Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: ZWtuBz3JUN3SbAb9G9pMbjtV+jTv/andE+lc9WqYgfk=
Subject key identifier: 3D:91:CE:41:F3:AE:72:1C:2C:E0:0B:59:44:8A:BF:CB:49:96:47:61
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019683C788174F4F2C36EA3A64E77CE5D008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 065E
Signing time: Tue 29 Apr 2025 23:00:13 +0000
Manifest this update: Tue 29 Apr 2025 23:00:13 +0000
Manifest next update: Wed 30 Apr 2025 23:00:13 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: TzTFLjoEBRdVXuKadcAwslJ303iva3pf00xkHqY/am4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 23:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:c7:88:17:4f:4f:2c:36:ea:3a:64:e7:7c:e5:d0:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Apr 29 23:00:13 2025 GMT
Not After : Apr 30 23:00:13 2025 GMT
Subject: CN=3d91ce41f3ae721c2ce00b59448abfcb49964761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:bd:d5:32:ad:39:3e:96:c5:4b:76:9f:fe:
23:ef:ab:c4:aa:58:df:54:86:e7:f3:38:f5:b5:b5:
26:61:87:ef:cb:71:c4:bb:5b:9b:c2:b3:76:fe:11:
25:b7:d2:b1:81:f2:27:65:78:4a:45:c8:fa:a0:6e:
18:95:6e:56:d0:b3:39:71:b3:38:ce:d0:31:2a:59:
34:95:99:56:2d:6c:99:90:77:15:69:db:ab:98:b4:
0d:71:11:06:e6:92:3c:55:3c:3e:47:93:bf:f3:e4:
65:39:62:16:33:57:53:f6:4e:50:bb:00:37:b8:fd:
c1:45:6c:58:f9:8b:38:37:47:a0:11:7c:cf:95:66:
69:a8:d9:66:a1:6a:26:05:8d:4d:97:5e:6f:64:99:
a1:af:9c:a4:fe:62:b2:64:fc:e3:5c:5c:74:bd:ab:
df:4b:a5:23:ec:b2:4a:86:b1:a1:e2:da:85:ed:a5:
00:19:ed:a6:39:02:2a:23:39:98:85:6c:7a:0d:1d:
c5:21:24:e9:0e:b5:eb:28:5d:92:17:82:8b:67:56:
88:9c:08:1c:d9:b1:5f:91:69:4c:04:48:55:b6:a9:
10:2d:6b:bc:76:a0:e7:1b:6d:20:c9:7e:82:ef:4c:
e5:3f:95:f7:00:2e:eb:d6:d7:34:3d:a6:1c:a2:05:
9e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:91:CE:41:F3:AE:72:1C:2C:E0:0B:59:44:8A:BF:CB:49:96:47:61
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:81:b8:d1:f6:51:7d:62:d5:64:3b:61:56:22:ca:dc:d8:aa:
70:7d:cf:79:7f:55:a5:d4:5b:9a:ed:58:60:90:e4:8c:99:6e:
f8:01:44:0d:19:d3:93:31:76:95:fa:e9:44:c6:9e:ed:c6:27:
e6:b8:28:2f:19:b1:a1:3a:42:6a:98:fe:cc:8d:8b:f6:c9:11:
ec:17:ed:b2:2e:2b:39:69:bd:1b:13:9c:82:c6:45:72:e5:f5:
4d:b4:be:e2:4d:79:5d:7e:a7:f2:eb:cd:e5:7e:01:30:8b:c6:
d2:6b:b3:e5:01:9b:1a:c5:3a:65:ef:0d:1f:3f:77:d6:e0:90:
7a:64:e9:1a:b9:9a:6b:41:eb:14:c4:95:4d:eb:17:55:31:0f:
d0:55:19:4a:bd:0f:78:26:c8:b8:b5:62:3e:95:6f:36:05:ad:
ae:15:49:dd:94:a0:63:4c:52:10:87:d2:18:2b:53:42:f5:89:
71:e2:b2:37:a3:4d:97:c3:6f:a8:71:7a:9e:83:ac:99:b7:34:
2d:d1:5b:13:c3:29:7a:4a:73:1d:e4:7c:b1:f4:61:d9:fe:07:
ef:5e:48:97:54:d3:f6:9e:e0:97:2b:af:b2:cf:1b:7b:fb:df:
7e:3f:b2:a9:cd:9b:b1:f4:a2:63:aa:11:c9:01:e7:0f:28:3b:
f6:f9:f7:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:30:12 2025 by rpki-client