Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: 3Co56z24iaCha5RkFOAip7G0JdgX0tiFIL5uUWuaSB4=
Subject key identifier: 8E:B5:DC:62:49:37:A8:62:0C:45:08:3D:F6:43:3D:20:10:FF:7D:C9
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 01984A41020E8EC451E66D5AD3B87F0ABB0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 15FF
Signing time: Sun 27 Jul 2025 05:00:30 +0000
Manifest this update: Sun 27 Jul 2025 05:00:30 +0000
Manifest next update: Mon 28 Jul 2025 05:00:30 +0000
Files and hashes: 1: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: m5rodbpnuGDNXaebqMOXulHU7JStCyjjGfoET6kYqAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:02:0e:8e:c4:51:e6:6d:5a:d3:b8:7f:0a:bb:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: Jul 27 05:00:30 2025 GMT
Not After : Jul 28 05:00:30 2025 GMT
Subject: CN=8eb5dc624937a8620c45083df6433d2010ff7dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:20:fd:3b:77:50:da:90:14:9f:be:a5:9f:
88:45:14:37:b2:15:10:34:78:1a:85:14:5d:8c:a6:
af:2e:fb:8c:0a:fb:8c:00:84:60:5e:74:2b:77:27:
e6:71:ea:71:9a:95:f9:9a:69:46:80:7c:15:2a:d1:
c6:2c:4e:27:45:45:c4:e2:84:a8:e1:6c:47:77:d0:
69:ae:10:8c:24:1b:e0:31:d8:ed:8f:14:f5:6b:d3:
ca:ba:b0:74:f0:49:a5:26:a4:12:40:8f:78:3a:17:
d3:95:d6:17:04:ad:fa:bc:59:5b:e2:e0:d3:ce:52:
f1:a5:db:7f:16:e6:a2:c7:26:d5:26:cf:43:02:8a:
10:95:ee:d1:9b:ee:f0:e1:71:85:89:63:22:2e:e5:
22:ed:de:c4:e5:b8:91:5a:3a:82:96:d1:0b:89:03:
8a:6c:55:f9:f3:34:5e:f9:71:b9:7c:93:a8:a7:af:
d4:0c:f5:d6:69:4b:35:c8:67:c6:12:65:d4:4a:5d:
8d:33:a7:29:b2:48:44:5b:f9:be:e5:49:dd:d4:a7:
8b:86:29:65:a9:9e:eb:85:a5:fc:6b:59:35:ad:8f:
f8:82:82:3d:82:e6:4d:49:a4:a1:83:93:99:75:56:
3a:62:06:17:bf:54:52:05:a5:10:fd:cf:35:74:60:
04:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B5:DC:62:49:37:A8:62:0C:45:08:3D:F6:43:3D:20:10:FF:7D:C9
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:b3:02:9a:4f:60:16:62:99:a3:e6:8f:6e:fd:e3:01:14:f6:
bd:bd:d6:30:d4:ba:a3:9a:b5:69:47:d3:36:9a:3e:c6:43:1f:
a2:f5:b4:32:ed:da:3f:c9:a5:ed:06:06:fc:e8:93:a3:f2:ab:
ae:d9:39:25:72:54:7e:bc:c3:8b:84:7f:9d:41:50:fd:6e:12:
08:44:2a:08:7a:ed:27:ab:cf:34:2e:cb:b1:e8:90:ea:66:61:
58:4f:69:4d:49:b8:6d:0e:90:fe:e5:4d:7e:19:ae:a6:09:00:
2b:e3:d7:09:9b:cd:47:fa:c0:1c:82:0d:da:ad:5b:2e:d7:0e:
fb:ca:b1:e1:5c:47:0e:86:54:15:a0:0a:88:ce:a8:bf:48:27:
bd:6e:db:c3:77:80:1e:77:ba:32:a8:c2:a7:42:b3:09:87:17:
bc:f7:d0:8b:af:e6:19:91:01:b2:b9:f5:42:a6:66:6b:23:7b:
99:d4:16:c0:e0:35:b2:a6:6a:e0:70:23:92:9d:73:2a:fa:dc:
82:08:dd:dd:15:c0:44:8a:36:e6:02:44:bb:5f:90:15:1e:4d:
92:c5:d0:aa:b5:66:98:9f:4a:2a:2b:f6:65:a2:8d:d4:4a:e1:
07:c3:b5:e4:04:8e:f1:40:b2:89:ab:5b:62:4c:15:44:df:27:
9a:2a:3b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:27:10 2025 by rpki-client