Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
File: GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json)
Hash identifier: iH71t1hAIFBwkWmO99kuOBrA5LaszVI7ynYpPKBe7Pg=
Subject key identifier: 18:CC:D8:83:2B:6D:40:D0:EE:32:EF:F9:CD:5C:C8:D2:6D:6E:9E:37
Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
Certificate issuer: /CN=18745466b4e146830b962b74906db1c6d081fc70
Certificate serial: 0197B70F5248276B23AE588E093EEF70AE2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
Manifest number: 157B
Signing time: Sat 28 Jun 2025 15:02:03 +0000
Manifest this update: Sat 28 Jun 2025 15:02:03 +0000
Manifest next update: Sun 29 Jun 2025 15:02:03 +0000
Files and hashes: 1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: fOpLvy0XZ/uTCpGxW4mNP2QgvIp1U5RAF3Bz6lOqZmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:52:48:27:6b:23:ae:58:8e:09:3e:ef:70:ae:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70
Validity
Not Before: Jun 28 15:02:03 2025 GMT
Not After : Jun 29 15:02:03 2025 GMT
Subject: CN=18ccd8832b6d40d0ee32eff9cd5cc8d26d6e9e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:12:d3:f1:1f:1b:ad:f4:6d:f4:ff:b6:d4:c8:
20:27:b8:48:2f:f9:20:00:da:99:38:53:9a:e8:ec:
36:dc:0d:ab:01:90:09:fa:de:86:5c:58:af:83:66:
5a:e7:73:81:bc:36:d0:1e:43:04:8f:35:e6:9a:99:
58:11:ec:ab:88:57:9c:c5:4e:86:dc:68:5b:9b:a4:
1a:0c:f8:74:ac:f5:d8:a8:b2:70:7f:c5:55:67:c9:
12:3b:f2:4b:b9:a8:a6:42:ce:22:fe:6a:d0:16:bf:
48:09:cc:61:15:87:13:64:5c:07:40:5d:4a:a2:87:
84:f4:72:dd:c4:1a:8d:ca:a7:18:c1:4d:f2:d1:86:
d1:2a:06:d5:e8:8b:92:14:0a:3f:49:e6:f3:b6:bc:
b7:75:76:55:4d:0c:c1:b9:5d:67:86:a2:14:76:39:
b3:1e:91:39:7a:f7:ee:c7:69:88:6a:0f:2a:9f:9b:
21:43:2f:71:5c:5a:bf:fa:30:78:e9:d4:ce:21:2a:
ec:92:cd:82:e1:2b:d2:b4:b5:14:21:55:52:75:a8:
4d:ab:a7:b0:8c:3f:fe:96:69:d3:8e:24:a9:5c:06:
bf:e5:d1:42:a6:59:6a:29:ee:8e:b5:5c:9d:bf:0d:
8f:f2:9f:f6:e6:2a:62:43:aa:30:26:0d:32:49:54:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CC:D8:83:2B:6D:40:D0:EE:32:EF:F9:CD:5C:C8:D2:6D:6E:9E:37
X509v3 Authority Key Identifier:
keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6c:30:21:bf:a6:4e:91:bf:d1:1b:24:56:36:12:98:34:48:
c2:ec:d0:8e:e9:fe:e0:b1:f5:6f:6b:de:4b:94:f3:09:44:44:
ce:a0:ae:5a:9f:17:f7:01:c1:44:01:2a:26:67:74:d9:5f:b0:
5e:a1:29:2e:ad:13:2f:7b:7f:7c:2e:ce:96:13:52:90:85:f2:
e0:0d:d0:45:af:a0:04:fb:7c:5e:c8:68:c4:fd:f1:9d:9d:c9:
d3:a1:a3:f8:72:f3:92:af:b1:5e:f2:bf:d5:d1:8c:1e:0a:b3:
2e:98:80:0e:71:15:59:cd:1d:8e:b5:56:70:a1:7d:24:86:60:
0d:4d:c2:35:e6:c0:2a:50:57:d2:dd:89:d5:0d:a0:d2:34:47:
e5:01:0d:3f:4b:e0:ad:f3:81:e9:e7:75:56:2d:e1:e1:56:29:
26:1a:7c:e3:7d:34:e6:9c:a1:a6:22:0e:58:72:6d:d1:f6:56:
5a:e9:b0:c0:68:fd:a0:78:3e:63:b1:2f:8d:13:05:03:8e:ad:
97:95:82:a4:fa:25:03:d8:72:25:6f:b0:0c:fc:a2:27:fd:a8:
80:6b:38:4d:e1:04:ec:1d:ff:55:ae:b3:e1:5e:2a:e2:42:bb:
d6:99:08:fc:ba:b6:d6:5c:4b:33:b7:7c:c6:9c:bc:b8:b8:a8:
fb:0e:bc:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:09 2025 by rpki-client