsCAXHUCT2fAV9pr3yeZQeeQpDIhK9h3c=
Subject key identifier: 7B:39:14:91:22:97:2E:7F:BC:BC:40:C8:CB:29:A0:E3:77:1E:1D:37
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019748C2DCCC954FEBD968122DCACBE8FB4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 0578
Signing time: Sat 07 Jun 2025 05:00:19 +0000
Manifest this update: Sat 07 Jun 2025 05:00:19 +0000
Manifest next update: Sun 08 Jun 2025 05:00:19 +0000
Files and hashes: 1: 8A-P_ORhWgCvGzrDZbvgnuXv8-Q.roa (hash: oBZBRDrJFN8P0rq4HbYuCOhWt6Wuv4vtGNK+w0AylXw=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: QRsa5L0HIbGno4jwtLv56w7qsR4ag1s36PTqkjDHv8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:dc:cc:95:4f:eb:d9:68:12:2d:ca:cb:e8:fb:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Jun 7 05:00:19 2025 GMT
Not After : Jun 8 05:00:19 2025 GMT
Subject: CN=7b39149122972e7fbcbc40c8cb29a0e3771e1d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4e:ab:8e:bb:d0:d3:59:44:66:a6:fe:36:ce:
5a:ed:c7:a5:be:5d:d6:0b:70:d9:ad:e1:8b:cf:71:
7e:07:4b:c8:43:d3:a4:5c:d8:2e:f2:ba:cc:66:71:
c8:0f:ed:6b:61:fa:03:98:c5:8e:eb:a6:5f:a9:07:
99:41:ab:81:45:51:c7:e3:94:e0:95:da:4c:e8:29:
c6:f8:f8:04:0d:9b:6c:13:6a:c3:79:da:45:ea:43:
d9:fc:45:54:b6:b2:cc:45:c0:60:33:51:ed:1a:65:
3c:f2:17:b3:2d:4a:a7:d8:01:42:24:2c:11:d3:e5:
3c:71:cb:42:3d:4f:ad:93:d8:af:c9:9d:d0:53:40:
37:17:d9:96:7c:e7:ff:c3:72:1d:d8:71:40:17:a7:
57:69:a4:f0:98:e6:d0:3c:ac:a9:8e:7a:e8:91:60:
2b:9e:6a:bb:1a:06:26:a6:ca:07:5e:f8:2f:88:48:
7c:5e:a9:06:e7:f8:2a:1c:fd:6a:01:d0:78:69:0a:
09:b1:f1:14:09:55:fa:d4:c9:39:3b:f6:65:e4:8e:
6c:f0:89:86:22:62:80:cc:b1:e1:31:4d:69:b4:6d:
e5:0c:32:91:7e:37:a2:9d:be:5c:76:bd:3e:7c:2e:
9c:33:54:94:b6:31:a9:a0:6d:9f:29:3a:47:a0:38:
3b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:39:14:91:22:97:2E:7F:BC:BC:40:C8:CB:29:A0:E3:77:1E:1D:37
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:7e:0e:f3:77:40:63:a6:4d:fd:19:2a:bc:c3:d7:18:e8:56:
b3:19:57:ef:11:5c:20:c3:38:80:1a:75:57:bd:db:17:b5:c7:
3e:aa:09:c9:c9:84:47:7a:f3:89:1a:c8:85:f4:a0:a3:58:24:
90:9b:40:c3:d4:d1:5e:0e:2c:e0:3f:55:5d:59:6e:4d:81:6f:
35:dd:28:c6:b1:50:04:26:58:57:43:6d:14:4c:bc:28:37:a9:
d7:20:e9:dc:65:12:1c:53:46:b5:ca:0d:83:e6:81:59:97:86:
18:29:b1:e6:80:f5:25:54:30:7a:16:fe:20:62:9b:f1:8e:59:
d1:24:f2:71:31:2d:ed:69:47:a2:a2:da:c9:01:77:03:b0:29:
b4:95:b9:b7:8a:e5:bd:3b:03:5c:af:f7:09:c6:75:fb:38:5c:
e4:e8:39:e1:62:32:fe:20:59:38:84:b1:fe:39:e4:89:aa:92:
b2:3f:b3:1a:32:aa:49:ca:da:4d:38:b9:7a:7b:74:30:9c:ed:
5f:83:bc:ce:0d:d3:47:e8:92:0e:df:06:fd:fc:03:59:2a:dd:
35:36:89:73:56:84:29:9d:c2:cd:73:31:f9:2b:a2:84:de:cd:
d0:a1:8d:68:ec:7a:a0:cf:3b:71:80:a6:1e:1a:06:97:e0:37:
97:18:f2:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:29:52 2025 by rpki-client