Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: +Wm3LIGDX3c2eaz9P3JnhTvc6Qyf6hedteKMzkF+Td8=
Subject key identifier: 83:96:90:37:B1:17:49:54:96:50:D6:F0:CF:61:85:EB:22:87:94:D4
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019A4F2B3F7CBA4A6C46816BFE0B439CB367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 0855
Signing time: Tue 04 Nov 2025 14:00:25 +0000
Manifest this update: Tue 04 Nov 2025 14:00:25 +0000
Manifest next update: Wed 05 Nov 2025 14:00:25 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: xjOfEWnahGero3RtXAPkSGxP2X7NDL+xay1Z3r66/xU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:3f:7c:ba:4a:6c:46:81:6b:fe:0b:43:9c:b3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Nov 4 14:00:25 2025 GMT
Not After : Nov 5 14:00:25 2025 GMT
Subject: CN=83969037b11749549650d6f0cf6185eb228794d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:0f:34:65:64:ee:f3:18:62:cc:49:cb:ad:
09:d1:13:65:26:22:28:3e:c2:e0:8f:2f:3d:96:95:
e3:23:be:f9:7c:1e:ff:29:70:82:62:20:31:71:a2:
c7:84:eb:71:9c:06:ff:26:18:ff:ff:29:db:57:85:
ca:52:b4:82:5f:e2:db:44:04:bf:6e:cc:81:54:f7:
56:58:b1:d5:7f:cd:32:eb:eb:54:b2:e9:db:23:2e:
81:d6:e3:c1:db:cf:e5:8d:f7:78:b2:8b:ec:b3:51:
8e:26:ca:07:2a:0a:70:8c:6c:2c:25:b8:38:ed:81:
9d:45:8c:9d:45:37:2f:f5:e9:e8:df:d6:67:26:07:
17:81:a1:09:bb:de:8c:80:32:68:92:1e:12:bb:f6:
e5:ba:78:6d:4e:2f:40:dd:53:11:22:d3:fc:42:a8:
54:a9:8b:24:98:ff:56:bf:4f:0e:56:98:64:0b:ff:
b6:be:3a:d6:a5:c2:7f:2e:6b:24:af:2f:a4:07:a8:
9f:03:f7:b3:86:1e:8a:0b:8b:2e:7c:0b:cf:7e:30:
d5:f4:e6:de:fc:b0:76:b1:38:36:77:ea:df:95:cf:
c4:eb:2f:6b:e6:46:b8:90:13:71:fc:e3:3e:44:ea:
5c:33:33:c8:61:ea:12:25:05:cd:91:6a:ae:00:c7:
9f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:96:90:37:B1:17:49:54:96:50:D6:F0:CF:61:85:EB:22:87:94:D4
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:42:cc:e6:ac:07:a5:b5:8a:aa:af:2c:81:55:91:5c:4b:f7:
31:67:3a:b3:e7:0d:4d:9f:de:f9:c9:c5:93:98:2c:60:56:d2:
03:c0:86:09:4a:93:e1:90:6b:dc:03:69:12:e8:f5:08:81:5d:
13:3d:75:97:17:6f:17:ac:ed:ee:bf:1a:36:54:d1:bd:8b:df:
77:e1:d9:5e:b7:de:68:5e:53:24:58:14:62:29:71:2b:86:6b:
67:b9:0c:b4:af:c5:54:0f:a4:42:46:8b:de:1f:9a:7b:c5:f7:
e4:83:e8:3a:60:5b:d8:16:6d:67:89:ce:fc:d8:b8:80:b0:db:
3a:71:ba:01:02:4d:9a:ee:39:07:0d:06:e5:ca:97:9b:e9:0e:
77:d7:a7:a3:9e:90:b5:ed:8e:55:1a:c0:79:db:65:74:6d:e5:
59:11:a3:6f:e0:12:ba:93:8b:30:2b:0d:a3:a2:0f:a8:90:ad:
02:7b:b0:42:33:e0:22:a6:0c:ff:ee:96:e8:ce:1a:9d:1b:85:
ca:e7:6f:42:de:5d:80:26:02:2d:5d:80:dd:d6:28:b1:ae:8a:
22:bc:1e:fc:ee:4e:0f:b8:e5:e3:36:20:76:b8:44:b4:61:79:
f3:30:c3:0d:02:0c:79:f6:07:88:f5:19:f4:33:d7:6f:81:15:
70:de:b7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:16:42 2025 by rpki-client