Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: Key1iactyx22jzk4gkyp2u9SON3Sh368N5ZnJxeUVjs=
Subject key identifier: 1D:C1:02:10:11:34:66:CA:0E:A7:53:F2:36:5A:2F:E7:1D:A1:8E:72
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 0198D4A7EEFBACCB567E7707707147A8553E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 0791
Signing time: Sat 23 Aug 2025 02:00:32 +0000
Manifest this update: Sat 23 Aug 2025 02:00:32 +0000
Manifest next update: Sun 24 Aug 2025 02:00:32 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: MqnXb2M/GV7pscCaCynDzieobkNdjxr3GPsjuVEt9KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:ee:fb:ac:cb:56:7e:77:07:70:71:47:a8:55:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Aug 23 02:00:32 2025 GMT
Not After : Aug 24 02:00:32 2025 GMT
Subject: CN=1dc10210113466ca0ea753f2365a2fe71da18e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cb:80:8e:59:84:7b:2e:12:e6:29:96:cf:81:
d0:0c:5a:a0:e0:69:ed:2b:71:c8:5a:1c:05:4e:3b:
58:48:69:69:36:26:6e:ac:8b:4e:86:68:81:ce:9e:
65:78:13:f1:ea:5c:01:a3:81:34:21:1d:04:81:38:
d2:2b:a8:4d:e3:0b:a1:9f:96:a3:a1:5e:3f:3a:b3:
c7:7b:81:38:ee:68:ea:ce:86:bf:51:41:68:a6:04:
91:b3:99:c3:8b:35:dd:f2:0b:c5:8d:80:4f:41:8b:
76:e5:f7:13:12:4b:88:2b:41:e2:17:80:cd:17:be:
b4:d6:90:ba:e5:98:e2:c8:37:eb:06:21:5c:6d:fa:
36:73:9a:f2:41:64:b2:a6:d0:d0:9e:44:34:60:6e:
e9:6b:e4:f5:de:83:5a:f1:22:37:85:f6:25:fe:56:
1e:ac:6e:30:f6:4b:45:27:f0:8f:7d:8e:41:26:f1:
3a:d7:d8:9e:8a:d7:db:8f:e3:de:e3:31:bf:5f:03:
d3:6d:68:ec:0c:ab:92:2c:df:ba:d8:8e:ce:37:88:
e2:03:c7:70:c6:fc:0f:a7:58:f2:67:fa:1f:61:c7:
fc:fb:2d:b9:af:0b:28:55:66:ce:94:64:f2:47:47:
73:c8:cc:e8:6a:a9:da:cd:1b:34:5d:8a:13:c6:63:
24:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C1:02:10:11:34:66:CA:0E:A7:53:F2:36:5A:2F:E7:1D:A1:8E:72
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:c4:36:df:dd:cf:9b:10:59:86:59:6a:c2:e4:68:f7:0a:33:
cd:66:f9:cb:3a:e0:87:b5:34:dd:d8:6c:68:da:59:68:02:2c:
54:86:77:0d:be:84:c0:32:67:e0:24:03:46:56:2c:87:ea:f7:
d0:5f:28:83:56:25:e5:48:48:d0:1c:08:e1:be:7b:1f:6b:ab:
34:02:81:54:07:32:09:91:82:df:92:75:26:55:a0:e0:50:c0:
d7:16:66:9d:0f:13:b2:54:0c:85:74:ce:b3:d7:af:e3:a2:04:
d4:86:2b:dc:ad:db:12:ce:9a:eb:8a:e9:b4:55:81:18:11:f5:
29:57:0f:80:9a:72:e6:0a:2b:66:0c:d9:ef:72:5c:2a:4c:bc:
58:16:e3:bf:1a:d7:21:89:ac:f2:a9:27:29:85:12:8d:48:7b:
2e:d0:0e:d3:04:30:2d:3f:e4:52:56:3a:4d:40:9b:f9:84:eb:
fe:a3:7a:4c:0f:d9:5e:0c:f5:4e:9d:4a:38:b2:83:0e:55:f6:
55:2b:91:7f:4e:ff:48:69:75:53:cf:fa:60:1d:9c:a7:ea:0e:
4d:d9:d9:11:c3:75:9c:d0:35:b5:63:91:69:33:34:11:a0:f7:
13:1c:ab:16:31:cb:08:df:6b:0a:71:75:29:31:52:b3:cf:07:
0a:dc:7b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:44:25 2025 by rpki-client