Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: B1a9rhWM5ACTwalwSzZzkSWHCDBcSebnzsJWIDgMHvo=
Subject key identifier: 18:AB:2F:3A:4A:FB:2F:92:D4:9A:D4:CD:FF:76:93:20:39:FC:BC:CF
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 0197B70EA654297302F9CC2A5DF4A65B9ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 14A6
Signing time: Sat 28 Jun 2025 15:01:19 +0000
Manifest this update: Sat 28 Jun 2025 15:01:19 +0000
Manifest next update: Sun 29 Jun 2025 15:01:19 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: 3uZsqEslqe0OVg8iF0jUcDwriMbLhkQZoVYJaeSr6DM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:a6:54:29:73:02:f9:cc:2a:5d:f4:a6:5b:9a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Jun 28 15:01:19 2025 GMT
Not After : Jun 29 15:01:19 2025 GMT
Subject: CN=18ab2f3a4afb2f92d49ad4cdff76932039fcbccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c2:13:cb:9a:9b:f8:e4:1e:07:ac:98:5a:14:
7b:c3:4d:26:55:4a:8b:6d:af:46:ef:14:44:59:15:
d3:7e:b4:cd:db:b1:f5:1a:e9:51:49:e6:99:cf:78:
79:77:94:0a:a2:1b:91:73:61:4e:20:4a:77:e5:36:
8c:4f:e5:ea:79:7d:e3:b9:b3:4f:30:89:67:04:61:
95:aa:f6:a7:d4:9c:fb:9e:43:4a:58:80:15:fd:f2:
8a:78:20:b3:db:03:6a:91:53:44:85:93:40:1e:1f:
a7:26:1f:30:e7:bb:3b:ed:95:d4:48:9c:2e:eb:41:
6b:44:d1:92:8c:60:53:96:54:0f:9b:37:86:6d:b1:
b7:04:cf:44:2e:97:df:c2:5a:be:5c:21:d4:6a:74:
d8:c8:89:af:5f:d2:ab:aa:1c:95:ff:02:66:3e:ad:
eb:bf:24:1a:db:cb:36:dd:bc:a3:72:79:aa:e8:77:
3c:f8:10:fe:e5:e2:ef:0b:27:c2:26:fa:ae:79:82:
4f:86:d9:54:4c:b4:ff:29:a3:62:83:cb:74:fd:12:
98:61:60:b2:cc:93:80:43:57:3a:7c:3c:b8:5f:bb:
d4:9f:16:5d:39:2c:60:2e:b0:41:0e:68:09:7b:a5:
80:06:8f:00:53:26:e5:cd:ec:43:46:72:c6:fd:cd:
c2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AB:2F:3A:4A:FB:2F:92:D4:9A:D4:CD:FF:76:93:20:39:FC:BC:CF
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:92:bb:20:0c:38:bf:4a:81:41:b3:55:fb:de:e2:0f:8e:9c:
3a:be:1a:ae:3f:89:68:15:aa:5d:29:cd:17:c4:6e:0c:f8:e1:
9f:9e:f8:48:32:50:51:c9:14:a4:d8:a3:df:b5:44:23:78:65:
92:28:3c:bc:3e:5e:e8:81:33:42:8a:4f:43:6e:fa:81:1f:27:
78:cd:98:04:c2:26:04:94:d2:2e:a3:8a:44:05:3e:55:fb:ab:
13:67:34:00:ef:0c:3c:b6:5a:92:5b:9a:77:b2:12:cc:75:30:
e0:f7:c0:8d:36:9d:e0:8c:10:4b:7e:9f:b6:67:3c:80:1c:4f:
14:78:69:df:7f:df:0b:b3:b1:88:58:7d:b8:94:5f:58:54:67:
14:3b:53:b3:9a:45:ed:e9:8f:d1:bd:01:87:23:c1:cf:84:38:
e2:de:12:fb:8a:a3:54:73:d0:16:d6:14:9d:d3:c8:c5:3e:5c:
c4:a4:3e:f2:6c:8f:a1:24:1b:66:fd:8a:45:31:b1:de:31:79:
93:59:47:69:5c:13:47:11:9e:71:63:dd:38:4c:9c:65:7f:05:
80:35:4a:c8:a0:f1:7b:30:b6:9e:53:88:69:b9:fa:12:11:ad:
fc:fa:e6:1b:ec:89:53:af:0c:25:aa:42:97:46:dc:f4:94:6c:
8c:50:7c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:01:57 2025 by rpki-client