Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: FJemPY1VQL6c0Fo9JDYaHMxlCtGRheeqGarFxC6UVSc=
Subject key identifier: F5:C0:E6:56:60:75:A7:AE:66:54:09:56:B9:D6:69:26:68:0D:78:81
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019D273AB955C7714E399F554EAA85B3707A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 09CE
Signing time: Wed 25 Mar 2026 23:00:53 +0000
Manifest this update: Wed 25 Mar 2026 23:00:53 +0000
Manifest next update: Thu 26 Mar 2026 23:00:53 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: 8lBpKh8TvzQtrilATbXtb/IZGeFRUcT64XqvejN/qRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:b9:55:c7:71:4e:39:9f:55:4e:aa:85:b3:70:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Mar 25 23:00:53 2026 GMT
Not After : Mar 26 23:00:53 2026 GMT
Subject: CN=f5c0e6566075a7ae66540956b9d66926680d7881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:71:07:82:52:70:79:4d:83:e8:28:dc:03:44:
d7:1a:db:61:78:9d:a3:81:01:e5:98:03:b6:a9:95:
da:5c:09:4b:d2:34:f8:0a:61:02:1a:c1:29:b2:33:
e4:9c:37:05:82:df:24:b5:39:23:d6:cc:12:a9:1b:
a7:c6:59:3d:5e:26:08:1c:e2:cf:b7:2e:21:8b:99:
29:37:f1:bd:72:60:a1:0e:f8:2a:4f:7a:9e:f8:7b:
0e:02:a0:dd:eb:d8:fa:f5:f9:c0:0c:0d:4a:a4:cd:
5e:57:d8:ae:4f:fe:9c:5f:51:03:22:80:9b:0b:c6:
4d:ed:8e:2e:34:03:cb:b3:9f:e6:2e:c1:0e:23:a7:
c1:32:42:26:f0:9a:8b:bc:6f:39:72:b6:72:0a:26:
10:69:82:bc:43:0a:1f:83:70:66:32:f8:10:1b:23:
9b:f1:38:17:1f:62:47:91:7d:59:f6:fb:09:6a:4b:
ad:a4:b2:22:8a:e3:6c:60:eb:c2:42:e8:d5:04:7d:
9b:e5:43:9e:56:02:a9:13:ca:91:7e:e8:00:83:0d:
05:a2:c4:cc:19:d7:d8:fd:be:8a:3f:0d:3c:7c:20:
cf:f5:38:62:ca:c1:51:09:d4:aa:8d:80:cb:50:f2:
56:c8:9c:c3:5a:0a:a7:27:b2:13:29:16:26:ff:70:
c3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C0:E6:56:60:75:A7:AE:66:54:09:56:B9:D6:69:26:68:0D:78:81
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:61:e1:b0:a9:06:a8:74:5c:08:39:86:c6:e4:08:34:c8:24:
c5:20:61:43:00:ec:97:60:c3:98:f7:dc:55:55:c9:8d:60:64:
35:13:8d:da:d7:6f:0b:fb:7a:0b:0a:44:c5:00:10:b8:d9:eb:
1a:d2:98:30:e4:c6:1a:56:50:8b:c9:ea:09:f6:a2:df:d3:5a:
e3:6e:37:c7:07:ca:6a:78:98:08:d4:5f:a1:68:9d:dc:fe:50:
41:62:47:c7:ae:e4:e3:53:21:6b:d5:71:ff:e7:31:61:e5:b8:
34:00:21:6e:46:73:e7:79:7f:7c:c0:81:38:d1:ad:d5:87:e7:
f9:22:07:7f:39:6d:38:db:01:d5:e3:70:77:a7:67:c3:e6:f5:
43:75:e3:84:14:69:3e:5c:7b:06:50:29:c9:31:d5:59:f6:e2:
dd:06:9e:77:c5:7a:e9:16:5d:cf:2c:11:3a:58:16:66:f0:b1:
7c:f3:d9:ee:d1:50:79:b3:cb:b9:05:28:21:8f:f7:a2:fe:a0:
de:d7:de:91:28:a5:31:95:4e:76:a5:9e:f4:74:8a:d1:02:0e:
93:12:ff:6e:99:88:8c:f4:49:48:36:13:ea:54:50:d6:59:70:
63:d1:21:d7:23:27:44:0b:15:59:ce:3b:cb:f2:60:9a:69:c6:
4f:a0:fd:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:30:26 2026 by rpki-client