Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: 7pWGoaT51RtjtW9u4OYS+VKuo99V/yGUyncap8ZmqB4=
Subject key identifier: F9:DB:05:CD:8F:AC:DB:A0:D5:F3:82:1D:0E:4F:EE:AC:BF:FA:13:F2
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019D37C13A6577015C25B9E57E5666D48978
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 088C
Signing time: Sun 29 Mar 2026 04:01:43 +0000
Manifest this update: Sun 29 Mar 2026 04:01:43 +0000
Manifest next update: Mon 30 Mar 2026 04:01:43 +0000
Files and hashes: 1: Ikq2mGUlslqkD1ZeqGUCsBqCrfo.roa (hash: E6NdR2fVzdULD14RMMCq1nu2I2iubEiAOLLdM23/Ci0=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: VTR9CfXWOADnTZ9kWNgR89wLw+wscn/gdJMQR4PDFUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:3a:65:77:01:5c:25:b9:e5:7e:56:66:d4:89:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Mar 29 04:01:43 2026 GMT
Not After : Mar 30 04:01:43 2026 GMT
Subject: CN=f9db05cd8facdba0d5f3821d0e4feeacbffa13f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b2:01:e8:82:e4:4b:f7:90:a9:0d:f5:75:f1:
a9:61:bc:cb:12:3f:31:f2:ea:09:52:15:4b:c0:8b:
2c:f8:e7:7e:94:e6:d7:c3:06:44:35:46:e2:ba:f2:
1f:c7:92:56:4f:d3:1f:54:d2:59:80:9b:43:ff:72:
be:c6:c8:d6:1f:62:29:71:10:a8:5a:19:49:1a:d9:
dc:d2:98:bd:a1:cd:41:4e:d2:45:79:8b:b4:b7:55:
46:7e:77:71:98:36:42:3c:0c:48:18:cf:d7:85:f2:
ad:75:ad:9b:b4:70:27:6d:b0:e7:fe:39:0e:9b:1a:
3d:35:d8:48:e9:10:18:ae:89:7f:00:0e:b2:f8:8b:
30:07:98:65:17:6b:35:28:cc:84:d5:dc:8e:86:35:
d0:84:2d:29:df:41:e0:ba:74:fd:37:10:cd:ac:1b:
bc:19:11:3a:3b:42:d2:ce:67:a2:d3:90:d4:e3:43:
e3:52:4a:54:ea:ac:fe:f6:dd:35:f0:73:c8:fe:b1:
36:cc:8a:c9:53:82:9f:35:6b:6a:fd:24:6a:a8:e8:
51:70:ab:ae:5f:96:74:eb:8d:02:98:fc:2f:91:64:
9b:21:47:4f:a9:56:88:9e:7e:f6:db:0c:b6:29:36:
4e:17:18:31:0a:a8:52:64:f4:77:63:ca:47:e4:ee:
b2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DB:05:CD:8F:AC:DB:A0:D5:F3:82:1D:0E:4F:EE:AC:BF:FA:13:F2
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:61:24:f2:20:62:d8:cb:dc:b0:74:da:87:3c:eb:8c:c3:0b:
8d:8f:88:57:5e:eb:5b:07:33:4d:bf:1b:80:5c:2a:ce:e5:99:
81:ea:57:91:e1:4b:3e:ca:58:c1:7d:55:bb:d8:68:5c:4b:af:
09:72:e7:ed:a8:32:c4:d8:ea:35:40:6e:eb:67:6f:3f:b0:05:
6f:4c:92:c9:b0:b9:b2:98:c6:6d:02:26:b4:d4:24:23:7c:07:
66:72:c8:b8:7d:98:4b:32:fa:ac:e2:ff:d5:0b:8c:eb:0c:cd:
8f:2d:c8:c6:da:95:e6:57:27:00:3c:74:80:9e:b0:d3:75:8d:
11:2b:ee:d1:38:e1:07:8e:88:e5:23:ac:d7:02:0c:e4:11:16:
02:d2:9a:be:15:aa:d4:df:92:c8:38:40:a4:a5:8d:61:17:9e:
eb:fc:28:30:ec:95:5b:5e:b0:c8:74:f9:01:88:4a:f7:c3:81:
0c:72:2f:a1:13:52:74:12:6e:e4:ce:bf:f4:0e:be:f8:80:97:
32:5a:9a:37:74:07:5c:2c:08:f7:c1:9a:c0:69:ac:e5:9c:9e:
a9:1a:13:8b:2c:b1:a2:2a:12:24:55:91:34:65:c5:b5:26:2f:
aa:de:c1:a6:3a:f9:5d:b5:89:cf:de:f0:a8:50:eb:bb:f5:5c:
a1:5e:24:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:26 2026 by rpki-client