Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
File: a-BR-5PgFam3YbtFr-EJ2740fGY.mft (raw, json)
Hash identifier: GXdXVgOgdlle0iloi2FhSlGlT+SqM9aSSxkuv+sp5no=
Subject key identifier: D0:9E:C4:15:2E:32:CA:A3:9D:C5:49:5E:9B:24:71:50:61:D0:BC:0F
Authority key identifier: 6B:E0:51:FB:93:E0:15:A9:B7:61:BB:45:AF:E1:09:DB:BE:34:7C:66
Certificate issuer: /CN=6be051fb93e015a9b761bb45afe109dbbe347c66
Certificate serial: 0197B77C6DB1455CA92E6C29E47BC6D95851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
Manifest number: 0566
Signing time: Sat 28 Jun 2025 17:01:14 +0000
Manifest this update: Sat 28 Jun 2025 17:01:14 +0000
Manifest next update: Sun 29 Jun 2025 17:01:14 +0000
Files and hashes: 1: a-BR-5PgFam3YbtFr-EJ2740fGY.crl (hash: ckjLmZcRDXHE9CN6L3/WYuMmtyhl4aexxwaPpF0dVHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:6d:b1:45:5c:a9:2e:6c:29:e4:7b:c6:d9:58:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6be051fb93e015a9b761bb45afe109dbbe347c66
Validity
Not Before: Jun 28 17:01:14 2025 GMT
Not After : Jun 29 17:01:14 2025 GMT
Subject: CN=d09ec4152e32caa39dc5495e9b24715061d0bc0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:87:f2:15:b6:3f:b2:53:71:05:c3:33:22:30:
23:2a:34:a0:a4:19:12:a3:71:f5:25:b1:fe:6a:13:
b3:e7:b7:3e:fa:d6:1d:7b:d1:ac:74:18:82:3f:5d:
94:00:25:2b:8e:1e:c6:81:34:c3:79:9e:2c:b5:43:
9d:08:2c:76:98:90:3e:0f:d1:de:ec:62:40:6c:fc:
ce:6e:26:72:7f:7b:d9:01:8d:94:25:e5:6d:bf:76:
a7:c2:37:7e:2c:68:60:15:06:5b:6c:fe:3c:12:b4:
60:34:cd:c4:4d:a1:86:49:f4:72:de:5b:77:5e:39:
7b:ee:b2:23:d4:b9:7b:f2:b9:a3:06:92:99:f8:92:
20:2b:21:f0:04:f7:f6:33:7e:dd:7e:81:e0:ec:06:
d0:f8:ff:cf:ea:f0:72:12:fd:b3:6c:43:2f:68:70:
38:84:90:89:06:2d:1c:c8:cd:5f:42:65:f0:f2:af:
0a:72:89:b0:a8:0f:2a:ff:bb:f5:37:a7:ad:b6:ad:
07:76:71:c7:41:37:48:d3:a0:88:3f:d7:57:e6:10:
10:d2:5f:6f:3c:05:d5:58:27:2e:54:c6:7d:84:d1:
d6:14:3c:af:3c:73:92:a8:b6:24:ff:be:64:b8:6f:
5c:28:77:5b:1d:34:5b:0a:15:d0:c1:e6:2d:6d:62:
ae:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9E:C4:15:2E:32:CA:A3:9D:C5:49:5E:9B:24:71:50:61:D0:BC:0F
X509v3 Authority Key Identifier:
keyid:6B:E0:51:FB:93:E0:15:A9:B7:61:BB:45:AF:E1:09:DB:BE:34:7C:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:f1:22:19:9f:ab:a3:e8:7a:3b:2b:8d:0c:8d:73:88:d8:1e:
