Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: 9Ng9UXYj5j8MTOV6+LNKwskcZR4+X18NRyjG48U3zDo=
Subject key identifier: 64:EB:9B:B9:8A:E1:7E:AD:3A:35:EA:B2:BB:0C:D0:9D:FB:B6:77:75
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 01967A5735EF964B4F32DEF7E30022544DF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 1402
Signing time: Mon 28 Apr 2025 03:00:57 +0000
Manifest this update: Mon 28 Apr 2025 03:00:57 +0000
Manifest next update: Tue 29 Apr 2025 03:00:57 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: 2WlaDvoElv029ErVtLg89IbgHM13XVfl/XUmcpR/TCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 03:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:57:35:ef:96:4b:4f:32:de:f7:e3:00:22:54:4d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Apr 28 03:00:57 2025 GMT
Not After : Apr 29 03:00:57 2025 GMT
Subject: CN=64eb9bb98ae17ead3a35eab2bb0cd09dfbb67775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:23:15:65:8a:83:77:18:7f:68:99:6c:55:b2:
8f:53:c5:d1:cf:43:f1:be:57:79:bd:02:63:0a:4b:
94:f9:22:89:02:fc:ba:75:f0:c3:59:9c:28:c7:18:
95:fb:ea:f6:f7:cf:33:ac:d6:2b:10:17:26:7e:4b:
5b:e3:a6:bf:21:1c:16:5b:6e:9b:84:cb:a9:90:19:
a8:a6:e5:82:f4:96:03:f3:e5:ae:1e:84:a5:0e:89:
dc:f2:7c:32:ca:af:d4:f1:a4:66:78:b4:0f:69:be:
43:b5:0b:8c:2c:98:34:73:77:e8:85:1b:77:84:d6:
7d:eb:fa:19:13:12:7c:c4:f4:29:47:03:d0:1a:91:
51:85:b7:3c:9e:20:43:f1:59:2e:f2:74:e1:81:69:
a8:2b:80:d9:0d:34:63:23:f9:31:01:73:53:8f:5a:
9c:15:e8:dc:ef:eb:c5:8c:fd:a8:61:64:87:e2:be:
c4:ff:0e:07:93:b7:57:69:56:ce:87:0c:58:79:eb:
20:86:36:f1:6f:0f:70:71:ae:63:aa:b9:c2:57:a3:
0e:d1:41:e3:00:4b:cb:9a:59:e6:20:ee:77:77:00:
1c:fa:89:52:61:7a:20:3f:18:85:51:9c:14:7a:6a:
69:a1:e5:0a:c5:fb:c2:2d:08:f3:61:99:b3:97:16:
51:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:EB:9B:B9:8A:E1:7E:AD:3A:35:EA:B2:BB:0C:D0:9D:FB:B6:77:75
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:42:63:2b:a5:79:7d:07:e2:dd:2c:19:aa:ca:98:21:99:d8:
28:e0:bc:b3:f4:5a:85:fe:c9:18:3b:7d:21:df:5c:41:47:50:
2d:07:d6:ca:29:1f:0b:ee:2f:f6:c9:84:de:f2:aa:b5:d6:70:
b5:72:b1:25:e2:e4:ef:52:82:95:f6:f7:f7:52:10:8d:59:01:
c0:2a:c2:c6:24:9c:e2:c9:60:2f:6d:8a:83:d7:4e:14:48:82:
cd:19:10:49:a0:65:86:3a:44:8a:f0:dc:32:15:dd:d8:81:e4:
e3:24:33:d2:31:cb:1d:05:a4:c6:85:f9:58:5a:91:45:44:d2:
eb:5b:86:64:6c:81:4a:33:3d:21:2b:f3:fc:0d:a4:e2:46:ff:
79:04:3e:a4:5e:db:e8:dd:a1:e3:7e:55:be:e0:f0:db:90:87:
76:a8:23:3f:b3:46:8a:c3:b5:20:af:7a:17:10:63:d1:e2:45:
7a:77:7a:b0:83:13:65:85:6c:9d:97:3b:5b:de:d2:e1:b0:c2:
50:20:99:91:fe:58:c9:80:48:52:d2:c9:4d:78:fc:b5:42:c4:
14:49:62:c7:7a:5e:f3:62:f5:f8:31:34:06:7d:24:38:9d:0c:
04:79:a0:09:2f:53:ba:20:b2:a5:02:c5:06:f2:09:d1:f3:3e:
1f:1e:f4:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:41:08 2025 by rpki-client