Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: piUEnVhhiHZUChZJ8GwY5yZOiYdyRjiEwBLc0qvRFwQ=
Subject key identifier: 5F:11:DF:85:41:69:60:D5:C6:0C:62:6B:5D:ED:C4:FD:7A:57:C4:AD
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 01976F99D106952403B3D644D86F3CC31613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 1481
Signing time: Sat 14 Jun 2025 18:00:40 +0000
Manifest this update: Sat 14 Jun 2025 18:00:40 +0000
Manifest next update: Sun 15 Jun 2025 18:00:40 +0000
Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: 8P7EqxH0ydxBsGTYk0PQ2BtiXbbMBndp7s44WL7Lx3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:d1:06:95:24:03:b3:d6:44:d8:6f:3c:c3:16:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Jun 14 18:00:40 2025 GMT
Not After : Jun 15 18:00:40 2025 GMT
Subject: CN=5f11df85416960d5c60c626b5dedc4fd7a57c4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:09:54:f1:c8:3c:d1:12:f0:42:16:a4:af:e8:
81:7d:42:48:28:64:1a:b3:6e:60:33:8d:70:21:60:
74:63:7d:7a:e8:d4:04:c0:88:5a:44:04:fb:3d:e8:
24:62:38:ce:fb:5d:1e:eb:ba:90:2c:56:36:92:03:
71:3a:49:1d:43:7d:2e:0b:0a:96:20:19:55:66:dc:
2c:2b:dd:34:87:43:ef:67:46:d8:21:1e:9e:38:b0:
5c:53:77:8d:34:83:ac:4c:cd:17:ca:bd:74:75:1c:
41:47:76:00:b9:26:83:75:8c:07:3d:bf:14:6c:5f:
14:f1:55:5e:d5:19:98:db:3e:ca:c2:8f:f3:6e:09:
c5:a7:39:2c:d1:85:c1:90:91:d3:c4:90:30:5d:74:
60:55:12:1b:c8:f9:18:35:3b:38:b1:fd:5d:1b:6f:
51:e3:35:a9:c1:a2:46:d2:fd:25:4b:08:ec:e9:5a:
de:70:8f:48:52:64:16:90:79:9c:a2:8f:f1:fd:79:
59:5b:18:46:d2:9b:1e:00:8e:16:2c:06:2c:e6:68:
d0:57:cb:7b:9d:32:03:46:df:6d:33:48:d0:fc:6a:
9a:9d:7d:43:e5:45:12:33:be:4c:33:40:a2:b6:bd:
d8:22:4e:59:f7:20:30:74:84:0f:f1:f8:76:93:fa:
53:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:11:DF:85:41:69:60:D5:C6:0C:62:6B:5D:ED:C4:FD:7A:57:C4:AD
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:6f:6a:de:d5:bf:3c:11:e9:28:0e:00:f5:cc:02:cd:e7:c2:
e0:7f:21:43:9d:81:f6:24:73:72:1c:9b:90:e8:69:76:3d:97:
19:3a:80:e5:d6:ae:22:66:08:4d:22:86:9c:be:96:0d:d9:6d:
fe:d6:4e:b9:95:5a:33:f6:ca:1c:c2:33:b0:46:c2:93:99:ae:
de:65:a8:bf:02:13:9a:14:4f:9d:a3:b3:aa:6e:ab:4d:53:06:
3a:ae:94:fe:ab:63:d8:f5:4f:89:79:56:2b:a0:28:90:69:99:
d4:07:1d:cb:ea:6a:ed:1d:4a:bf:03:11:d7:17:2e:71:88:c3:
5e:07:23:49:c1:fa:bb:10:96:2e:1f:66:ad:5e:1f:7c:b1:dc:
32:fc:52:69:dd:96:ab:a3:dc:69:2b:d0:88:06:08:39:66:37:
92:9b:64:8c:cb:47:dc:e9:66:a4:55:da:3a:cb:81:a2:55:6b:
f4:3f:d8:b7:23:f3:a7:88:08:d6:a2:ab:d6:d6:5a:6d:cc:18:
e8:15:b2:7e:a4:c5:78:9b:94:bb:b6:6c:3d:1c:e6:79:93:cd:
b0:18:0f:ed:3a:36:83:98:21:e3:ad:41:01:5d:ed:b6:bb:6c:
b3:cd:6a:03:94:79:a8:71:72:07:6e:52:da:f9:fd:e3:82:51:
55:3e:b5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:12:43 2025 by rpki-client