Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
File: GHrmJafreY8V_B5hw-E3AaNW_hY.mft (raw, json)
Hash identifier: j9UueAg8gSgth+c2TnKeithPmdkvF8/94NgruKH6dRI=
Subject key identifier: E4:17:B8:48:FD:85:80:BF:50:A4:EA:66:CA:EA:A2:1F:E8:19:AF:70
Authority key identifier: 18:7A:E6:25:A7:EB:79:8F:15:FC:1E:61:C3:E1:37:01:A3:56:FE:16
Certificate issuer: /CN=187ae625a7eb798f15fc1e61c3e13701a356fe16
Certificate serial: 0198D472A48275FDE7D32AC48CFCB27D1AFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHrmJafreY8V_B5hw-E3AaNW_hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
Manifest number: 68
Signing time: Sat 23 Aug 2025 01:02:19 +0000
Manifest this update: Sat 23 Aug 2025 01:02:19 +0000
Manifest next update: Sun 24 Aug 2025 01:02:19 +0000
Files and hashes: 1: GHrmJafreY8V_B5hw-E3AaNW_hY.crl (hash: TrROT8b09mZkXXLVbwyiG2580zSBsgPDL9SiFGWT+mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHrmJafreY8V_B5hw-E3AaNW_hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:a4:82:75:fd:e7:d3:2a:c4:8c:fc:b2:7d:1a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187ae625a7eb798f15fc1e61c3e13701a356fe16
Validity
Not Before: Aug 23 01:02:19 2025 GMT
Not After : Aug 24 01:02:19 2025 GMT
Subject: CN=e417b848fd8580bf50a4ea66caeaa21fe819af70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b6:66:31:05:91:94:40:e8:39:70:52:43:b4:
c3:e7:26:60:78:6f:f3:c5:7a:6a:fb:3a:59:83:a6:
56:82:ef:28:f9:fa:6c:7f:e0:e2:03:8b:04:de:4c:
60:40:a6:aa:29:b1:13:2c:fd:45:ea:25:b6:80:9a:
3d:7f:7c:7c:65:60:2e:54:80:ff:c3:1a:58:7b:ec:
85:0c:9e:15:da:af:19:80:3a:a1:60:b2:d0:ed:f6:
24:d5:a6:75:2a:93:66:29:83:d3:4a:24:29:80:a0:
f6:e6:e0:c5:92:c6:70:4f:04:5c:bd:61:26:7a:6e:
1f:95:18:cb:eb:d7:7d:f1:d1:11:a8:b1:22:7c:6e:
c9:2f:ab:d4:80:17:bb:4b:af:cf:6b:de:ee:3a:30:
d3:ea:3a:2e:fb:f2:4a:d7:90:79:d1:b9:0c:1a:10:
04:3f:a3:21:73:66:17:63:e7:a5:3f:e6:1c:df:76:
1c:7c:ed:36:3d:27:2e:e0:20:bc:2e:f6:19:89:78:
8a:5c:ae:8a:8f:2c:4f:3c:92:eb:c9:a0:9b:22:de:
e8:6d:fa:55:3e:7a:dc:44:a6:0f:44:2b:1d:d2:ec:
5b:d9:30:29:05:e2:4b:0c:27:68:99:19:87:d8:2c:
5f:de:54:a9:24:4e:32:79:5e:e6:4c:78:8c:fb:25:
84:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:17:B8:48:FD:85:80:BF:50:A4:EA:66:CA:EA:A2:1F:E8:19:AF:70
X509v3 Authority Key Identifier:
keyid:18:7A:E6:25:A7:EB:79:8F:15:FC:1E:61:C3:E1:37:01:A3:56:FE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHrmJafreY8V_B5hw-E3AaNW_hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:b1:ed:4c:a5:00:ab:e5:25:57:88:b4:11:8e:14:38:7d:05:
b1:17:7b:6e:52:4e:d1:3c:f1:ba:9c:4f:36:29:bd:00:af:2d:
36:d0:23:19:be:3a:dc:a9:56:a4:e7:56:df:b8:69:8b:d3:f8:
04:6e:64:15:f5:6b:e9:8c:fb:af:08:c2:ef:c3:89:f7:6b:51:
36:ff:3d:95:cb:e3:1f:e2:3f:84:33:06:35:48:29:a7:75:9f:
7d:b2:94:32:c5:d4:17:10:19:da:fb:b0:30:08:37:4e:d1:a1:
2a:38:42:07:52:1c:fe:00:54:7c:ef:9d:6b:37:f8:ec:c2:11:
1c:94:7a:6c:5e:75:de:33:79:94:99:18:cf:cd:1f:37:58:10:
7a:15:c7:43:6f:21:75:f7:3c:b4:93:2d:35:23:84:11:b3:3f:
1c:10:fd:d8:cd:c4:ec:47:82:e2:45:f4:2a:32:69:1c:00:ae:
8c:05:2a:57:08:14:c5:46:cd:84:0a:2d:dd:67:eb:d8:ad:34:
ee:99:e8:43:fd:15:ba:7e:bd:84:9c:93:da:d6:c7:31:94:26:
71:af:22:f9:14:26:88:1d:1f:00:ec:0e:78:29:27:c1:f9:34:
bd:3c:6b:39:64:6f:ce:12:86:16:8e:4a:c5:5d:19:85:af:75:
47:f3:28:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:21 2025 by rpki-client