Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: 1AJkVr9jhNh9hzdY3JMZgjGS/DoVqJ0l3ALyGb4r0sM=
Subject key identifier: E1:26:90:50:62:D7:37:08:FB:43:8E:CA:E0:41:71:14:1E:5E:A8:B2
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019748C32C02C9E91D3D5D73D041BC203691
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 06C4
Signing time: Sat 07 Jun 2025 05:00:39 +0000
Manifest this update: Sat 07 Jun 2025 05:00:39 +0000
Manifest next update: Sun 08 Jun 2025 05:00:39 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: DWClrxij6PKmwUVMD6q/9FCU3/jiEzAvKqQwTzc5NTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:2c:02:c9:e9:1d:3d:5d:73:d0:41:bc:20:36:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Jun 7 05:00:39 2025 GMT
Not After : Jun 8 05:00:39 2025 GMT
Subject: CN=e126905062d73708fb438ecae04171141e5ea8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a7:55:71:0f:8a:30:18:68:bc:d0:d4:07:aa:
0e:14:b9:0c:a7:84:07:36:98:c0:03:ed:5a:b2:87:
1c:07:62:d0:be:34:99:66:52:aa:1e:62:7a:e8:60:
95:3d:24:5d:8c:e6:b7:ee:24:8f:d8:55:f2:5a:2f:
cb:4a:ae:20:ef:63:17:91:ad:4e:b2:10:69:35:ac:
dc:fe:80:7c:0f:55:93:6d:c8:5b:50:c6:81:00:a7:
b7:ea:ab:e2:a7:30:a6:b8:7f:fa:0e:c0:8c:3d:3b:
2d:68:59:fa:e5:bf:a9:da:3e:02:62:6a:74:6d:07:
ad:78:b3:5d:2c:cd:0d:af:b5:fd:9a:5b:39:7b:41:
f4:4c:76:3b:e2:f9:1f:38:97:47:48:60:57:11:88:
8e:11:61:b5:13:72:34:4e:4d:5c:8f:f2:ce:e1:30:
ff:9b:61:a5:3d:0f:6e:57:e0:83:00:99:42:46:50:
79:20:2f:87:a4:ae:25:1e:7f:8f:32:31:01:18:f6:
f5:e0:74:a8:f1:d8:4c:6e:3a:17:c0:46:bc:a0:41:
db:70:50:fd:94:f5:71:49:ba:53:e7:5b:fa:56:95:
53:ca:4d:83:0e:9d:27:70:dc:81:c3:c2:38:ce:81:
b5:3b:85:6d:84:a0:be:7b:7b:30:25:bc:9f:13:31:
24:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:26:90:50:62:D7:37:08:FB:43:8E:CA:E0:41:71:14:1E:5E:A8:B2
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:57:5e:0b:1d:07:c2:4c:9b:a5:42:24:ff:6a:1f:48:ac:9c:
f4:3e:48:fb:7c:5a:89:7b:77:f2:31:ac:a2:1f:61:b4:f4:75:
35:a6:24:89:ec:ad:f1:42:39:99:1e:3d:74:ce:34:a0:58:53:
3c:4c:b5:55:29:64:11:39:42:5f:74:80:65:a6:a7:32:58:4c:
42:e9:07:07:42:e8:32:cd:bb:2f:92:a7:fe:a2:13:6e:a8:45:
09:05:84:63:b1:e5:7c:ec:fc:b0:72:fb:83:fd:fb:5c:8b:85:
d5:de:a1:65:ef:e8:7c:7a:99:4f:1e:7d:3a:26:88:8a:dd:12:
f5:7b:ed:64:16:24:e0:d8:4a:53:68:8b:fb:d2:b1:ea:e6:d9:
3d:99:a8:3e:c0:ca:47:26:61:b0:76:32:3f:ef:5d:37:79:9c:
91:74:a6:89:e2:70:8f:db:4a:db:1f:d3:a2:e5:a7:13:dc:5a:
52:7e:eb:b2:c4:ea:2b:e6:05:1c:f7:73:b1:25:be:de:08:43:
88:64:6c:9c:a5:4b:9f:73:83:03:44:25:f2:de:dd:52:a7:c4:
1a:4f:d1:35:34:03:90:a1:ea:55:48:7b:46:a8:94:57:81:a3:
0c:c4:0b:4a:57:be:8d:2d:ed:8d:44:0e:4f:b7:6d:56:42:f8:
60:66:56:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:21:10 2025 by rpki-client