Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: c6gOraJ4IlgXflMnGSQ5doAoYgJ9MrMrRXDl1AMsfE0=
Subject key identifier: F9:C6:7B:43:63:57:FA:34:DB:B8:27:F4:14:81:B8:8F:92:D7:1F:03
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 019D273B3761D965710B7586EC2388F68BC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 1777
Signing time: Wed 25 Mar 2026 23:01:25 +0000
Manifest this update: Wed 25 Mar 2026 23:01:25 +0000
Manifest next update: Thu 26 Mar 2026 23:01:25 +0000
Files and hashes: 1: 6k_g9zpR0oUHNJNOJpWC6Uips58.roa (hash: xsbRkvDZeur19giHSHwKBgppoMpB/PB9Dmlu/eOW38M=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: H8boMAOx1jGyQnusCGfWKerwCTBjoGuLGcdtXg97cJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:37:61:d9:65:71:0b:75:86:ec:23:88:f6:8b:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Mar 25 23:01:25 2026 GMT
Not After : Mar 26 23:01:25 2026 GMT
Subject: CN=f9c67b436357fa34dbb827f41481b88f92d71f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:34:a4:36:22:2b:37:e9:61:f1:69:e5:41:30:
b7:91:41:b8:14:38:43:6f:a6:82:cc:76:52:55:e9:
53:aa:2d:c6:b4:a9:ba:04:fd:ec:df:b6:90:0b:8e:
6e:0a:2e:2d:90:4f:09:35:e3:ab:05:10:41:b4:4e:
48:0a:5a:6e:1f:c4:1c:20:0a:5b:f4:82:46:88:24:
c9:95:40:36:56:38:cb:ec:74:20:62:5d:be:24:a7:
23:6f:74:46:fd:9f:c4:3f:ee:a3:1e:a9:94:0d:a5:
4a:c2:07:bb:fa:21:f8:d6:9d:57:84:f4:6b:57:c4:
0d:12:9a:99:0f:b8:a6:e9:a6:07:95:1d:4e:fb:c0:
2f:8b:36:f2:6a:dd:ea:dd:ec:bc:d4:d1:b1:1a:29:
0b:ce:d4:54:a0:c4:b0:7c:c4:ce:d0:18:4b:64:cb:
da:54:58:3e:db:60:cd:f5:2d:5e:2d:25:d8:a8:1d:
4b:cf:5a:0b:d3:e7:fc:76:b1:00:b8:73:ff:1e:b9:
05:4c:9d:43:a6:5c:28:ab:22:ed:90:55:46:9b:6c:
e6:4c:56:59:32:13:30:07:be:30:0a:f4:7d:81:ae:
2c:05:84:03:62:89:53:35:17:c9:2d:56:04:59:e4:
5d:68:09:f6:fc:93:2c:47:88:b2:20:b0:78:85:65:
85:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C6:7B:43:63:57:FA:34:DB:B8:27:F4:14:81:B8:8F:92:D7:1F:03
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:d1:f5:90:ff:52:2b:63:fe:fe:1a:d0:82:38:08:c0:4b:c1:
f6:c2:d0:0d:79:bb:2d:79:3d:bd:4b:1d:bb:18:6a:95:37:de:
c7:39:09:8f:ed:06:8d:75:1e:bf:e2:dd:76:b1:e6:a1:cd:75:
aa:47:7d:54:b4:c4:b0:2b:40:b3:c2:f9:fe:5f:41:19:45:38:
bc:a0:93:45:39:89:5e:93:99:a5:d3:ec:51:18:9c:0f:be:5c:
ab:6c:b4:90:63:07:ea:86:28:46:33:5e:28:04:f0:f9:8e:70:
ea:47:db:31:17:e1:bb:92:4a:8d:46:a1:4b:7b:64:dc:9e:99:
70:5b:ff:97:e7:e7:14:29:53:1e:15:9d:88:03:b5:81:03:9f:
a7:47:c3:7b:8a:bc:29:3d:89:1e:7c:bd:59:5c:19:37:a4:83:
a6:45:57:ac:81:28:ef:19:db:f6:24:49:d7:d5:7e:96:9a:0d:
18:e5:78:bd:5d:6e:7a:89:4c:3e:a7:58:aa:1b:3d:d2:8e:3c:
15:0c:d1:8f:70:fa:14:de:af:be:2b:77:dc:23:de:ff:3f:86:
59:94:5c:f3:78:81:a0:ab:e3:9a:d1:d6:f7:48:cb:55:47:bd:
f8:b8:20:f9:fe:d9:9d:c2:b4:86:f8:e2:f5:23:e0:b4:4b:65:
44:4c:5e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:15:52 2026 by rpki-client