Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: 7HA5CYawSKgd8FyfAoZuPQTLLqDzvVubnwyLyuaFHek=
Subject key identifier: 45:16:18:9E:22:28:E5:5B:57:83:38:9A:5D:97:1B:29:5D:33:0E:F3
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 019F1867B111A25346D3D84B7107D9696BD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 12:01:16 +0000
Manifest this update: Tue 30 Jun 2026 12:01:16 +0000
Manifest next update: Wed 01 Jul 2026 12:01:16 +0000
Files and hashes: 1: B923TTC0Df04C2WKB5eoCgT73fQ.roa (hash: u8SWrYqzCDPEqqAsY+pz5LjUeslP1zMGGkEQ+CEEG6g=)
2: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: 4t259EGPPYZaHaGhEidKf8Rew7Cl412XHZ0TxD8SrdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:b1:11:a2:53:46:d3:d8:4b:71:07:d9:69:6b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Jun 30 12:01:16 2026 GMT
Not After : Jul 1 12:01:16 2026 GMT
Subject: CN=4516189e2228e55b5783389a5d971b295d330ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a3:9b:01:39:cd:3b:46:dd:8b:88:ee:33:2d:
69:01:5a:42:19:41:36:a4:ef:c6:f2:fe:ee:ae:44:
7e:2a:eb:77:28:20:0a:93:32:f4:8e:03:b2:75:2c:
10:37:a1:32:33:ab:f3:3f:5c:4b:ff:82:d4:10:76:
37:2c:31:3d:5f:ba:2e:77:68:1a:f8:f0:53:a4:33:
66:76:21:9c:30:56:6b:59:6e:22:49:6a:7e:77:6a:
c6:b0:ff:8f:f7:e1:13:56:8f:45:76:d0:4a:5d:ad:
d0:e4:50:3f:86:7c:7c:ac:9c:a4:70:3c:ac:dc:dd:
69:1d:a1:fb:dd:c3:6c:0e:85:87:b7:12:85:94:9c:
5a:d4:1c:ca:d6:1f:01:25:40:ba:5e:e6:f6:36:db:
61:cb:6f:9f:38:05:66:53:84:46:27:32:cf:a5:de:
72:e5:96:d4:df:26:72:8f:ac:2f:92:4a:c7:64:1c:
72:51:86:1e:4a:05:a3:22:89:a5:37:6e:1b:03:d2:
3e:e7:b6:0c:c3:05:09:42:b8:31:0e:6a:5b:cf:bc:
98:8d:18:be:d2:84:0a:83:36:bd:6f:95:f6:9b:88:
da:d1:78:a0:99:c1:fa:26:95:70:bd:84:17:67:2e:
a0:2b:65:58:b2:d1:ea:8f:ad:b7:82:e2:37:66:f6:
39:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:16:18:9E:22:28:E5:5B:57:83:38:9A:5D:97:1B:29:5D:33:0E:F3
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:45:ef:d6:9c:13:e9:90:9e:7a:ed:f3:4f:00:f7:8f:f6:12:
81:40:25:ca:87:b7:2f:51:19:9e:39:cc:25:b4:5a:aa:6d:16:
e6:f1:83:05:87:61:04:bb:20:4a:34:0b:74:0a:dd:ad:83:b4:
16:06:a7:5a:35:24:7b:f5:f7:4a:5f:11:07:8e:70:41:d3:de:
91:2c:a1:68:ff:bd:19:9c:25:20:cb:2e:55:9d:56:81:35:f8:
f8:81:e9:ad:b7:7b:31:ed:a7:c6:e5:58:44:02:53:d7:95:37:
ef:7c:84:4b:d2:a9:be:fa:ab:ee:b3:bb:69:f3:21:59:61:c1:
d3:23:95:7d:a7:ef:ae:07:70:ad:a3:19:e1:55:07:c7:64:26:
8e:23:f3:8a:47:73:90:f7:97:af:e7:7d:ff:8b:5d:4d:e4:14:
69:bd:5a:8a:7c:63:4a:e5:77:b0:f8:90:71:a3:26:fa:9e:d8:
15:d9:d4:94:cd:1c:89:2e:b1:0d:9e:ae:90:34:15:3b:df:8e:
3f:12:13:7b:35:bc:a9:d9:4a:10:12:1b:b5:43:57:03:da:20:
6b:e3:8a:21:49:3c:5b:0e:b4:4a:c3:b4:96:f6:d8:92:28:4d:
5f:e5:1b:27:58:b8:67:48:79:cd:d1:e1:04:39:4c:5e:71:06:
c2:6f:a8:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:19 2026 by rpki-client