Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: itJ6oulqavMEBScvmElxGk7xbnL+6cOewJwEW4n5khM=
Subject key identifier: 27:0A:65:84:C7:D3:98:90:93:D4:DD:E5:6F:49:91:8D:EB:67:1E:FF
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 0198819DB14B8546F61B30113E86CDCDCAEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 061A
Signing time: Wed 06 Aug 2025 23:00:52 +0000
Manifest this update: Wed 06 Aug 2025 23:00:52 +0000
Manifest next update: Thu 07 Aug 2025 23:00:52 +0000
Files and hashes: 1: 8A-P_ORhWgCvGzrDZbvgnuXv8-Q.roa (hash: oBZBRDrJFN8P0rq4HbYuCOhWt6Wuv4vtGNK+w0AylXw=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: dwBbrI3nrfDLhIO4JkNG+Q0Ly/OHDkRfBUjkCjAV3AU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:b1:4b:85:46:f6:1b:30:11:3e:86:cd:cd:ca:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Aug 6 23:00:52 2025 GMT
Not After : Aug 7 23:00:52 2025 GMT
Subject: CN=270a6584c7d3989093d4dde56f49918deb671eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:43:13:3f:b8:8c:c3:40:35:7c:8c:0a:5d:b9:
32:d6:80:b8:7d:65:0d:e5:5e:aa:a5:f7:48:e4:59:
6c:22:d3:0f:29:39:28:3a:fa:46:77:c1:2f:af:26:
3b:85:41:9f:b7:d2:41:c7:6c:b7:c9:8c:0f:ca:ac:
7c:a7:b0:9b:44:cb:a3:94:93:67:fb:ce:98:12:eb:
31:b6:af:0f:92:5e:d2:26:60:8f:3f:94:90:40:db:
ad:e7:92:6f:79:ee:fb:b2:31:5c:44:c1:c1:d3:12:
f7:8b:98:28:e8:5c:46:4d:ae:18:92:11:f2:e6:e7:
c1:7c:47:ff:f7:29:49:12:95:ef:92:41:5b:dc:3c:
19:1e:93:de:3c:c7:06:f5:66:dc:08:b3:35:4a:37:
97:b2:7f:f0:ec:dd:c5:94:a9:f5:a0:08:8f:50:0d:
19:71:04:0a:c7:8c:aa:a8:86:a2:4d:c6:8b:44:61:
8b:10:0c:a8:5c:a3:f6:67:27:8a:f6:86:d5:fd:f7:
78:7b:32:d0:c8:58:c6:24:66:02:80:97:58:1a:b5:
d8:99:f8:5e:53:12:46:1b:0a:f7:6f:d6:2e:63:f2:
86:55:52:96:27:8f:5b:98:23:88:2a:72:30:14:89:
09:3e:83:93:e8:9e:5f:75:6b:27:e7:ab:71:0f:c8:
fb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0A:65:84:C7:D3:98:90:93:D4:DD:E5:6F:49:91:8D:EB:67:1E:FF
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:3d:1c:35:46:10:8f:9f:af:19:87:36:b2:d4:fc:18:b6:b6:
ba:a2:f9:97:70:03:93:b9:25:2e:96:74:b3:92:4a:ca:c4:0a:
6f:6b:a7:0a:1c:03:11:f8:4f:75:2d:6a:5a:bb:fe:60:6f:88:
56:d0:8d:3d:50:f0:02:44:50:ce:54:c7:9c:a7:8b:9b:04:9c:
14:34:57:e8:12:14:21:f0:52:ff:dc:34:9b:f8:2d:8d:57:a9:
fa:a6:63:19:56:60:1a:4c:81:d2:da:77:38:8e:aa:2f:cb:7c:
02:7d:28:cd:76:43:4b:75:27:50:f2:47:1c:29:85:50:d1:e2:
1c:84:c8:23:0b:14:4d:96:ca:44:d7:f4:70:5e:75:0a:fa:f3:
1f:fb:0a:09:d5:c0:45:e7:36:33:69:35:27:86:a7:b7:65:24:
5d:2d:9f:cf:64:73:15:df:d8:eb:a1:87:a1:55:01:5b:9e:a7:
10:ba:d3:ed:e0:d7:bf:51:7a:3e:db:1c:57:f6:87:bc:56:a5:
18:e0:ca:e7:31:58:41:95:ea:bf:02:4a:b0:0c:a2:85:40:e8:
e8:72:63:82:e3:9c:f6:7d:0a:f5:d9:75:b5:29:10:2e:e3:11:
66:5c:de:14:f5:1c:ba:f9:c5:5c:c7:cb:8e:1a:38:b8:2f:ca:
c6:f0:d0:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:57:57 2025 by rpki-client