Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: qgSh+9X3jT9UsqT3JwK7yufsZe2whM6BRvZYgiuhmG8=
Subject key identifier: 65:D6:08:F4:63:37:45:08:F7:21:28:8C:C7:2E:87:5F:88:25:A7:D6
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019A4D3CF89F3EAEE5C073ADD6137983F474
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 0708
Signing time: Tue 04 Nov 2025 05:00:32 +0000
Manifest this update: Tue 04 Nov 2025 05:00:32 +0000
Manifest next update: Wed 05 Nov 2025 05:00:32 +0000
Files and hashes: 1: 8A-P_ORhWgCvGzrDZbvgnuXv8-Q.roa (hash: oBZBRDrJFN8P0rq4HbYuCOhWt6Wuv4vtGNK+w0AylXw=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: AJCVN2/Puiz5WHDZZWp67TNX+UHM4/74e2+9a7wtTzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:f8:9f:3e:ae:e5:c0:73:ad:d6:13:79:83:f4:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Nov 4 05:00:32 2025 GMT
Not After : Nov 5 05:00:32 2025 GMT
Subject: CN=65d608f463374508f721288cc72e875f8825a7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ad:dd:ee:4c:d3:c4:b2:ae:74:f2:bc:e5:4b:
d6:ea:90:63:77:ab:e4:88:70:f8:5d:18:6d:36:c8:
5c:07:b9:90:9f:bb:1f:66:2f:29:3c:de:99:ff:b5:
b4:f9:eb:ba:13:a2:1e:21:97:48:32:9f:12:12:94:
bc:49:0d:63:af:c8:c1:e9:04:30:06:3c:05:8f:ce:
b2:53:c6:b9:ea:ad:16:a6:43:b9:a2:1d:ed:2f:ff:
3a:8d:ff:a5:7f:02:02:3d:ea:5f:d0:37:cb:4a:db:
a0:a3:27:0a:59:2e:76:b0:6d:34:be:ad:65:cc:d1:
30:00:de:35:03:1f:52:30:1b:70:60:78:bd:58:f1:
82:f6:d0:c2:92:85:5c:29:3e:8c:e7:42:76:e4:a3:
3a:73:ac:94:57:9e:07:94:7b:df:63:50:be:83:84:
d7:66:1b:2c:b8:71:3a:9f:3b:12:e8:b0:9f:c9:80:
4d:7c:88:ab:f7:58:29:75:38:b3:b3:86:e3:4b:65:
8e:19:2c:3f:2a:03:a9:cf:8b:62:78:ab:f0:18:1e:
30:9a:07:1a:77:c9:4e:a8:4e:cf:1f:08:ec:6c:09:
fd:ba:e0:f5:d8:31:74:9d:4c:da:e1:26:19:9f:07:
ae:95:96:9e:ac:b6:5e:34:1b:39:5d:3a:49:5e:a7:
92:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D6:08:F4:63:37:45:08:F7:21:28:8C:C7:2E:87:5F:88:25:A7:D6
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:47:ab:98:d5:c5:76:09:85:ea:c0:14:08:5c:18:5f:0c:34:
ac:60:80:19:b9:6f:6f:c9:d8:31:98:4a:98:e4:c0:77:22:bf:
b5:14:df:1a:77:03:37:9d:55:a7:9d:0d:11:d5:31:d7:50:74:
d0:e4:12:3a:27:2c:0c:48:c1:a8:cb:f8:ce:08:51:a1:73:5a:
bd:21:a3:92:35:7b:7c:15:7f:1e:06:be:b6:78:9c:33:d8:a8:
d7:3e:df:36:81:a6:02:84:65:e5:cd:61:0c:34:88:9a:63:5b:
be:3a:0d:22:97:bc:58:f5:f0:3d:72:5a:7d:73:14:78:99:80:
ea:1f:00:2f:6c:df:7c:50:1b:50:6a:bc:36:5a:98:e4:33:2b:
b5:b0:63:38:0c:b5:85:37:86:03:d7:71:75:4a:53:24:1c:80:
8c:6f:5c:6a:a1:dc:23:25:79:17:64:41:a6:bd:2a:6d:6a:3f:
6a:4b:dd:11:21:24:e3:b3:9f:b5:77:29:b0:2e:e4:14:46:bc:
56:29:e6:64:7b:60:5f:8c:1e:7c:0d:c7:51:69:8a:81:d6:60:
96:eb:2d:fa:72:75:4b:45:14:e8:d7:06:42:82:8b:f9:b2:dc:
a6:e2:b5:99:58:a7:46:a7:df:68:86:b3:25:39:c0:28:32:f6:
81:42:e1:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNPPifPq7lwHOt1hN5g/R0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4Njc4Y2EzNGMzYzYzNjVmYjYxNmE2NjA3NzE2MGE0OTRh
NmU5ZDYwHhcNMjUxMTA0MDUwMDMyWhcNMjUxMTA1MDUwMDMyWjAzMTEwLwYDVQQD
Eyg2NWQ2MDhmNDYzMzc0NTA4ZjcyMTI4OGNjNzJlODc1Zjg4MjVhN2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuK3d7kzTxLKudPK85UvW6pBjd6vk
iHD4XRhtNshcB7mQn7sfZi8pPN6Z/7W0+eu6E6IeIZdIMp8SEpS8SQ1jr8jB6QQw
BjwFj86yU8a56q0WpkO5oh3tL/86jf+lfwICPepf0DfLStugoycKWS52sG00vq1l
zNEwAN41Ax9SMBtwYHi9WPGC9tDCkoVcKT6M50J25KM6c6yUV54HlHvfY1C+g4TX
ZhssuHE6nzsS6LCfyYBNfIir91gpdTizs4bjS2WOGSw/KgOpz4tieKvwGB4wmgca
d8lOqE7PHwjsbAn9uuD12DF0nUza4SYZnweulZaerLZeNBs5XTpJXqeS6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGXWCPRjN0UI9yEojMcuh1+IJafWMB8GA1UdIwQY
MBaAFIhnjKNMPGNl+2FqZgdxYKSUpunWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQt
Zjg1ZjcyMWZiMWI4LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQtZjg1ZjcyMWZiMWI4
LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEUermNXF
dgmF6sAUCFwYXww0rGCAGblvb8nYMZhKmOTAdyK/tRTfGncDN51Vp50NEdUx11B0
0OQSOicsDEjBqMv4zghRoXNavSGjkjV7fBV/Hga+tnicM9io1z7fNoGmAoRl5c1h
DDSImmNbvjoNIpe8WPXwPXJafXMUeJmA6h8AL2zffFAbUGq8NlqY5DMrtbBjOAy1
hTeGA9dxdUpTJByAjG9caqHcIyV5F2RBpr0qbWo/akvdESEk47OftXcpsC7kFEa8
VinmZHtgX4wefA3HUWmKgdZglust+nJ1S0UU6NcGQoKL+bLcpuK1mVinRqffaIaz
JTnAKDL2gULhYQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:48:46 2025 by rpki-client