Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: 75Rj6T1dSvugINCEbNo5G2K08R0SfYswfA4zt0g2qEU=
Subject key identifier: 95:33:5C:73:69:6D:B6:D2:E6:05:45:8C:8B:66:17:8F:CD:B9:BD:92
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 01964FA343BC9DA0ED92FBACA031DE78D087
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 0643
Signing time: Sat 19 Apr 2025 20:00:21 +0000
Manifest this update: Sat 19 Apr 2025 20:00:21 +0000
Manifest next update: Sun 20 Apr 2025 20:00:21 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: c9PPwykio8t/fpblFutS8MR1jaFougpdUs9mAWLwucE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:43:bc:9d:a0:ed:92:fb:ac:a0:31:de:78:d0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Apr 19 20:00:21 2025 GMT
Not After : Apr 20 20:00:21 2025 GMT
Subject: CN=95335c73696db6d2e605458c8b66178fcdb9bd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2d:17:e9:f6:d6:60:0e:4a:6f:66:62:30:41:
0a:c5:64:9b:f9:7e:41:d0:f6:62:9d:ae:0b:52:4b:
5d:14:88:95:58:9b:dc:87:93:77:1e:1f:35:ee:23:
a2:62:f5:ac:e6:fe:de:89:f6:eb:bc:83:c6:90:1c:
b5:cf:50:d7:7c:23:1d:34:bd:40:15:7c:61:15:81:
65:4c:8c:7c:5b:06:18:9c:5a:8d:df:e9:50:31:bc:
e4:5b:5f:34:35:1c:da:73:ad:79:62:b0:c6:08:45:
32:22:39:65:74:6f:8d:34:6d:60:87:5b:5f:0e:02:
42:08:00:e5:68:9f:e5:26:fd:82:ac:92:27:8e:67:
9a:6a:1d:be:7d:5a:4c:ff:d6:e1:08:25:09:39:96:
3c:d6:05:38:77:93:1e:36:2c:66:7f:83:45:72:8f:
38:18:ef:1b:c0:e4:ed:d3:66:d3:c1:8d:d2:69:91:
51:79:97:5d:84:ba:ab:17:0c:df:82:b9:91:d7:59:
b7:0d:2c:a3:be:ce:c9:7e:a6:d5:0a:9d:e0:5c:e6:
cf:28:b4:3e:9b:33:cd:b6:c8:96:4a:cc:21:a1:74:
b9:56:6f:5c:8f:a3:aa:79:be:10:13:a8:4d:26:68:
53:9d:fd:82:d7:0f:f3:61:22:f2:09:bb:07:b1:fb:
1c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:33:5C:73:69:6D:B6:D2:E6:05:45:8C:8B:66:17:8F:CD:B9:BD:92
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:e5:68:b7:1d:42:a2:e6:61:94:14:a5:27:f5:55:00:a4:6c:
36:3d:19:c9:7c:38:4f:9e:a7:54:6b:c8:08:cd:7d:35:83:ef:
15:51:d3:4a:72:c2:d8:3d:6c:65:08:8d:e7:f5:0c:74:a9:0a:
68:1d:56:70:ad:de:da:a3:c5:a4:d9:50:31:f8:d7:76:65:31:
b3:1a:a8:b3:43:ce:a9:5a:f6:9f:9d:05:2a:9c:f5:b9:75:3d:
98:a6:da:e6:32:2b:f2:97:3d:82:f0:45:1b:85:4a:2f:91:fd:
59:2d:ee:b1:cf:06:3b:0a:83:6d:bc:02:6e:d4:51:81:3d:a8:
a9:b6:c8:14:f5:f3:14:08:69:a0:52:e5:47:b2:d4:3b:d4:9b:
a2:b8:97:5d:91:19:20:56:c6:21:b5:bd:41:7f:47:e1:f7:58:
13:7e:fd:41:e4:b9:f8:5e:d5:6f:c3:72:90:f0:88:8a:8b:22:
3d:7d:e5:f9:b7:57:2c:94:86:bf:c8:be:b2:1d:fb:13:20:3a:
d5:40:8f:e1:2e:f5:23:e5:0c:1e:f7:dc:45:2d:b9:ef:30:45:
01:98:41:5e:67:3b:ce:0e:2f:a4:a7:94:3a:91:d4:7e:f3:60:
61:67:55:5d:40:f5:a7:58:df:0b:39:d0:ab:9f:5f:65:4d:ee:
bd:ce:cc:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:05:19 2025 by rpki-client