Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: GShJC7ese59DDQW40bRfeXvDe0sFazJY6YZTM/uovD8=
Subject key identifier: 46:74:F1:DE:CB:BD:7D:60:B7:41:21:76:C1:4D:4D:F9:C8:AC:38:2F
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 0198D4E047A5C5B36D86F16363DF5BDDB5E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 153A
Signing time: Sat 23 Aug 2025 03:02:04 +0000
Manifest this update: Sat 23 Aug 2025 03:02:04 +0000
Manifest next update: Sun 24 Aug 2025 03:02:04 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: 2tFti9hu2yYtLN7qxv6KvVjJPgerrnGdNzVj6DEWpb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:47:a5:c5:b3:6d:86:f1:63:63:df:5b:dd:b5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Aug 23 03:02:04 2025 GMT
Not After : Aug 24 03:02:04 2025 GMT
Subject: CN=4674f1decbbd7d60b7412176c14d4df9c8ac382f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:29:5c:43:73:1c:32:86:b7:9f:d5:5a:55:9e:
4c:f3:7a:cb:cc:c8:22:4a:12:81:a6:bc:b6:0a:47:
f3:29:15:94:ef:dd:3f:60:95:b7:41:1c:ec:ea:02:
2a:b7:cc:8c:d4:be:0f:0c:65:b1:a0:ee:bb:d0:8f:
75:eb:90:f9:97:52:bd:88:ef:1a:98:71:d5:48:a2:
c0:6e:8b:85:e5:02:2b:fc:fb:38:56:6f:97:be:31:
f3:83:5c:18:f6:20:c9:71:f1:08:3c:67:f1:11:81:
c5:c9:b7:22:57:d6:c8:85:4a:28:3b:8f:f1:e4:fc:
57:40:70:40:28:64:1a:be:62:6a:24:96:41:cd:4f:
87:a6:b6:51:48:94:62:d0:9a:07:b2:f6:17:a9:9e:
5d:4d:7a:ae:e7:40:b7:e6:ce:77:14:6b:6f:2e:ff:
7c:da:59:93:2a:8d:08:c7:0a:0a:9d:b7:98:df:5c:
0c:8d:99:e8:00:bf:9d:48:52:56:de:a9:20:73:6e:
ed:b4:3a:45:28:1a:e5:8e:28:e1:62:92:31:3b:f7:
b0:29:8e:93:be:8f:6c:e9:77:c2:f0:5a:a4:01:78:
6a:3d:72:0d:29:95:82:a7:46:b0:8e:2e:28:46:0b:
3e:f4:dc:02:a8:4f:52:f7:72:c6:be:6d:0c:fb:2b:
f1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:74:F1:DE:CB:BD:7D:60:B7:41:21:76:C1:4D:4D:F9:C8:AC:38:2F
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:bc:0d:3a:99:1f:c4:ce:a2:ff:f0:78:2d:e8:c3:ab:13:cd:
d2:f9:f3:71:a3:71:5a:6b:c4:dd:2f:0c:dc:81:8a:53:69:a7:
0a:1a:58:6a:7f:f8:86:5e:77:c2:2c:ce:b2:f9:18:2a:94:c4:
e0:22:8b:2b:a0:60:65:6d:98:e0:3e:12:44:d9:ac:88:4c:1d:
c5:70:72:c6:a9:83:a1:72:32:47:e0:da:bd:92:81:28:24:60:
76:09:75:00:f2:80:98:c4:7b:e5:03:a9:d1:05:f0:9e:74:df:
e0:27:09:ce:3c:f5:0d:7a:68:e2:ed:d1:21:03:e1:4e:5c:7d:
e6:60:1d:47:a9:13:e7:5f:47:89:60:ee:da:2b:0e:cc:de:a4:
d6:6c:2b:9e:8c:0d:3b:9c:29:cf:06:3f:b9:6c:c6:08:7f:3e:
3c:4a:2c:19:0e:40:3a:6e:a5:a6:f0:60:ac:c0:52:4a:5e:b5:
1d:6f:1f:3e:99:e5:c0:a9:29:33:ff:d7:0f:e6:c3:51:79:95:
6a:2c:b2:57:63:2e:9d:80:74:b5:4f:f4:96:35:e7:59:10:d7:
86:33:25:7c:f3:44:9d:0b:eb:63:06:a5:50:46:75:d3:02:e6:
2f:b9:41:82:65:0e:6e:4f:95:a8:d1:81:68:43:4d:63:23:40:
cb:e2:ad:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:28 2025 by rpki-client