Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: bC7ly3/lPd1IrUmfkmnZC6XT7jtC+U16HwCHzhg3K28=
Subject key identifier: 39:63:06:12:02:7D:64:7E:7D:CE:B1:36:D7:F7:12:C7:21:77:8C:38
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019CABA24EF2B52E056E97D53C5528F9E3E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 098E
Signing time: Sun 01 Mar 2026 23:01:06 +0000
Manifest this update: Sun 01 Mar 2026 23:01:06 +0000
Manifest next update: Mon 02 Mar 2026 23:01:06 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: IBtsS3nwRQKQ5VdzVHvC7BF8l4XD+H5LykjVXYxCjbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:4e:f2:b5:2e:05:6e:97:d5:3c:55:28:f9:e3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Mar 1 23:01:06 2026 GMT
Not After : Mar 2 23:01:06 2026 GMT
Subject: CN=39630612027d647e7dceb136d7f712c721778c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:04:75:b2:6a:73:50:a2:d5:48:f2:37:57:fa:
e8:8f:6e:c9:19:a2:1a:2d:b0:bc:8b:c9:74:99:08:
6b:be:fc:ac:29:9b:6b:ea:cb:51:8b:6b:ac:a2:b6:
f3:25:e7:24:15:c2:fc:77:bb:23:18:e4:cb:c9:e9:
98:1a:e0:c9:f7:31:19:51:b4:c3:45:06:3f:c7:6f:
c6:f9:30:dd:95:1c:bb:11:0d:f9:b2:4f:c7:41:69:
12:3d:ea:7e:7d:79:bc:2c:18:e2:c8:48:f8:69:da:
d9:e7:ab:54:58:6d:85:50:9d:6b:d1:91:1c:5a:3c:
94:da:48:a7:6e:58:6a:9f:8f:79:61:f0:b8:4e:67:
a2:89:04:1a:24:11:6b:e0:d5:d1:d1:0a:ab:7a:3f:
b1:9a:e8:3b:aa:6f:73:ce:1e:d3:e5:c5:3f:38:2a:
ea:18:a5:75:b7:c8:93:69:95:bc:8f:1e:85:90:b0:
cf:bd:34:85:3f:ff:17:20:0e:20:ec:c8:6f:07:6c:
f5:e7:03:0d:49:8d:94:39:2a:e3:d6:0e:f4:68:ec:
df:19:7d:3c:fd:e4:2f:98:03:39:52:7a:ce:5c:16:
27:12:94:8d:aa:97:c2:b8:f0:34:71:0a:0e:a1:ec:
5d:a9:17:5a:9d:29:e5:86:f8:5d:09:da:0a:37:83:
5d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:63:06:12:02:7D:64:7E:7D:CE:B1:36:D7:F7:12:C7:21:77:8C:38
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:a5:f5:9d:76:f0:83:6c:fc:4d:d8:53:ba:1c:98:ae:3f:6f:
95:75:94:35:4c:2a:de:e5:c8:82:f6:33:89:61:c6:fc:27:5d:
ee:7a:cf:1e:13:2a:c5:ff:ca:b3:6a:b8:e6:5c:c3:39:db:fe:
36:b8:53:80:1b:9d:2b:c8:bb:d1:09:b7:7c:97:21:fd:0c:6e:
d3:14:17:d9:24:4d:f0:6e:ef:21:54:88:b3:78:ae:f8:f5:a6:
b3:bb:81:e7:e4:dd:82:97:e1:63:f4:63:2e:07:d3:7e:82:0a:
ef:4d:2d:fb:f2:6f:5b:12:d8:00:54:4c:e7:a1:77:b1:d2:e6:
0f:07:29:c3:67:d5:f0:19:77:c8:7f:fc:f0:96:46:1c:e5:41:
35:b6:63:98:c8:5c:c7:0d:64:c6:c4:86:48:f7:5a:e5:7a:b1:
55:86:0e:12:41:c4:f8:c2:fe:a9:d9:e8:ac:8e:80:c1:c8:48:
29:e8:32:65:12:91:5a:7c:06:ec:0f:19:4a:44:ec:84:10:ab:
44:be:87:65:59:51:ed:73:bb:f1:05:39:ed:c8:82:f0:a2:e2:
28:17:87:72:60:29:ac:f4:db:c7:1f:ac:bd:2a:d7:4e:7c:cf:
45:ab:f6:4a:18:74:18:df:b0:f2:8f:7a:20:a3:89:be:0c:db:
1e:4d:20:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:36:40 2026 by rpki-client