Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: UD+3zdPdG27UnMQzEmV5DTg/VQDn83MMSe4ARw6QZIo=
Subject key identifier: 4B:8D:2C:66:A3:8B:3C:97:C0:9C:A0:4F:26:83:E4:25:34:23:EF:E6
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 019D992B9F91CF0DE94326E2959010586977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 17B2
Signing time: Fri 17 Apr 2026 02:01:06 +0000
Manifest this update: Fri 17 Apr 2026 02:01:06 +0000
Manifest next update: Sat 18 Apr 2026 02:01:06 +0000
Files and hashes: 1: 6k_g9zpR0oUHNJNOJpWC6Uips58.roa (hash: xsbRkvDZeur19giHSHwKBgppoMpB/PB9Dmlu/eOW38M=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: oUSeEPDU4+H4QNEURC8B6duZNkJm5FSU2/GUYRrL1DQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:9f:91:cf:0d:e9:43:26:e2:95:90:10:58:69:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Apr 17 02:01:06 2026 GMT
Not After : Apr 18 02:01:06 2026 GMT
Subject: CN=4b8d2c66a38b3c97c09ca04f2683e4253423efe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7e:e3:e6:23:9f:eb:36:66:55:0d:92:5e:b5:
95:3a:50:c0:81:b2:90:3a:c3:a0:e6:66:a5:76:cb:
de:97:c5:7d:77:77:82:cf:c5:1c:52:1a:81:5d:37:
fe:13:46:be:f9:b5:86:dc:27:34:15:4b:73:ca:a7:
3e:30:21:e6:a5:2d:0b:61:48:3d:9a:ad:f4:d2:41:
1c:6e:40:b6:c5:7c:e0:c6:cb:a0:87:89:11:65:a8:
ac:1b:4b:a2:8b:f0:20:aa:b1:ee:83:ae:d3:fa:cf:
f4:bb:dd:07:27:73:42:ac:69:9c:b8:31:cf:c1:c4:
0e:2e:8b:7d:52:e3:e6:96:46:42:71:d8:06:68:a1:
24:32:e4:e4:53:e6:4d:c4:21:c5:4c:b0:74:22:95:
ec:bb:34:99:b9:0d:d9:67:4e:2c:bb:93:f5:6d:4c:
05:2e:1f:2c:18:c6:29:22:a8:cd:2a:6e:3f:64:55:
20:c8:d3:e5:77:8e:bd:72:15:6b:3a:fd:4c:9a:b6:
ac:44:63:a8:61:f1:97:83:55:9c:77:ed:55:a0:a1:
8a:cb:a4:68:ef:35:c2:03:7f:3d:67:c6:31:39:be:
99:50:0a:f6:cf:03:94:ea:af:78:59:c4:2b:07:46:
cf:15:df:ca:88:ba:e4:60:01:38:8e:58:ac:50:fb:
04:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8D:2C:66:A3:8B:3C:97:C0:9C:A0:4F:26:83:E4:25:34:23:EF:E6
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:35:bd:2b:d1:48:80:77:95:42:f7:ad:6e:6a:cd:8a:84:84:
70:88:77:88:d3:39:c5:04:19:6e:7b:64:2f:49:a8:7f:da:a7:
9d:66:71:fc:73:3d:e9:e6:48:0b:9d:84:67:eb:51:b7:6c:39:
b3:4d:7d:05:7e:b0:3b:1b:fc:58:2e:2f:35:bb:36:32:e2:90:
27:22:20:91:e1:c1:ed:ef:f2:b3:b1:1e:8e:83:36:8c:4d:da:
c0:0f:f1:c7:1a:8a:11:1f:1b:db:77:13:45:d9:b1:34:04:45:
2d:1d:84:bf:65:30:55:bf:0a:8e:a9:fb:ed:34:b9:04:cb:21:
49:7e:00:bf:03:29:89:b9:ff:13:43:ff:b9:2d:9e:2b:75:44:
7f:fa:97:33:13:a3:d2:a8:5e:af:bf:69:de:dd:d1:b9:68:10:
48:cf:56:d9:72:e1:3d:a1:e2:33:cb:a3:ff:d6:3e:d0:01:1d:
ea:4a:2c:bc:5d:f6:21:68:8c:0b:ba:c6:81:47:ce:0c:b4:41:
cf:0b:ee:67:6e:f3:61:68:75:5b:09:73:95:f7:81:cb:71:82:
6d:a1:a4:63:63:69:f8:ab:32:e1:9c:a0:68:66:0b:c9:0b:c8:
b5:ad:88:9a:d5:cb:a7:0b:8c:0d:a7:99:a8:72:68:11:41:f9:
96:6c:bd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:36:43 2026 by rpki-client