Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: 3eNLWowunPqNQk1wm3LKZ72kmVSJyBoyVrVW+RXS6ds=
Subject key identifier: E7:F1:D1:2A:40:E9:5B:71:9F:B4:FC:89:51:99:2B:6F:98:30:83:36
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019874191BAC1B1FB894622AB579F2EA8CBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 075F
Signing time: Mon 04 Aug 2025 08:00:59 +0000
Manifest this update: Mon 04 Aug 2025 08:00:59 +0000
Manifest next update: Tue 05 Aug 2025 08:00:59 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: 6hagy7dzy4LuAWW0948y3TGWGmJ27pF2OrWbUs5aZzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:1b:ac:1b:1f:b8:94:62:2a:b5:79:f2:ea:8c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Aug 4 08:00:59 2025 GMT
Not After : Aug 5 08:00:59 2025 GMT
Subject: CN=e7f1d12a40e95b719fb4fc8951992b6f98308336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a8:c8:61:19:c5:8a:37:e3:98:31:23:5b:d8:
90:e0:86:5f:43:7d:3a:ee:1d:90:ce:01:fe:d0:ef:
1c:90:a8:e2:01:fb:ce:46:8b:f9:5f:1e:c3:91:ac:
3e:fa:f8:e0:59:18:f3:8b:40:54:e9:e0:af:c3:77:
b2:f4:11:fb:b6:9f:5e:16:dc:72:bd:5c:02:85:e3:
e0:71:91:b9:5b:8b:68:11:1d:57:92:34:d4:e7:1f:
f3:6c:9d:ce:41:49:a7:f8:95:86:9a:dd:64:09:dc:
59:b1:01:66:0a:ac:fc:dd:22:e7:a4:b2:24:35:e4:
f7:a1:52:8e:d2:0c:c9:22:ff:a4:fc:d2:df:3a:88:
b3:98:2b:c8:43:35:0b:66:db:93:a5:4f:68:ff:fa:
0e:f3:6e:30:49:b3:c8:0b:8f:28:ab:99:c4:d5:c7:
1d:1f:80:5f:86:2d:34:4f:be:75:f2:0a:14:05:e4:
ce:5f:5d:f9:33:2f:25:f5:97:78:23:56:d1:d7:90:
19:bb:03:59:9e:dd:f5:09:50:52:f6:3e:73:56:cb:
a5:d0:08:90:5f:46:bf:4a:f2:f3:d8:ff:a6:ba:be:
1b:eb:7a:a0:6a:24:39:c0:01:87:c9:67:0b:80:6d:
aa:41:f9:34:b7:93:f4:23:53:c4:1d:4f:3e:e7:16:
60:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F1:D1:2A:40:E9:5B:71:9F:B4:FC:89:51:99:2B:6F:98:30:83:36
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:35:18:af:bd:dd:fb:6c:97:1e:6d:c8:b6:cd:74:e7:d7:36:
17:d6:a3:eb:87:f0:a0:04:b5:3e:99:83:d3:aa:70:4e:15:c8:
81:fd:96:2b:e2:f5:4c:44:0c:39:c7:d6:7e:6b:16:1e:11:b2:
13:b8:31:87:a9:ab:b4:3b:0f:c1:c7:68:57:ef:01:58:4e:22:
aa:f4:52:69:c5:9f:d7:fe:6d:00:36:a3:0b:ce:39:2b:3a:4a:
e4:99:72:1f:55:20:62:eb:b6:50:4c:03:7b:8f:5f:52:3f:80:
85:97:36:0d:c4:b7:67:e3:91:aa:89:65:d9:fc:fc:0b:36:9f:
dd:a2:bf:04:e5:5d:3c:df:16:df:cc:51:14:dd:80:1f:30:f8:
43:88:d1:a5:3c:74:c3:59:f9:a2:fe:5d:34:97:8b:a6:30:35:
73:79:2d:03:f2:d7:54:26:32:3c:b6:f3:3d:91:cc:78:8a:81:
cc:68:5d:0e:84:8c:ad:60:12:cd:37:c0:6e:54:25:29:9b:28:
75:36:8b:15:c8:2d:04:d2:cb:cc:3a:2d:ff:12:01:72:91:84:
75:ad:ed:e5:4e:46:cd:56:17:ab:76:fe:f9:45:65:50:d6:e3:
1d:75:ed:48:4a:c4:cd:1a:60:ee:fd:7d:41:a1:c1:4a:3b:7f:
fa:f9:73:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:22 2025 by rpki-client