Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: pizHbRe9C/aKt7S3H2xIKsBOMEmuHO6T3B6vd1vw8DQ=
Subject key identifier: D0:61:DF:DA:BE:64:5F:9E:FC:BB:1C:D7:95:65:0C:88:20:EA:2F:73
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 0199FC5879BC1CE1431C7FA74AFF8EB4F8B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 15D3
Signing time: Sun 19 Oct 2025 12:01:20 +0000
Manifest this update: Sun 19 Oct 2025 12:01:20 +0000
Manifest next update: Mon 20 Oct 2025 12:01:20 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: bv/9E0AN0mtn7q7SXONywnZmQiUEMo7JEmmB9xbM4m4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:79:bc:1c:e1:43:1c:7f:a7:4a:ff:8e:b4:f8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Oct 19 12:01:20 2025 GMT
Not After : Oct 20 12:01:20 2025 GMT
Subject: CN=d061dfdabe645f9efcbb1cd795650c8820ea2f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f2:3d:ce:24:d8:ce:e3:dd:c5:76:31:01:bd:
2a:c3:d4:09:39:16:e5:dd:f8:92:84:92:b0:f5:88:
c6:6a:b0:71:cc:ee:ca:c8:8e:03:0e:ac:29:47:3b:
a0:e5:47:63:c2:da:57:2d:c1:8d:65:cb:5c:68:a2:
29:24:02:37:6b:e2:92:f6:a7:35:e2:63:ad:06:f5:
2a:95:03:73:8e:52:d3:e3:d8:d1:a2:0b:bd:b6:40:
5d:ac:c9:ef:d6:b3:d8:dd:04:7c:08:54:10:67:51:
26:a0:a8:01:c6:3c:1b:db:10:8d:13:15:d9:e8:00:
25:e2:89:f7:b1:67:53:28:0b:6a:9b:dd:66:b2:19:
17:a9:92:e6:bb:db:be:e2:3d:4d:85:6f:8f:90:b5:
b0:ee:43:bf:51:c0:32:20:ff:6e:fc:f9:87:a5:0b:
64:e7:e3:a9:96:d1:cb:ab:1c:ce:ff:82:23:e9:9f:
21:7b:21:10:63:14:0d:0c:86:c5:49:02:56:cd:e2:
79:25:d3:46:f9:ea:25:5c:80:a6:d0:18:11:81:97:
3d:4c:09:78:ab:96:2a:9b:d8:f5:24:e7:b8:86:38:
27:20:41:4f:b2:32:fb:d0:21:c1:96:06:fa:01:8c:
cb:ed:f7:93:03:ab:52:50:0c:20:91:2a:0e:f3:9d:
ac:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:61:DF:DA:BE:64:5F:9E:FC:BB:1C:D7:95:65:0C:88:20:EA:2F:73
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c1:60:f1:03:31:b7:78:81:99:c9:2b:2a:11:a6:9a:11:c4:
13:bb:e9:f6:25:f5:da:5f:2f:bd:7d:4d:b0:8f:7d:c6:e4:83:
2f:aa:d3:53:9d:8e:f3:04:b8:04:5c:8f:d6:a7:8f:4a:37:a7:
69:d0:2e:e8:39:3a:da:76:8e:c2:da:bc:3a:55:2b:29:cd:69:
10:8a:77:c4:7f:47:76:69:b3:66:61:13:30:c2:4b:ca:48:db:
ec:0d:8c:48:98:9b:9e:20:c1:c9:57:a9:bb:2a:ce:dc:b1:cc:
a0:16:09:30:ef:5e:20:7b:0c:a0:7f:f4:d4:06:ef:46:bd:aa:
6e:5e:66:26:4a:79:6f:a5:11:a3:70:fd:24:ae:81:e6:48:9a:
8a:9d:dc:68:bd:b6:f3:74:95:40:c7:dc:99:8b:cf:9e:e6:65:
19:e9:55:d9:18:76:a0:ee:24:1c:14:6b:81:a6:3f:f3:e3:ad:
34:ea:da:d2:41:63:49:d1:18:71:9a:24:98:ff:fc:52:78:94:
2f:69:e9:c9:36:ba:b5:e7:96:e7:be:29:68:eb:d9:41:11:2c:
d9:da:14:a5:28:bb:5f:43:a9:c7:be:56:27:6b:2b:86:70:b7:
69:e6:d2:3a:d6:af:43:cf:c7:2d:59:3c:37:ee:02:9e:23:0b:
e5:db:00:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:57 2025 by rpki-client