Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json)
Hash identifier: rqWQBMcT1IGBAfMR9OvFEk8lKlVs7m+GP5hRxreV2Co=
Subject key identifier: 3B:14:5A:ED:37:50:17:21:C9:B4:E9:53:0E:62:D1:5D:2E:A6:DC:10
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 019CAD906B78E169D1D509AB09E72ACC1736
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
Manifest number: 1738
Signing time: Mon 02 Mar 2026 08:00:48 +0000
Manifest this update: Mon 02 Mar 2026 08:00:48 +0000
Manifest next update: Tue 03 Mar 2026 08:00:48 +0000
Files and hashes: 1: 6k_g9zpR0oUHNJNOJpWC6Uips58.roa (hash: xsbRkvDZeur19giHSHwKBgppoMpB/PB9Dmlu/eOW38M=)
2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: sMXwETv2E9dduxajhwmEziShG0RaOKYFBk37apy3Q/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:6b:78:e1:69:d1:d5:09:ab:09:e7:2a:cc:17:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Mar 2 08:00:48 2026 GMT
Not After : Mar 3 08:00:48 2026 GMT
Subject: CN=3b145aed37501721c9b4e9530e62d15d2ea6dc10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:07:fa:3b:3f:b1:04:0e:57:d2:a9:b6:41:4e:
35:f9:df:1f:e2:4e:3b:17:e4:e4:f5:41:c9:17:34:
f9:76:fe:e3:f3:2a:c3:11:ef:3a:3d:16:e8:6c:57:
ad:2b:71:21:fd:62:16:ca:8d:ea:f3:d0:45:40:e3:
ad:03:37:9a:1b:1d:b8:f9:77:dd:ed:04:c1:e1:ea:
a9:02:b1:f2:25:fa:29:59:63:60:66:af:d2:33:5d:
2f:e6:af:a6:fe:7a:e8:bb:26:02:96:25:76:f6:9d:
94:16:07:3a:83:02:50:0e:67:60:2b:ea:5f:65:8f:
15:d2:91:ad:63:d5:5b:87:aa:03:c9:1c:7e:f3:2d:
73:92:03:d8:a6:2d:2e:ee:d2:5f:e1:db:99:35:2c:
24:25:e1:65:a8:4b:c4:3d:68:05:92:a4:85:de:a6:
09:8d:75:0d:0e:ca:ab:82:fe:0e:80:cf:dd:9a:fd:
82:1f:30:7b:f9:7b:9f:8e:66:d5:36:ed:b8:2c:29:
8d:33:fa:40:75:67:99:ef:6a:7b:0c:47:fe:7d:81:
96:3b:01:f2:c8:90:9e:12:03:60:22:ab:fc:57:f0:
f1:c9:ea:4f:a4:c7:ce:bf:d6:29:ed:f4:7a:16:7f:
c8:e9:0c:ea:f6:c7:e9:53:3d:9b:12:82:2a:4e:85:
af:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:14:5A:ED:37:50:17:21:C9:B4:E9:53:0E:62:D1:5D:2E:A6:DC:10
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:cd:8c:0e:be:b1:b5:95:6a:14:fb:4a:7b:77:9f:15:9f:89:
41:20:dd:43:5d:63:36:b9:51:f8:3a:5c:50:b9:01:23:12:ac:
e6:d6:1a:b0:2b:2c:b1:76:fb:61:69:30:4e:f2:d9:c5:81:27:
ac:c2:27:76:0e:39:c1:ec:5b:48:5b:0b:1f:0e:8f:94:9d:e3:
65:47:74:25:7c:ce:80:4e:3d:bc:44:e0:0e:e2:ea:00:6e:6e:
16:45:3b:c2:82:16:60:aa:ea:ff:de:0c:c6:30:66:56:e8:70:
7d:f6:fd:39:de:d7:55:78:0b:ad:8d:19:d0:0c:5e:84:2d:f4:
e4:3a:69:59:b8:49:19:03:2d:38:f4:4d:75:f2:af:88:fc:9f:
a9:57:02:3d:a3:8f:5e:3c:3e:cd:96:cb:eb:1d:9a:79:9d:47:
12:b8:7b:35:93:27:ff:d4:7a:97:e4:49:66:4f:a2:4c:b3:c1:
b5:bd:21:62:ba:c9:a6:c2:c3:04:c8:88:9f:57:d0:1c:fb:76:
cb:10:01:c3:9b:d3:1e:1e:b5:a8:6d:df:d9:73:db:41:19:d5:
15:fd:95:7c:11:5b:49:7c:1d:bc:0b:7c:9b:41:ec:be:b9:a2:
f6:89:ba:37:7a:07:6c:11:14:34:8f:7a:14:3b:65:e5:54:48:
23:36:f7:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:35:57 2026 by rpki-client