Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
File: GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json)
Hash identifier: ZoB//oQejOtyqqJ3qdESQjiUbgZz9ZJdy3k9n77Yx7c=
Subject key identifier: CD:76:01:6E:71:DF:9D:79:29:61:BE:4C:33:1B:71:3D:54:09:3D:F9
Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
Certificate issuer: /CN=18745466b4e146830b962b74906db1c6d081fc70
Certificate serial: 019D38D2DF38033ECAF57D752B52B82398C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
Manifest number: 1855
Signing time: Sun 29 Mar 2026 09:00:36 +0000
Manifest this update: Sun 29 Mar 2026 09:00:36 +0000
Manifest next update: Mon 30 Mar 2026 09:00:36 +0000
Files and hashes: 1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: MWkxiDZTKqRWo/o3wzxV5rhJErlIplMoEcSC7w5+SwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:df:38:03:3e:ca:f5:7d:75:2b:52:b8:23:98:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70
Validity
Not Before: Mar 29 09:00:36 2026 GMT
Not After : Mar 30 09:00:36 2026 GMT
Subject: CN=cd76016e71df9d792961be4c331b713d54093df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ee:6a:16:7a:53:3f:af:85:bb:37:1e:65:1d:
0e:31:7e:1d:e5:e5:3f:c5:d2:62:b2:51:60:59:a4:
1c:16:38:b2:41:dc:bd:b7:e4:56:a9:17:0e:cf:96:
32:76:e8:6b:60:f9:4f:5b:e7:d4:8a:07:bc:5c:58:
44:64:71:3c:64:af:52:e6:34:f5:43:25:8a:9b:2c:
61:3f:83:56:fa:46:64:90:59:e2:c9:64:f7:a8:b9:
3c:52:2c:34:6e:36:21:52:51:ba:25:5d:e1:37:06:
8b:d5:10:1e:87:f5:8b:1c:27:6f:5d:1f:ee:67:c2:
fc:8e:ec:bf:fc:52:6a:94:ad:6d:66:e9:ba:d3:03:
cb:7c:43:12:a6:02:d4:2c:98:0d:16:8f:7b:35:3d:
7e:e0:a8:8e:b5:3d:5b:49:87:e7:22:ee:2d:b4:4a:
b9:7e:1c:69:b0:e9:6b:14:50:04:1e:f5:eb:a1:49:
0e:6e:65:41:49:0f:cd:f6:e9:cc:6a:04:2d:d7:6e:
31:e1:f8:74:71:b8:f3:55:a3:48:0b:1a:7a:39:1c:
ea:59:05:ba:37:07:cf:19:cf:76:a2:51:d2:21:c7:
61:c6:29:9d:76:6a:27:3d:fb:87:18:fb:c7:73:84:
e6:f9:ad:2b:d7:62:41:b0:4b:10:ea:9e:87:49:de:
5e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:76:01:6E:71:DF:9D:79:29:61:BE:4C:33:1B:71:3D:54:09:3D:F9
X509v3 Authority Key Identifier:
keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:97:37:e6:75:96:70:90:a5:fb:66:96:ab:83:a9:65:3f:e4:
93:e6:21:42:e4:00:64:71:63:5b:da:b7:b8:ae:ba:a4:b7:1c:
ed:94:0f:18:f1:ee:8f:a2:59:ff:30:37:79:4e:01:47:84:ea:
7d:23:62:49:06:0c:c9:8c:a1:48:4f:67:b1:3c:12:ac:a8:ff:
21:75:aa:84:1d:21:e6:af:1a:e6:62:51:9e:b4:97:50:e8:7b:
b1:27:d0:34:1e:b2:e3:d9:41:66:2c:23:9a:d0:78:d1:0a:23:
d6:4a:b7:2d:63:21:2d:f8:2b:58:b4:fd:6b:0a:60:94:15:e1:
8e:92:f6:e7:1f:0f:96:2a:7d:79:48:72:5e:99:1b:aa:63:51:
f2:a6:59:b9:52:97:cb:05:cb:0c:94:2a:97:d8:3e:74:88:03:
97:09:a9:e1:5e:c7:3f:0e:63:3c:07:54:45:c7:81:75:b0:59:
57:3f:1a:94:21:99:d0:07:46:3b:e4:aa:70:82:e4:a5:de:0a:
5a:82:38:cc:4f:bb:9e:9e:da:40:b1:d8:54:15:7b:c6:aa:82:
56:01:93:07:4c:01:ae:40:b3:b4:a6:72:8f:05:7c:3f:7e:46:
71:03:39:c5:5d:79:5c:9e:00:f7:4e:73:da:4e:81:dd:5e:46:
32:8c:a2:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:43 2026 by rpki-client