Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: KqU2qbMsSCY1Mn0h7ejvn6Q6ImCt+r2OXkOpvvwi1/4=
Subject key identifier: 69:85:D9:8C:2F:37:5A:2B:74:B8:EA:B0:84:A0:85:C2:5F:FC:55:B8
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 01975C49E80C556B2CCE26E5B27851393ECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1587
Signing time: Wed 11 Jun 2025 00:00:36 +0000
Manifest this update: Wed 11 Jun 2025 00:00:36 +0000
Manifest next update: Thu 12 Jun 2025 00:00:36 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: nrcJpWZGksOI/NEjpERoW5+5GlpjWTwlyMkWfdWNtJ4=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:49:e8:0c:55:6b:2c:ce:26:e5:b2:78:51:39:3e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Jun 11 00:00:36 2025 GMT
Not After : Jun 12 00:00:36 2025 GMT
Subject: CN=6985d98c2f375a2b74b8eab084a085c25ffc55b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:32:a4:72:69:d6:8b:58:ab:1e:ee:5e:98:3a:
64:ae:41:33:12:e6:1f:02:4b:e5:fe:4b:35:90:70:
48:ba:72:70:fd:98:0e:2d:37:2d:95:e3:8e:5b:cc:
47:9d:b3:5c:37:3d:69:f6:15:5d:b7:bc:85:64:65:
b2:71:88:cd:d3:75:6d:a7:57:33:cc:57:5d:a2:59:
37:60:98:ac:1a:9c:a1:bb:43:56:36:d6:50:03:41:
f4:2b:0a:70:b0:d0:60:bd:e8:6b:e3:03:99:db:21:
f1:1d:d7:57:37:00:be:dc:5f:78:63:60:30:7e:5f:
44:1d:9c:06:ce:d4:99:23:06:6f:c8:96:9c:8f:06:
89:73:07:c2:4d:ee:98:49:c2:98:f0:b1:89:0b:4e:
fa:83:e0:75:9e:d5:b6:e6:96:e5:36:41:0d:16:8d:
e9:db:92:dd:f8:d0:9f:2a:d7:7f:51:43:8e:a4:e2:
c7:55:0f:47:6e:1b:74:a9:03:8a:08:da:3a:67:03:
7d:3b:4c:a9:5f:16:93:c4:69:79:11:e8:33:05:f2:
cb:b0:0d:7e:eb:a6:cb:be:9c:ad:b5:00:90:01:d3:
73:88:88:1a:68:43:6d:b8:04:ce:2c:17:96:6c:27:
a1:7d:69:9d:f8:67:e7:80:3e:46:c2:b7:4c:05:4e:
1c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:85:D9:8C:2F:37:5A:2B:74:B8:EA:B0:84:A0:85:C2:5F:FC:55:B8
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:c9:95:e0:32:e7:91:86:61:05:bc:ee:f3:d2:34:23:ad:ef:
bf:64:1e:45:21:b6:02:9e:65:1d:97:76:61:df:d3:18:db:4b:
09:ab:ae:2f:00:a3:de:2a:4e:54:84:9a:52:50:86:92:75:95:
61:98:7b:3d:c2:5a:8c:e5:dc:e0:da:46:0b:c8:85:c7:ec:12:
4b:51:08:b5:47:f5:81:67:36:a8:15:00:9c:de:06:3f:69:a3:
d9:5e:41:0f:96:31:8e:28:63:fb:df:eb:43:41:4b:62:c0:d2:
e9:db:cb:9e:2e:0f:53:f1:28:46:0c:4f:ba:23:86:d5:5f:15:
f4:43:eb:51:96:ce:13:a4:3b:e6:8f:1f:bd:46:3b:f0:46:81:
5e:e1:48:89:51:ef:79:ca:86:e1:44:e2:f1:fe:17:5c:97:ba:
0d:61:7b:98:13:74:0a:2c:a4:6d:4b:54:61:86:75:dc:16:70:
5f:f4:e5:78:42:e3:8d:cf:c9:97:c3:44:ba:a8:eb:f4:4e:ab:
12:c1:f9:37:7a:03:82:3d:8e:59:12:7f:49:cd:b0:22:2a:78:
ae:90:7f:ed:fc:fb:b8:43:b1:50:60:a2:da:a1:54:ce:a8:1c:
f4:83:40:ab:5b:94:57:2e:27:a1:ac:36:cb:ed:8d:33:f2:6a:
2e:56:4b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:25:09 2025 by rpki-client