Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: bjAL9MGncfJUabvLlHSTFH0RtFwsulHKazYTZRb3zSA=
Subject key identifier: 1B:73:D6:D2:ED:54:9C:B7:D9:4E:62:C5:EC:89:6F:33:39:23:ED:4C
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 0196A0F640AC822F5BD2942C6579A3E31186
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 1416
Signing time: Mon 05 May 2025 15:00:15 +0000
Manifest this update: Mon 05 May 2025 15:00:15 +0000
Manifest next update: Tue 06 May 2025 15:00:15 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: pSCyP08eNSNx87IAmMUyUqioiIH4Uv9bVPEvbWHApyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:f6:40:ac:82:2f:5b:d2:94:2c:65:79:a3:e3:11:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: May 5 15:00:15 2025 GMT
Not After : May 6 15:00:15 2025 GMT
Subject: CN=1b73d6d2ed549cb7d94e62c5ec896f333923ed4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:97:62:69:4d:ab:7d:85:32:16:97:c5:87:
2f:94:c1:80:67:b3:eb:e6:6a:d2:de:51:7d:23:67:
ce:fa:ac:21:02:35:af:95:7e:f9:6b:fb:8f:cf:35:
49:fa:58:f9:28:92:42:2a:9e:c1:b4:7c:82:48:5c:
c4:c4:40:ad:05:01:91:ac:46:f8:6d:80:32:80:39:
43:7f:22:b4:7d:55:98:a0:41:2b:5c:76:03:76:c7:
71:b4:a3:6d:fe:ca:1d:e9:dd:8d:2a:78:88:55:71:
ee:58:c1:af:9e:7f:1e:cf:94:d3:70:72:32:1e:83:
a7:11:1b:24:b7:20:58:cc:1d:a4:b2:33:8f:0e:61:
ac:c7:6c:4e:2e:c2:76:a2:11:bd:f3:3f:82:48:7b:
1e:9a:58:ca:8b:a8:9e:3d:6a:fe:a5:c4:71:c3:b8:
fa:75:18:c3:92:4d:07:e6:03:f0:ce:0c:8c:ab:9c:
f0:2d:64:95:4f:f8:fb:1b:1f:94:b7:5f:6f:4a:5e:
39:ab:c5:77:10:2c:c8:c0:b7:7b:8a:37:60:71:50:
41:1e:1b:1b:15:61:0d:9a:58:e1:ae:55:f9:fc:ab:
58:f0:d9:eb:81:e0:06:ce:64:38:88:ae:be:c0:e0:
8b:7d:1b:88:a8:fa:a8:9f:32:ae:15:d4:fe:8b:d8:
94:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:73:D6:D2:ED:54:9C:B7:D9:4E:62:C5:EC:89:6F:33:39:23:ED:4C
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:e3:dd:7a:34:e5:4e:7b:0b:dc:a0:22:38:e2:ed:8e:d7:7e:
e6:36:7c:13:12:20:70:7f:90:b7:3b:61:2d:b1:56:aa:7f:af:
c1:04:b8:ac:91:1e:51:1d:57:0a:27:ae:d1:27:b6:e1:4b:19:
ef:6e:a0:7a:0d:cb:91:3f:ba:f1:09:f5:42:4c:28:13:d6:e0:
11:11:7b:c4:98:55:a7:45:60:40:3c:10:a0:e2:e5:72:69:0f:
55:c7:e0:b1:82:9f:e2:0a:08:0e:6b:86:5d:1f:a4:d2:a0:a1:
70:f0:e4:96:22:19:d0:ac:2e:84:12:20:87:76:2b:96:1f:d6:
01:ce:53:8c:31:b3:af:96:6d:6a:85:9c:37:f8:42:99:94:b0:
f8:44:82:cd:fd:20:60:f4:88:2c:d3:3e:7b:4f:f1:f7:8b:ad:
66:db:c4:86:88:47:31:b6:a7:b8:86:9e:4d:0b:6d:02:65:1a:
d6:66:58:8f:5b:56:43:b5:a8:44:59:cd:18:e6:ce:82:54:6d:
19:67:a0:38:2e:ff:28:59:9a:f9:be:61:cf:41:93:3d:99:d0:
58:55:3d:08:bf:0b:f0:86:a2:83:fb:54:dc:d2:fb:66:d1:f1:
31:41:7d:40:3c:77:8b:41:f1:9b:c9:86:b5:80:ff:1b:32:1e:
0d:4c:7e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 17:24:25 2025 by rpki-client