Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: 1sSFuS3A9gZbDqg+jRHeDOdHYdWiCKxIMniLhUyNcuI=
Subject key identifier: F8:D2:B8:2A:B6:87:BF:18:8F:ED:16:35:9B:DA:34:F8:1E:21:08:91
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 01987450B635E59FDE613B9D9F1474B1B943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 1508
Signing time: Mon 04 Aug 2025 09:01:43 +0000
Manifest this update: Mon 04 Aug 2025 09:01:43 +0000
Manifest next update: Tue 05 Aug 2025 09:01:43 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: gfmdt/FOuAFN23c7Un9KZXzW6YL3iDwRS1dlHg+kYtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:b6:35:e5:9f:de:61:3b:9d:9f:14:74:b1:b9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Aug 4 09:01:43 2025 GMT
Not After : Aug 5 09:01:43 2025 GMT
Subject: CN=f8d2b82ab687bf188fed16359bda34f81e210891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f4:9b:ce:34:22:ad:05:0a:3e:9d:37:03:65:
87:d3:95:d7:75:22:4f:9b:6f:4f:84:c0:8d:d2:d4:
4b:81:63:98:77:8d:a3:91:fe:9e:24:b3:17:e3:37:
f2:99:8d:49:9f:4c:1c:4e:3c:d3:ce:0c:8f:ee:bf:
19:04:ec:53:31:11:58:81:69:1f:81:7a:01:12:63:
7c:af:15:d8:f5:c4:1c:33:46:bf:7f:ae:45:ae:7c:
b2:19:65:66:5d:52:33:62:ca:f3:1f:8e:17:6c:2d:
a2:81:75:b5:8e:5a:56:cb:01:6e:9c:bd:f3:d3:de:
03:64:88:6f:1f:14:61:59:2a:9e:4c:4e:b1:7a:39:
e4:85:49:dd:63:c4:ca:dc:7e:97:91:12:3d:cb:69:
ef:b8:ad:7d:4d:6e:77:bb:ac:c7:fd:04:81:46:82:
67:ba:95:58:d6:a9:ee:e8:2b:ea:1e:49:09:34:49:
0a:1a:5c:1d:d8:57:03:72:8e:38:55:42:65:7a:d9:
c7:5d:79:84:4d:1d:7a:47:87:9e:73:2e:a6:8e:40:
c8:5a:0a:e7:b6:b4:6a:dd:ab:cb:55:30:49:6a:27:
9d:21:ac:4d:2d:12:af:aa:e3:de:01:70:4c:22:f0:
e0:e0:b7:5f:3c:f2:64:2a:a7:84:0a:0b:77:9d:93:
6e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D2:B8:2A:B6:87:BF:18:8F:ED:16:35:9B:DA:34:F8:1E:21:08:91
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:f4:93:94:56:69:67:e6:1f:79:cb:4e:18:57:7c:3f:f7:28:
a6:01:66:ce:4b:d0:cc:1e:69:ba:99:3b:b9:35:2d:bd:1f:d4:
1e:bf:0e:c9:39:3d:84:44:09:96:b1:66:3d:35:96:d0:08:89:
de:33:a1:d3:27:3e:b2:d6:6b:66:5e:4d:49:4e:d6:56:9c:2b:
a5:ce:c3:ff:d0:ac:68:a9:d6:bd:d8:67:e8:4d:16:da:2f:e6:
24:b3:2a:08:40:06:84:9c:3c:3e:cc:86:9e:dd:27:93:4f:e9:
da:12:7e:91:65:0e:08:c5:29:0a:33:3f:25:98:23:92:ec:d9:
0f:04:aa:25:59:7d:19:01:54:a2:98:9e:ae:1f:ce:69:aa:ff:
5f:58:93:e8:24:0c:13:34:73:4c:d1:8a:5c:03:c1:8d:f6:25:
40:4f:73:c4:d1:ef:f5:37:4e:5b:1c:4a:c2:89:d5:b6:fb:3b:
5e:23:c4:af:0b:7f:18:50:ff:12:a0:28:7c:6e:be:4c:1a:5c:
62:5c:07:62:8b:1a:31:9c:11:07:48:fb:4b:a8:1a:a4:ee:33:
39:19:f2:88:1e:64:66:95:4f:c1:54:c1:9d:a8:7a:cc:c3:1e:
d2:11:ea:00:1a:44:39:28:29:8a:cd:45:af:49:83:fd:e3:4c:
16:b0:3b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:30 2025 by rpki-client