Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: OfKikBu5e6N+y5g+gYFU/ah9fXfHSB95MGwBjpmLCd4=
Subject key identifier: 49:B0:88:17:86:39:4D:D9:4F:8D:3D:92:5B:93:51:56:E6:99:C5:63
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 019752A23C256297F2C003754FF63CF0C529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 03:00:53 +0000
Manifest this update: Mon 09 Jun 2025 03:00:53 +0000
Manifest next update: Tue 10 Jun 2025 03:00:53 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: 9Zeu0dCQ+qmMW18h1TufVzFuXaYjIXPF1F2b5GBOrBU=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:3c:25:62:97:f2:c0:03:75:4f:f6:3c:f0:c5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Jun 9 03:00:53 2025 GMT
Not After : Jun 10 03:00:53 2025 GMT
Subject: CN=49b0881786394dd94f8d3d925b935156e699c563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:83:67:71:4a:d8:b2:8d:3a:4a:36:1a:20:fa:
59:e8:97:64:06:4b:64:ae:af:78:62:dc:c6:6d:81:
33:8c:aa:7b:e9:2a:26:41:42:79:4e:da:5a:ed:34:
84:27:f5:b6:47:a0:c7:8b:db:b4:2a:9e:3a:47:21:
67:06:02:50:03:3a:d8:69:71:f4:33:6f:26:c8:6c:
b1:77:59:e3:e5:7c:6b:6e:bb:bc:16:77:3b:1c:23:
69:f7:d4:88:2c:ca:a7:86:b4:1d:83:bb:bc:51:04:
f5:b3:e5:38:8c:8d:21:df:73:22:a9:9f:b7:29:15:
8c:82:ca:e0:b5:c0:1e:1e:2f:27:93:6b:e3:66:4d:
c8:ed:47:09:37:09:9f:0a:b9:4d:0f:ce:93:57:a2:
34:b0:4a:9e:a0:f5:02:02:fe:14:b1:d6:30:ef:09:
2d:e5:0c:7d:6f:8a:ad:82:8a:bd:8f:33:87:15:49:
38:79:9d:b4:14:8b:08:2f:4c:f2:c7:58:5a:49:0a:
27:9a:7d:f0:54:3b:4f:2e:4b:cf:dd:10:68:54:42:
5a:57:bd:7a:1a:5e:34:2d:cf:20:1e:ec:f7:60:83:
6a:cd:93:4a:ae:c9:d7:bc:81:52:fc:e7:5b:5a:6d:
72:d0:ea:3b:32:44:e6:5d:7e:9f:58:cd:01:bd:7a:
69:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B0:88:17:86:39:4D:D9:4F:8D:3D:92:5B:93:51:56:E6:99:C5:63
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:22:f1:a6:8f:72:c3:68:2d:3e:2b:3d:47:b4:eb:5e:0d:a8:
30:ec:9a:3e:62:cf:7e:da:04:48:9e:19:40:bf:c5:4e:fc:94:
ac:c6:2a:31:6d:32:38:80:9a:98:69:18:76:ce:cf:53:7a:3b:
26:de:86:fc:81:b1:3d:ca:8c:0a:8b:c6:db:41:4f:38:1e:64:
f4:e6:d6:c6:56:c0:95:ab:29:90:66:cb:7e:eb:ac:a8:83:9a:
4b:a8:87:6c:9e:d1:8e:6d:70:1e:03:f2:11:31:a2:9e:b4:3b:
47:69:91:aa:63:17:02:fa:47:f6:d0:2b:b2:91:c7:8a:b4:69:
66:76:19:34:52:6f:0d:fa:f1:de:3a:d8:09:1b:72:0b:9a:df:
ae:fe:be:f7:d6:d1:32:18:1e:7f:92:e8:c5:81:96:9f:ef:e3:
09:fa:d5:54:2e:8d:c6:fb:89:f4:89:fd:d1:b2:7c:23:17:79:
19:b1:00:53:b3:13:01:e2:b2:42:b5:ae:e1:fb:52:01:76:0e:
79:10:3b:fa:5c:fd:be:8c:a5:1b:ec:58:96:ae:0e:87:c3:5c:
15:cd:25:e8:74:78:ee:59:ac:c1:b7:03:95:fd:3c:ee:5c:6c:
d9:2a:08:b3:a5:65:c7:6e:0c:59:47:bd:c7:62:a4:6f:47:0a:
6a:46:09:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:47:47 2025 by rpki-client