Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: Ptbx0/bSg0+EZ0JP+9w3yfHfCZbQU8dGNZ2Ke8oSMZg=
Subject key identifier: 29:3B:5A:89:0C:60:83:4E:22:DC:85:7D:41:43:C5:58:13:97:A7:C1
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 0199221F4BF6FF443D95C876909D77202D06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:01:40 +0000
Manifest this update: Sun 07 Sep 2025 03:01:40 +0000
Manifest next update: Mon 08 Sep 2025 03:01:40 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: rX9+EnZx9KVn5vF7N/QVizabnXlyEpVitgrEitT97zM=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:4b:f6:ff:44:3d:95:c8:76:90:9d:77:20:2d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Sep 7 03:01:40 2025 GMT
Not After : Sep 8 03:01:40 2025 GMT
Subject: CN=293b5a890c60834e22dc857d4143c5581397a7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:60:f1:2e:bb:e6:78:b0:e7:0c:93:39:bf:c6:
48:66:c1:98:dd:21:7e:e0:de:f7:a5:78:9e:a0:d1:
1d:48:14:11:68:2c:10:3e:bb:b8:e8:ca:b9:b8:a3:
ff:74:7a:ec:ae:fa:84:1b:38:f7:68:92:05:c1:34:
12:8d:6b:bc:55:15:a1:4e:12:73:eb:aa:3f:8e:e4:
0e:c4:15:0e:1a:c1:a9:a8:c4:25:90:a3:d9:cd:2f:
00:a2:4a:ac:c1:a1:c3:04:2a:05:97:e2:b0:0f:d3:
cf:a4:f1:5d:7f:ba:c2:42:a9:1a:3e:b5:8e:00:4c:
c2:4b:28:00:c0:63:21:2f:bb:b9:d0:6d:2a:fe:e7:
a4:1f:6d:d6:22:31:b9:a8:fa:e5:a4:04:62:5d:11:
cc:10:c5:4e:3d:9d:18:29:c3:92:cb:45:ae:cd:09:
9d:ad:46:51:e9:02:f8:d6:f4:d4:0f:6c:bb:61:1f:
4a:bb:e8:36:7e:db:1d:43:69:f0:a9:6a:32:f1:3e:
67:b3:24:17:61:ca:5d:96:b4:7c:11:f7:93:86:d2:
7b:11:ac:2e:88:44:af:fc:22:e7:11:41:84:b1:c5:
c6:d2:a6:e8:58:88:03:8c:57:df:9e:66:71:89:94:
44:59:24:3c:fe:03:4b:02:05:c8:07:0a:43:1a:bb:
23:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3B:5A:89:0C:60:83:4E:22:DC:85:7D:41:43:C5:58:13:97:A7:C1
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:f1:36:a7:67:14:f6:1a:6b:ee:90:72:e8:63:7f:9b:86:8c:
12:d9:87:96:dc:4a:48:fa:d2:d8:6d:22:d2:b2:ac:26:4a:43:
cc:08:38:d3:cd:c6:c4:4e:6b:8f:15:5d:1b:61:0d:ce:e9:10:
b5:30:46:80:50:bf:1f:a3:a9:3b:a4:39:7a:d6:2d:dd:52:d7:
00:e5:0b:a3:62:af:67:b5:a4:6b:da:e3:27:53:81:05:6c:af:
df:51:08:37:ba:8b:d6:4c:f2:23:2c:d5:29:f0:c0:cc:40:2c:
fd:f9:f9:9b:4d:34:c4:30:94:98:58:27:7f:bc:88:04:ed:76:
87:d4:04:1d:ef:6f:92:30:1d:ed:25:4f:1a:75:18:e5:76:2a:
b9:04:b4:8b:20:58:32:2e:86:f2:31:7a:18:70:74:39:b9:aa:
86:2b:fe:00:d8:b3:4e:28:45:a4:cf:0a:72:f4:c7:03:47:9a:
3a:f5:4e:5d:bc:66:76:06:ea:bd:78:04:3b:d5:6a:89:f8:4c:
41:5f:ae:4e:27:27:cc:1e:33:c8:06:31:a9:4a:02:4d:ca:75:
26:f4:65:0e:e0:9d:f4:98:32:4e:9a:ad:cf:f1:da:f4:f4:7a:
e8:c6:ce:d5:24:da:66:0a:9c:e5:5f:7e:f7:e6:d9:cd:66:f8:
50:7b:9f:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiH0v2/0Q9lch2kJ13IC0GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1
OGQ1ZmUwHhcNMjUwOTA3MDMwMTQwWhcNMjUwOTA4MDMwMTQwWjAzMTEwLwYDVQQD
EygyOTNiNWE4OTBjNjA4MzRlMjJkYzg1N2Q0MTQzYzU1ODEzOTdhN2MxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9WDxLrvmeLDnDJM5v8ZIZsGY3SF+
4N73pXieoNEdSBQRaCwQPru46Mq5uKP/dHrsrvqEGzj3aJIFwTQSjWu8VRWhThJz
66o/juQOxBUOGsGpqMQlkKPZzS8AokqswaHDBCoFl+KwD9PPpPFdf7rCQqkaPrWO
AEzCSygAwGMhL7u50G0q/uekH23WIjG5qPrlpARiXRHMEMVOPZ0YKcOSy0WuzQmd
rUZR6QL41vTUD2y7YR9Ku+g2ftsdQ2nwqWoy8T5nsyQXYcpdlrR8EfeThtJ7Eawu
iESv/CLnEUGEscXG0qboWIgDjFffnmZxiZREWSQ8/gNLAgXIBwpDGrsj7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCk7WokMYINOItyFfUFDxVgTl6fBMB8GA1UdIwQY
MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt
ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy
LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtvE2p2cU
9hpr7pBy6GN/m4aMEtmHltxKSPrS2G0i0rKsJkpDzAg4083GxE5rjxVdG2ENzukQ
tTBGgFC/H6OpO6Q5etYt3VLXAOULo2KvZ7Wka9rjJ1OBBWyv31EIN7qL1kzyIyzV
KfDAzEAs/fn5m000xDCUmFgnf7yIBO12h9QEHe9vkjAd7SVPGnUY5XYquQS0iyBY
Mi6G8jF6GHB0Obmqhiv+ANizTihFpM8KcvTHA0eaOvVOXbxmdgbqvXgEO9VqifhM
QV+uTicnzB4zyAYxqUoCTcp1JvRlDuCd9JgyTpqtz/Ha9PR66MbO1STaZgqc5V9+
9+bZzWb4UHufLQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:24 2025 by rpki-client