Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: NSJ187K6hkLMwiL/AU00dE4PGyBBBbiFlnFqMGTNATQ=
Subject key identifier: D4:66:D1:E5:87:11:2B:4C:EB:02:62:CB:1A:67:2A:D7:BC:45:9A:2F
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019F14C23FE843E066F35A95F1B97B3ABF20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 0983
Signing time: Mon 29 Jun 2026 19:01:42 +0000
Manifest this update: Mon 29 Jun 2026 19:01:42 +0000
Manifest next update: Tue 30 Jun 2026 19:01:42 +0000
Files and hashes: 1: Ikq2mGUlslqkD1ZeqGUCsBqCrfo.roa (hash: E6NdR2fVzdULD14RMMCq1nu2I2iubEiAOLLdM23/Ci0=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: JI29JK1A/kaYmYfIX/SOPaWnwjKf0zWSy4D+4O5qs74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:14:c2:3f:e8:43:e0:66:f3:5a:95:f1:b9:7b:3a:bf:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Jun 29 19:01:42 2026 GMT
Not After : Jun 30 19:01:42 2026 GMT
Subject: CN=d466d1e587112b4ceb0262cb1a672ad7bc459a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b4:2f:dd:75:42:79:15:07:08:14:e7:13:ce:
0d:28:cd:48:1d:98:c0:0f:e0:28:e8:af:f0:59:e8:
9a:c7:d6:63:2b:3d:d1:f0:98:4b:3a:43:1e:ee:72:
bc:84:bb:77:52:96:fd:84:98:06:24:f3:3c:4e:82:
5b:55:52:91:8c:ab:dd:ba:cb:0f:28:7e:1b:8b:b3:
b1:ad:69:d9:49:21:e4:4c:c9:13:e0:9f:e3:6d:2f:
a0:2c:99:8b:b3:e0:e5:18:7a:01:3f:c0:29:f0:32:
84:ec:fd:10:a9:21:3c:41:ec:15:b8:2f:1b:2d:40:
29:fa:69:fe:21:d7:bd:09:15:cd:05:fc:92:a6:f2:
7d:30:bd:ab:b2:61:7a:ca:7e:af:eb:b1:77:b9:65:
6b:36:f4:af:df:1d:0d:f8:97:bd:66:7f:63:7b:62:
6d:0d:2b:e2:13:41:23:07:26:de:eb:0c:99:84:a9:
31:34:d9:5a:12:18:f2:65:dd:1a:94:43:ad:26:4d:
15:b1:7b:da:b0:4b:04:3b:4c:4a:66:f5:8a:27:c0:
aa:93:d1:a0:f0:19:74:75:d2:0b:de:b4:f9:af:b8:
c2:7d:63:bd:b0:e1:f9:d5:96:95:fb:7f:2b:21:10:
40:67:a0:2f:17:92:2d:5c:53:f2:42:59:e1:d4:41:
3f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:66:D1:E5:87:11:2B:4C:EB:02:62:CB:1A:67:2A:D7:BC:45:9A:2F
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:23:d2:12:05:9c:d3:69:af:c7:f7:bb:de:8b:64:43:ff:78:
44:5d:30:c3:79:c0:33:60:f5:1e:bb:1f:34:af:44:a8:31:5c:
70:c8:49:77:38:48:b3:dc:87:b7:3d:62:00:5d:2f:6e:2f:97:
c7:30:2c:2e:b0:62:cf:08:63:c5:cc:a8:f3:dc:3b:46:a6:16:
12:9e:81:e7:7b:bd:4a:c3:a5:62:f6:dd:26:fa:d3:89:d4:4f:
ef:28:36:a8:3c:e4:9d:da:2f:04:59:74:39:b2:84:97:72:6d:
12:cf:51:99:d0:2d:03:f9:d1:e2:79:95:82:eb:56:5a:27:c1:
a8:31:e5:93:77:1b:fa:22:ae:13:2a:9f:dc:32:69:6c:de:ee:
86:32:fd:aa:e4:d2:85:c9:c4:e5:d5:94:3c:e3:c8:3e:ed:f8:
2a:2e:22:a5:48:6e:e3:6b:b8:2a:79:ed:6f:69:20:58:0a:aa:
28:00:18:b5:74:51:11:02:54:72:f8:9f:51:98:7a:ff:d7:e1:
fc:45:8e:85:95:67:8c:3f:a8:83:61:4a:0a:9a:25:9e:b2:48:
e3:83:b6:0f:2d:65:9c:dc:42:35:65:b4:c7:1c:32:62:ea:5b:
a2:ae:2b:8b:47:8a:e9:6f:a4:e6:f1:05:00:10:4a:05:85:09:
95:ae:43:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 20:37:23 2026 by rpki-client