Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: vf9ZD5Ol7QgWguETlO7Mi0X5gvNIJejS1YXdwRdgb0o=
Subject key identifier: 36:2E:B5:00:B3:6B:CB:A5:5A:4E:9E:5F:6C:7A:1F:17:FB:2B:27:17
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 0197B6D733789E8C61F6B5116AB4B1E50D78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 06FD
Signing time: Sat 28 Jun 2025 14:00:46 +0000
Manifest this update: Sat 28 Jun 2025 14:00:46 +0000
Manifest next update: Sun 29 Jun 2025 14:00:46 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: jQj0kIohO1eQzDZvHfTS1VWKP+7QD+I+H+w0LWWyIiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:33:78:9e:8c:61:f6:b5:11:6a:b4:b1:e5:0d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Jun 28 14:00:46 2025 GMT
Not After : Jun 29 14:00:46 2025 GMT
Subject: CN=362eb500b36bcba55a4e9e5f6c7a1f17fb2b2717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:03:d6:d6:b3:c5:41:44:5f:f3:93:6d:41:32:
2f:45:4b:d7:1f:8d:2f:8f:43:79:9a:48:3c:45:71:
17:8f:5b:57:27:82:8c:bf:1c:74:ac:ae:f8:72:c5:
dd:06:8a:d0:94:29:cf:1c:be:11:7f:3c:84:9e:a0:
fa:09:47:96:db:fd:03:54:19:9b:92:f1:88:e9:ff:
a1:32:c6:be:5b:60:92:98:86:d0:54:c9:4d:bc:0f:
68:f3:cf:b7:13:a3:47:bd:2e:48:eb:ed:07:98:6f:
03:09:bb:51:23:9c:82:c4:88:77:93:74:4c:ff:75:
29:be:c4:6f:60:58:6c:9d:27:31:5b:af:ca:d5:cb:
f3:5b:b5:b7:4b:8d:67:b5:a7:b5:19:ad:4f:00:22:
4b:5b:f1:c2:22:f9:f4:80:7c:82:60:34:44:74:14:
2c:12:ce:ad:6f:1b:78:60:f8:34:ee:c3:5c:32:5a:
20:da:94:60:51:53:3a:c5:87:ae:fc:a3:16:d5:b0:
71:21:43:27:a2:eb:25:61:79:f7:6c:20:99:71:d2:
7f:50:ed:96:2e:62:76:81:e6:44:71:da:12:1e:2e:
d5:49:0f:f4:58:8a:e2:45:f4:0a:db:a7:2b:59:a7:
76:5e:4d:b8:d6:9b:44:a3:09:8d:3a:a0:30:36:19:
c1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2E:B5:00:B3:6B:CB:A5:5A:4E:9E:5F:6C:7A:1F:17:FB:2B:27:17
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:2f:63:50:2e:76:0a:e9:b4:73:5f:03:59:3b:35:db:aa:13:
5b:07:e0:3d:e9:4a:75:a0:9d:9b:76:57:3e:28:14:6f:fd:3c:
15:cb:6a:90:73:d8:61:87:83:1a:04:b7:61:6a:e0:ed:f5:8e:
49:2c:3e:c0:89:2a:85:5f:65:1b:47:b7:e4:b6:e2:0d:49:20:
1a:9f:94:43:e6:74:67:24:1b:db:d7:62:bb:58:82:c1:8a:a8:
68:ba:13:b2:5c:86:26:ae:bb:07:18:40:b5:df:07:24:d9:6d:
87:5e:6b:78:ec:40:81:72:47:27:80:e8:42:8f:c1:1f:e7:cb:
e9:2f:9f:6c:2c:59:13:af:e0:0f:35:76:5a:e5:22:09:68:2a:
a2:8e:47:a2:01:da:c1:7c:70:0d:e7:14:6c:bb:ee:16:78:40:
11:45:d2:69:26:4a:fa:67:1e:96:07:84:f8:75:b0:e4:9a:22:
1f:35:66:e0:d1:5e:82:ae:ea:01:3d:25:d5:fb:2a:f8:96:74:
d6:be:b8:2a:27:ed:26:60:d4:57:5a:fe:f6:0f:48:c2:0d:b6:
9a:5a:59:98:c7:14:b2:a8:d1:bf:de:bf:b2:d7:11:b5:49:30:
9c:04:d7:e8:2f:5c:0b:ce:a3:23:ac:07:ea:a4:ea:08:f7:e0:
98:55:98:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:52 2025 by rpki-client