Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: +q3oNMxt+VnNTzwC9Yl0tmZK6uDPCHGA8dkYwogDz5s=
Subject key identifier: 7A:8F:8F:88:60:9F:6B:58:A5:4C:CD:08:3D:E7:02:87:BF:FE:68:2F
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019CACB555FBBA9ED2D2F54240C873E9EC8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 0844
Signing time: Mon 02 Mar 2026 04:01:31 +0000
Manifest this update: Mon 02 Mar 2026 04:01:31 +0000
Manifest next update: Tue 03 Mar 2026 04:01:31 +0000
Files and hashes: 1: Ikq2mGUlslqkD1ZeqGUCsBqCrfo.roa (hash: E6NdR2fVzdULD14RMMCq1nu2I2iubEiAOLLdM23/Ci0=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: Tbeqj9aLy6n+3U64a487k9f2GrZiQCkuUi5huhRdQxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:55:fb:ba:9e:d2:d2:f5:42:40:c8:73:e9:ec:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Mar 2 04:01:31 2026 GMT
Not After : Mar 3 04:01:31 2026 GMT
Subject: CN=7a8f8f88609f6b58a54ccd083de70287bffe682f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ed:6a:35:07:ea:a0:2b:e7:c0:35:fb:35:ab:
ed:38:a1:3e:07:9d:4b:8d:04:17:b0:56:b4:4e:e9:
9a:42:73:94:ee:46:d9:d0:9d:46:81:fd:ef:02:be:
1c:60:9e:9e:b7:8a:cb:e5:2b:c0:c0:3f:db:96:a8:
50:23:3b:c7:1d:0c:37:8a:df:8b:81:f2:65:9d:0c:
2c:5e:c8:01:ef:29:4f:46:4f:7d:c9:99:19:bf:61:
3a:11:2c:42:40:d4:ee:82:3a:c4:e2:23:81:b1:b1:
ff:38:36:ff:ae:5d:2d:2e:fb:df:e6:cc:0e:62:56:
9e:ce:1a:d4:8a:89:2f:b1:ff:92:4d:c6:ce:ae:c6:
13:a8:12:65:c6:46:d9:17:b8:73:a7:bb:9d:d0:e7:
5f:42:9b:ef:03:93:88:a4:ac:bb:a7:ed:18:7a:ab:
bd:4b:f2:b1:07:66:2d:b6:9a:95:74:03:a5:93:8f:
4f:c6:2e:15:55:07:47:de:35:0d:35:da:6e:0a:90:
76:21:c7:57:57:da:af:6b:e3:1f:b2:dd:b2:78:0c:
07:93:f5:54:4f:c9:cb:68:55:c8:23:54:88:b2:73:
33:6d:64:29:bb:24:f4:ea:f0:bb:b4:36:9c:ca:2d:
91:52:a6:e3:aa:a4:e3:e7:38:b9:24:b0:74:f2:04:
4a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8F:8F:88:60:9F:6B:58:A5:4C:CD:08:3D:E7:02:87:BF:FE:68:2F
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:4e:40:3d:9f:a5:a2:68:0f:ff:03:f7:c4:07:ae:4d:d4:dd:
c6:54:31:4d:ac:6e:6a:b1:97:25:81:3b:8a:76:22:ee:13:12:
e3:98:d4:d3:81:c0:2a:c7:8c:da:54:85:0e:e4:09:74:62:b5:
91:ae:89:1e:d9:79:2e:1a:d9:89:93:67:b9:9e:ca:56:c7:b4:
b3:72:9b:46:92:1d:58:d2:52:1d:1c:9f:c0:da:6d:a3:c8:26:
8f:84:92:ca:45:d0:a1:fd:cd:b6:c5:b8:8a:aa:14:6d:d8:4d:
ed:49:5f:bf:bb:32:74:d9:e4:80:f8:c9:c7:7a:e0:bf:b1:60:
bd:04:d6:8a:20:20:df:3c:14:42:54:44:75:fa:53:3c:77:7d:
fd:df:02:46:69:8b:a0:9a:f5:59:0c:3e:52:c4:a5:d4:02:36:
a4:88:53:ab:b8:0d:39:31:80:6d:bc:8c:70:cc:8c:70:98:5f:
fd:ea:fe:a1:ac:54:a8:56:bf:58:44:99:e5:fb:33:de:b8:4b:
04:13:3c:ea:11:7d:02:e5:72:d2:11:2b:65:3b:11:63:c5:df:
9c:ce:a3:51:de:fd:f2:92:a9:fa:ae:7f:f4:5e:b3:a5:47:83:
70:a8:23:c4:de:4d:99:30:60:2b:f3:7d:50:4f:a5:ea:44:cc:
8c:fd:74:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:41:53 2026 by rpki-client