Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: Yz4hheVkaOVyHjUUdJmBoiwBXkxiuuD44nrKhVfEN4k=
Subject key identifier: BD:AF:3E:7B:70:65:B5:39:E6:D2:9F:EF:EF:40:CD:52:10:9D:ED:C2
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 0196AA67619AD43A5E60BD205CBF9B6BC2ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 0672
Signing time: Wed 07 May 2025 11:00:24 +0000
Manifest this update: Wed 07 May 2025 11:00:24 +0000
Manifest next update: Thu 08 May 2025 11:00:24 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: HRxz3wQZQLWYacdhxSmsz0uTBbaRlEvrbhCTa9r9hRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:67:61:9a:d4:3a:5e:60:bd:20:5c:bf:9b:6b:c2:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: May 7 11:00:24 2025 GMT
Not After : May 8 11:00:24 2025 GMT
Subject: CN=bdaf3e7b7065b539e6d29fefef40cd52109dedc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c3:c9:d1:fa:5b:ab:b1:35:77:35:4a:e5:a8:
fe:4a:8b:cc:0a:92:6f:b9:92:2a:e4:8b:a1:1c:e7:
49:d3:9c:17:6c:92:e4:fa:ed:7f:ab:f2:8e:21:c8:
56:0d:be:5d:23:50:6c:82:c5:5e:87:2c:96:d1:d9:
c1:a5:0d:2e:f2:49:56:d7:af:28:b7:ad:2f:b0:ea:
43:63:d7:bc:f4:b2:e0:26:78:a7:bf:ab:13:6c:ec:
99:3f:37:72:d3:ef:46:b8:13:69:fa:cd:f1:e9:00:
a6:fa:87:64:94:1f:d9:20:ed:97:a6:c8:b5:18:3b:
fe:fb:a5:4c:e3:69:37:c8:36:20:00:d4:68:d1:b5:
1f:cc:1d:c8:a1:a7:19:09:ee:25:0a:a9:69:47:d0:
8e:3a:41:34:81:af:1e:cd:2a:71:4b:54:88:74:9c:
a3:9e:d0:77:ad:d4:c6:fa:55:82:4d:29:39:50:6f:
dd:ab:80:b3:3c:75:57:2f:df:41:00:5d:3c:77:b4:
75:48:c0:d7:c6:e7:cf:3d:44:9f:59:50:18:1c:8e:
72:71:44:a1:14:b7:da:fa:7e:88:03:8f:57:ec:81:
75:ac:0d:b9:18:eb:02:dd:00:9f:65:3e:86:0c:57:
b5:1d:ba:f1:ff:7f:ae:48:2b:c3:28:fe:aa:9e:88:
65:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:AF:3E:7B:70:65:B5:39:E6:D2:9F:EF:EF:40:CD:52:10:9D:ED:C2
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:84:f5:e1:23:e0:5c:bb:2d:f5:f6:d1:6c:23:14:95:db:55:
e2:0a:26:47:d4:5c:37:c6:8e:c2:81:81:99:c3:2b:89:40:1b:
17:2f:8c:f4:9f:24:ed:db:de:f3:02:aa:c0:e0:4e:47:d3:41:
24:fd:57:8a:56:74:b3:4f:19:b4:d2:3d:a8:21:1d:08:c2:8e:
68:1f:c6:3f:de:b8:ec:cf:ee:ee:86:91:a6:1d:26:43:a6:24:
1e:8f:7e:ec:95:62:6f:b6:8a:fd:cf:84:f5:a2:b9:99:af:3f:
05:78:4f:95:2f:ec:89:f8:94:25:a5:9e:73:8c:ac:97:53:63:
98:b6:b5:80:fc:9f:f1:dd:e2:a3:8a:25:23:be:4e:39:2c:d0:
62:f9:13:ca:d2:5d:f6:aa:01:b0:5a:36:a9:27:d5:5f:fa:47:
04:0b:de:43:12:e0:2c:cd:74:63:6e:48:d8:ca:4e:d8:bd:ae:
af:d1:e6:b9:0d:ac:5b:99:0b:bd:66:ab:35:dd:94:90:e2:8a:
c6:2c:4f:a4:ac:4a:82:2d:d7:e5:9b:1e:ca:cc:0f:08:97:9c:
df:7f:4c:ec:6c:90:8a:6b:57:90:c1:54:32:d3:5b:6a:b2:78:
de:d9:f2:46:79:93:22:d8:64:3d:ac:a0:ae:f8:74:04:8c:58:
e2:d9:2f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 17:55:21 2025 by rpki-client