Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json)
Hash identifier: 7ED1vpX7C/GHhfOzu6YdS/SLZt827eWvMJANcF2xmeo=
Subject key identifier: F9:E0:10:AB:2C:70:DA:79:3A:74:A6:3F:E8:D8:9D:C7:18:35:59:AA
Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Certificate serial: 019771512B5656B2EBCA247CB747EC7C632B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
Manifest number: 06D9
Signing time: Sun 15 Jun 2025 02:00:34 +0000
Manifest this update: Sun 15 Jun 2025 02:00:34 +0000
Manifest next update: Mon 16 Jun 2025 02:00:34 +0000
Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: WkpUAM4RuledCqxmZyL+ouNUk8+RkDnE+gLqiZ5Tc8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:2b:56:56:b2:eb:ca:24:7c:b7:47:ec:7c:63:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919
Validity
Not Before: Jun 15 02:00:34 2025 GMT
Not After : Jun 16 02:00:34 2025 GMT
Subject: CN=f9e010ab2c70da793a74a63fe8d89dc7183559aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:91:bb:62:c2:cd:cf:99:1b:c0:7f:43:3f:35:
fc:5c:e7:aa:07:74:02:25:cd:e8:8e:58:57:91:f7:
96:8a:4e:d0:86:d6:e7:83:cd:ac:e3:24:37:e5:60:
59:ba:ac:30:ec:b7:20:df:be:0a:dd:e7:87:1f:9b:
b9:0d:0d:27:0a:33:23:8e:33:f7:d7:f5:b6:88:56:
da:68:5d:31:14:30:93:82:31:dd:9c:bd:4f:b8:7b:
bf:14:d9:9d:3a:e1:13:77:e0:66:ce:27:47:2a:84:
20:e1:61:25:0f:23:8b:40:87:f7:3a:ed:af:00:71:
0e:20:ac:22:83:1d:60:dd:d9:be:f3:c5:4e:85:ad:
98:b8:06:19:1f:73:22:b0:25:32:82:2c:a0:3f:2b:
fe:d5:63:b7:36:c0:ac:4f:63:c1:3d:51:0e:08:7b:
d6:05:d6:8f:4e:52:00:f5:5c:16:a2:fd:94:6c:90:
14:ed:1e:71:5d:d1:7c:35:de:f6:d2:23:25:3a:98:
a9:e2:c4:ae:b0:4f:c3:20:6a:c9:eb:3d:e9:ef:0d:
af:90:69:21:1f:eb:04:7c:fe:4f:f4:07:ad:c3:2d:
00:82:84:62:b7:19:d5:83:43:90:c3:04:c5:54:74:
ed:73:c7:c2:68:c9:a4:ea:88:15:f4:a7:de:8b:5f:
f4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E0:10:AB:2C:70:DA:79:3A:74:A6:3F:E8:D8:9D:C7:18:35:59:AA
X509v3 Authority Key Identifier:
keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:b8:26:41:4e:56:29:b3:61:35:0b:b4:93:5a:07:40:29:19:
85:6d:3d:1e:44:ec:4f:e6:13:b4:8f:00:8d:a3:ae:ed:fd:0e:
e6:48:46:e8:43:76:82:fb:41:33:7b:b5:ed:f3:79:e6:0d:ab:
aa:9f:d6:bf:f6:86:6e:2f:28:3f:39:d8:0a:0e:50:91:b8:5c:
60:9d:ce:9a:f7:ce:e2:30:bc:f4:f7:e7:6d:f4:8c:b2:80:c2:
9e:c8:1f:f3:88:18:ba:f6:0d:e9:c9:75:76:80:cd:3f:29:18:
3c:77:60:2f:a9:4d:70:01:d4:bc:27:ea:19:32:28:7a:ca:5a:
aa:33:ba:42:b2:d5:b5:d4:01:01:cd:a1:d5:30:72:43:6c:8c:
8b:8f:f9:a7:19:a6:3a:4a:27:da:58:ef:39:b2:7d:77:1f:d3:
54:34:2d:3f:31:76:fc:4f:04:a9:dd:d1:19:0d:ee:29:40:b2:
f1:d0:fb:be:87:da:66:bc:51:a6:17:7f:18:57:12:e4:13:df:
49:8b:f5:2c:98:f2:6e:cf:22:44:40:a2:67:7b:a6:f3:ae:50:
5e:63:83:9c:9a:83:cf:4f:cb:d6:34:33:1c:a1:f4:e1:34:85:
7d:30:77:79:7d:e6:97:67:6c:9d:c1:c7:3a:25:e6:7f:17:87:
84:e9:ca:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:33:30 2025 by rpki-client