Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
File: GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json)
Hash identifier: CaonkqsCsK/wUbjAR/aue7tLo2KyxkQDCUPgw/iYNDQ=
Subject key identifier: FF:0E:EB:C1:11:25:80:D0:83:8A:3B:C2:14:EB:50:01:CE:FE:46:6E
Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
Certificate issuer: /CN=18745466b4e146830b962b74906db1c6d081fc70
Certificate serial: 0198D4E063DD2EC5E681BE783D4130E0F42D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
Manifest number: 160F
Signing time: Sat 23 Aug 2025 03:02:12 +0000
Manifest this update: Sat 23 Aug 2025 03:02:12 +0000
Manifest next update: Sun 24 Aug 2025 03:02:12 +0000
Files and hashes: 1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: Gbu30Cf2a57hyROwtjseXaJCOeRIUHMa0vtQGs0gQVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:63:dd:2e:c5:e6:81:be:78:3d:41:30:e0:f4:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70
Validity
Not Before: Aug 23 03:02:12 2025 GMT
Not After : Aug 24 03:02:12 2025 GMT
Subject: CN=ff0eebc1112580d0838a3bc214eb5001cefe466e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:d7:12:14:32:4c:5f:82:f5:9e:25:6b:2d:
19:f8:97:0b:72:5d:54:4a:bf:b6:12:f2:30:57:12:
2d:fd:6a:d0:03:59:c6:18:a0:67:80:58:85:ea:0e:
ac:a7:ca:1c:50:72:1f:ea:01:2a:62:69:8a:4b:a1:
2c:a4:b2:81:bf:d9:df:b2:2b:d6:13:82:ec:cd:b5:
5e:9e:ed:1b:c6:54:26:d7:b1:e0:a2:62:ba:ca:02:
f3:bf:8b:4f:a4:6c:d8:ad:8a:bb:4c:eb:77:79:07:
05:60:4c:79:77:a4:a9:07:e3:f4:80:63:55:16:3b:
5f:04:ee:24:dd:2b:0f:82:74:19:b5:6f:a2:b3:8d:
c2:57:65:bf:83:6f:11:be:d3:8d:66:a6:aa:66:f9:
91:18:0d:a7:fd:34:af:2d:22:0e:c9:39:f7:fb:d3:
15:71:ec:d5:94:c6:ea:f0:ca:56:80:3b:89:df:52:
84:82:3d:59:87:5c:e9:bf:c0:43:4b:b7:2c:fc:51:
4e:4d:18:f9:5e:bf:0a:20:75:55:6b:a8:f8:fc:b9:
56:1e:29:6b:a0:ed:fa:71:08:d3:d2:9a:4d:38:e7:
df:72:6c:b6:9d:da:2a:1d:c4:2b:69:93:a0:35:11:
db:6b:a9:c4:f7:2e:9f:67:65:dd:d9:dd:fe:a5:2d:
8e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:0E:EB:C1:11:25:80:D0:83:8A:3B:C2:14:EB:50:01:CE:FE:46:6E
X509v3 Authority Key Identifier:
keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ea:ed:e3:b2:ac:63:d8:a9:26:bf:17:c5:47:b4:35:74:f1:
6c:93:c7:fa:13:d8:94:81:5e:ca:49:bb:b7:f8:14:11:07:61:
36:13:55:0d:b5:fe:59:8f:8a:7f:f9:32:b8:dd:eb:f7:9d:65:
4b:07:8d:c7:f1:ce:6f:c3:be:ab:9e:7c:cd:11:6a:63:ab:81:
b6:85:82:f1:61:6e:51:40:2f:78:83:87:64:e8:03:c4:41:99:
c0:ca:d0:9e:f7:1c:f2:81:aa:6e:a8:e8:c3:72:d3:34:76:f6:
1f:ad:1c:4b:60:90:e5:11:98:6f:ac:b8:59:7f:bd:af:a4:ff:
65:f7:82:b4:82:17:51:5b:45:ef:37:7a:1d:7a:76:17:d6:e1:
94:d3:4c:59:b8:3c:3c:63:ad:3e:dc:33:4a:07:23:7d:01:79:
e1:a0:3d:0a:a4:e9:05:54:a2:38:25:bf:40:80:5c:a5:21:e3:
ff:77:60:e0:ab:89:17:47:e7:66:e0:aa:c6:a5:bb:6b:b4:a0:
ab:c0:62:23:8d:5b:ab:fc:fc:e3:44:d3:86:f8:ef:96:85:31:
c3:ac:14:c0:d5:e7:78:61:07:e0:b4:0c:93:59:bf:55:b1:18:
09:07:09:32:17:ae:3e:c0:84:f7:b5:dd:cb:11:c7:62:c6:7b:
74:46:c6:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:12:39 2025 by rpki-client