Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: KQH7Zljy8XomxubIrLKekw3WrkSEmubIZVCbsEvuyaM=
Subject key identifier: 72:11:7F:91:70:8A:B1:F2:22:5B:C4:31:C1:DA:58:C9:C5:F0:A9:74
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019D9A3EA94F83FDBB8781C2AE04CF2C37C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 08BF
Signing time: Fri 17 Apr 2026 07:01:30 +0000
Manifest this update: Fri 17 Apr 2026 07:01:30 +0000
Manifest next update: Sat 18 Apr 2026 07:01:30 +0000
Files and hashes: 1: Ikq2mGUlslqkD1ZeqGUCsBqCrfo.roa (hash: E6NdR2fVzdULD14RMMCq1nu2I2iubEiAOLLdM23/Ci0=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: H0ptS8xg7hz3M6e7FnoEWr4NwvTNiy0XwVV8/8d+V8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:a9:4f:83:fd:bb:87:81:c2:ae:04:cf:2c:37:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Apr 17 07:01:30 2026 GMT
Not After : Apr 18 07:01:30 2026 GMT
Subject: CN=72117f91708ab1f2225bc431c1da58c9c5f0a974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2a:4b:5e:6c:f9:e0:ee:d0:ae:ff:80:d1:c4:
30:dd:c9:3d:11:96:ca:69:c6:85:54:6c:85:8f:be:
97:f2:93:70:0c:e0:f1:56:c5:57:63:04:dd:b9:16:
30:60:7f:e5:17:ef:58:1b:c8:1d:c1:25:44:e6:a3:
eb:e3:52:d0:15:cc:18:62:d9:a9:7c:0f:6d:f1:a9:
4f:67:af:ec:a1:84:1a:b9:b3:46:75:9d:d3:9f:6c:
1b:6e:46:0f:32:37:a2:12:27:68:61:df:e7:52:ec:
d6:1d:be:f8:f6:89:44:1a:0f:16:af:4c:68:31:4b:
1e:66:ef:d7:dd:0a:32:a4:e7:79:0a:91:0a:4c:41:
c8:7d:3c:ac:79:7e:89:d7:b7:2d:50:c4:1f:f6:8e:
71:7a:b1:8f:bc:bb:a0:03:c4:47:1e:2e:ce:27:23:
a9:51:92:bb:95:03:3b:49:78:67:74:60:14:81:d8:
bd:8d:04:61:73:c5:76:2c:b2:ab:d7:66:39:32:1a:
ff:31:59:3f:75:97:29:5e:4d:08:e1:40:42:94:c6:
88:81:62:4e:25:9f:ea:31:e5:14:71:d0:45:43:08:
2b:1a:9f:83:7e:dd:a4:41:97:f7:d3:77:c3:b2:3d:
0d:ca:e6:f6:09:1d:f9:6c:02:74:5c:56:03:f7:b9:
3f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:11:7F:91:70:8A:B1:F2:22:5B:C4:31:C1:DA:58:C9:C5:F0:A9:74
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:f4:33:1f:ef:c0:df:75:61:5c:00:7b:e0:7b:63:23:d5:46:
4b:f5:22:1f:61:51:6c:79:0c:a7:39:82:50:05:63:f8:b5:06:
fa:66:2a:b7:14:d9:30:b8:c7:c0:c7:2c:e5:d8:b6:69:0b:45:
af:c8:b3:26:62:c8:62:87:8e:85:ff:e9:08:8c:af:02:93:4f:
c4:f6:33:67:6b:8e:0f:17:dd:0a:4d:f0:44:c4:d6:8a:4f:29:
df:39:e9:be:f8:b9:2f:fc:4e:87:22:26:54:6e:71:12:e1:6a:
38:2c:65:87:4e:63:cb:1f:82:4d:b3:b5:44:16:dc:df:be:1d:
2d:7d:f9:10:9f:a9:d5:1e:57:04:88:f5:73:26:47:0e:76:3d:
f9:6a:26:d4:d3:4c:7a:de:0d:10:92:10:3b:9d:17:fc:0f:eb:
e8:d0:c1:5e:9b:03:0b:55:e4:b5:ce:21:98:3e:14:13:32:eb:
4f:64:90:29:8e:87:a3:64:34:b0:1f:a7:e6:44:77:24:ea:7a:
c4:5e:73:06:f8:0e:41:c5:7f:93:72:89:c0:41:fe:8d:b4:6d:
87:7e:0e:5d:6a:de:c9:0e:4e:17:a9:3b:09:16:05:89:9a:29:
e2:27:11:17:37:e9:d1:0e:2a:c2:2f:66:4f:13:cf:3e:15:5a:
72:25:2e:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPqlPg/27h4HCrgTPLDfAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4Njc4Y2EzNGMzYzYzNjVmYjYxNmE2NjA3NzE2MGE0OTRh
NmU5ZDYwHhcNMjYwNDE3MDcwMTMwWhcNMjYwNDE4MDcwMTMwWjAzMTEwLwYDVQQD
Eyg3MjExN2Y5MTcwOGFiMWYyMjI1YmM0MzFjMWRhNThjOWM1ZjBhOTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyipLXmz54O7Qrv+A0cQw3ck9EZbK
acaFVGyFj76X8pNwDODxVsVXYwTduRYwYH/lF+9YG8gdwSVE5qPr41LQFcwYYtmp
fA9t8alPZ6/soYQaubNGdZ3Tn2wbbkYPMjeiEidoYd/nUuzWHb749olEGg8Wr0xo
MUseZu/X3QoypOd5CpEKTEHIfTyseX6J17ctUMQf9o5xerGPvLugA8RHHi7OJyOp
UZK7lQM7SXhndGAUgdi9jQRhc8V2LLKr12Y5Mhr/MVk/dZcpXk0I4UBClMaIgWJO
JZ/qMeUUcdBFQwgrGp+Dft2kQZf303fDsj0Nyub2CR35bAJ0XFYD97k/wQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIRf5FwirHyIlvEMcHaWMnF8Kl0MB8GA1UdIwQY
MBaAFIhnjKNMPGNl+2FqZgdxYKSUpunWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQt
Zjg1ZjcyMWZiMWI4LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQtZjg1ZjcyMWZiMWI4
LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdvQzH+/A
33VhXAB74HtjI9VGS/UiH2FRbHkMpzmCUAVj+LUG+mYqtxTZMLjHwMcs5di2aQtF
r8izJmLIYoeOhf/pCIyvApNPxPYzZ2uODxfdCk3wRMTWik8p3znpvvi5L/xOhyIm
VG5xEuFqOCxlh05jyx+CTbO1RBbc374dLX35EJ+p1R5XBIj1cyZHDnY9+Wom1NNM
et4NEJIQO50X/A/r6NDBXpsDC1Xktc4hmD4UEzLrT2SQKY6Ho2Q0sB+n5kR3JOp6
xF5zBvgOQcV/k3KJwEH+jbRth34OXWreyQ5OF6k7CRYFiZop4icRFzfp0Q4qwi9m
TxPPPhVaciUuNQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:01:47 2026 by rpki-client