Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
File: GHrmJafreY8V_B5hw-E3AaNW_hY.mft (raw, json)
Hash identifier: 1T0d9GCbc3B7laRnLO/1pUt2MTQYuBIthAYl3Rlo0Qc=
Subject key identifier: CB:81:A8:C2:20:C8:DD:C3:94:F1:59:D5:3F:74:FC:0F:F9:CD:67:7C
Authority key identifier: 18:7A:E6:25:A7:EB:79:8F:15:FC:1E:61:C3:E1:37:01:A3:56:FE:16
Certificate issuer: /CN=187ae625a7eb798f15fc1e61c3e13701a356fe16
Certificate serial: 0199FDD98BE3E9CF09E691E101EDE245A7C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHrmJafreY8V_B5hw-E3AaNW_hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
Manifest number: 0102
Signing time: Sun 19 Oct 2025 19:01:56 +0000
Manifest this update: Sun 19 Oct 2025 19:01:56 +0000
Manifest next update: Mon 20 Oct 2025 19:01:56 +0000
Files and hashes: 1: GHrmJafreY8V_B5hw-E3AaNW_hY.crl (hash: uEGHLELJOn1S2Y6kEjgX/+L3vkBvDCdEn/nktJdu18E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHrmJafreY8V_B5hw-E3AaNW_hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:8b:e3:e9:cf:09:e6:91:e1:01:ed:e2:45:a7:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187ae625a7eb798f15fc1e61c3e13701a356fe16
Validity
Not Before: Oct 19 19:01:56 2025 GMT
Not After : Oct 20 19:01:56 2025 GMT
Subject: CN=cb81a8c220c8ddc394f159d53f74fc0ff9cd677c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:44:1c:86:0f:db:b8:1c:0e:ab:e1:8e:29:ac:
4c:01:8f:69:70:28:71:b6:0d:35:59:ba:c3:43:2e:
7c:45:9f:ff:f9:79:bc:3a:3d:5b:58:15:b3:8e:09:
77:92:f0:92:e2:5f:b8:44:40:36:46:33:ed:4c:0c:
69:43:b4:dd:60:0f:74:37:fa:45:91:ed:12:33:79:
f3:d5:e5:26:e9:29:08:61:fd:24:33:00:97:fe:8c:
98:29:98:96:7d:de:66:e7:f2:8b:c0:6d:73:34:dd:
04:25:1e:e9:71:ae:e6:24:24:2b:64:27:14:e3:c0:
d4:6e:e5:cc:87:a0:52:6a:3b:90:94:cc:5f:44:3a:
67:62:06:96:05:65:7c:ad:96:23:e1:cb:b2:2c:e6:
03:ce:80:a1:fd:b6:6f:04:5b:19:69:ca:3a:b1:3b:
84:eb:d5:cd:8f:6a:0e:57:7f:1b:a9:b0:37:b0:66:
de:97:81:24:ba:b6:54:f1:9d:06:32:51:bb:90:2c:
71:0e:6d:5f:3a:d2:c5:76:74:20:97:aa:00:3a:e5:
20:25:3f:7d:5c:47:c2:51:cd:3b:44:5e:5d:56:db:
88:f7:9f:31:1f:df:da:32:dc:2b:b4:0a:ff:2c:bb:
37:46:00:9b:d6:5a:d8:47:28:65:8f:4d:ef:37:14:
59:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:A8:C2:20:C8:DD:C3:94:F1:59:D5:3F:74:FC:0F:F9:CD:67:7C
X509v3 Authority Key Identifier:
keyid:18:7A:E6:25:A7:EB:79:8F:15:FC:1E:61:C3:E1:37:01:A3:56:FE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHrmJafreY8V_B5hw-E3AaNW_hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9a5af2-5daf-400b-b91a-5c00cbe76f34/1/GHrmJafreY8V_B5hw-E3AaNW_hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:50:ea:85:4b:78:60:e6:57:22:7f:8c:c3:62:9e:eb:2f:97:
73:32:bc:a9:e8:45:04:de:c6:9f:31:cc:b8:71:4c:51:ac:79:
7e:5d:a6:e0:4e:37:52:7e:b0:ee:68:aa:ba:cd:37:72:6f:db:
03:b1:84:a4:19:ab:7b:11:92:1a:ba:73:4a:8a:c2:d1:33:41:
c8:c9:d6:53:cb:d8:d0:f9:d5:19:3e:25:1b:bb:fb:24:7a:e9:
ac:b4:8d:21:f6:c0:22:15:6d:1a:35:4d:75:ac:cb:a3:77:b1:
4e:9e:79:5c:6b:3f:b5:20:08:3d:99:21:e8:3c:24:bc:79:3f:
81:1f:9e:a0:1b:c0:48:88:94:37:ec:b7:4a:1f:78:42:20:92:
96:24:74:d0:9f:72:b7:b7:3e:e6:4c:f2:a5:cf:d9:f1:ed:a9:
ec:c8:16:75:81:6e:93:be:91:7a:ab:2e:d2:7b:53:14:53:fb:
5f:e8:eb:49:95:72:4c:6a:aa:e4:44:ed:50:8b:1c:9a:b4:f5:
4e:6a:c1:78:02:3c:a7:07:e8:3f:c3:a0:e5:c5:cf:45:4e:8d:
1a:be:fd:b2:2a:7c:8c:35:e1:f8:c8:be:2a:5b:b0:a8:4f:ff:
98:69:1b:29:21:dc:79:75:5f:ac:32:a8:e8:ee:e1:e6:4b:ee:
48:40:9d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:27:53 2025 by rpki-client