a0:f6:b8:88:e4:bb:de:d9:21:d3:fb:52:20:1f:6a:38:2f:f3:
dd:4a:16:ca:75:aa:02:de:fd:30:9c:0c:ef:54:f0:08:b4:29:
0f:36:fa:29:7f:8f:4c:5f:69:a2:30:0d:1e:e5:18:2b:f0:08:
fc:56:cd:96:62:cf:b6:0f:7a:72:4a:6a:61:f4:a3:54:83:63:
85:67:bb:dc:a6:81:a2:a5:3d:c6:e6:0b:b0:61:c1:0e:27:f2:
9e:85:8a:3c:03:94:9e:83:5d:96:da:60:8a:18:bc:70:a2:82:
13:8b:bb:b2:53:f4:11:91:a3:d4:bb:97:80:34:3a:54:ab:1e:
1b:e3:05:2a:d7:01:aa:e7:53:ef:dd:58:5b:a6:14:b1:be:11:
fb:0a:88:10:7e:6c:d6:f8:6a:45:ba:59:16:f4:91:bd:ce:9f:
bb:3b:67:88:13:6f:c9:1e:f3:18:7f:4a:90:ee:ec:0f:fa:93:
7c:9f:de:7c:46:2b:4c:c2:84:00:50:1b:69:37:e2:7f:01:0f:
48:b8:2e:62:4f:d2:df:d3:a9:b3:18:6f:0e:7e:e6:6b:71:5c:
23:5c:33:b5:1a:db:c7:71:ae:9d:7b:77:eb:ed:29:7d:90:57:
a8:39:bc:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fG2xRVypLmwp5HvG2VhRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZTA1MWZiOTNlMDE1YTliNzYxYmI0NWFmZTEwOWRiYmUz
NDdjNjYwHhcNMjUwNjI4MTcwMTE0WhcNMjUwNjI5MTcwMTE0WjAzMTEwLwYDVQQD
EyhkMDllYzQxNTJlMzJjYWEzOWRjNTQ5NWU5YjI0NzE1MDYxZDBiYzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ofyFbY/slNxBcMzIjAjKjSgpBkS
o3H1JbH+ahOz57c++tYde9GsdBiCP12UACUrjh7GgTTDeZ4stUOdCCx2mJA+D9He
7GJAbPzObiZyf3vZAY2UJeVtv3anwjd+LGhgFQZbbP48ErRgNM3ETaGGSfRy3lt3
Xjl77rIj1Ll78rmjBpKZ+JIgKyHwBPf2M37dfoHg7AbQ+P/P6vByEv2zbEMvaHA4
hJCJBi0cyM1fQmXw8q8KcomwqA8q/7v1N6ettq0HdnHHQTdI06CIP9dX5hAQ0l9v
PAXVWCcuVMZ9hNHWFDyvPHOSqLYk/75kuG9cKHdbHTRbChXQweYtbWKuPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNCexBUuMsqjncVJXpskcVBh0LwPMB8GA1UdIwQY
MBaAFGvgUfuT4BWpt2G7Ra/hCdu+NHxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYS1CUi01UGdGYW0zWWJ0RnItRUoyNzQwZkdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yNWY4NWUtZDA3MC00ODhiLTg5ZjYt
ZjRlNTlmMzlhNzRhLzEvYS1CUi01UGdGYW0zWWJ0RnItRUoyNzQwZkdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8yNWY4NWUtZDA3MC00ODhiLTg5ZjYtZjRlNTlmMzlhNzRh
LzEvYS1CUi01UGdGYW0zWWJ0RnItRUoyNzQwZkdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfEiGZ+r
o+h6OyuNDI1ziNgeoPa4iOS73tkh0/tSIB9qOC/z3UoWynWqAt79MJwM71TwCLQp
Dzb6KX+PTF9pojANHuUYK/AI/FbNlmLPtg96ckpqYfSjVINjhWe73KaBoqU9xuYL
sGHBDifynoWKPAOUnoNdltpgihi8cKKCE4u7slP0EZGj1LuXgDQ6VKseG+MFKtcB
qudT791YW6YUsb4R+wqIEH5s1vhqRbpZFvSRvc6fuztniBNvyR7zGH9KkO7sD/qT
fJ/efEYrTMKEAFAbaTfifwEPSLguYk/S39OpsxhvDn7ma3FcI1wztRrbx3GunXt3
6+0pfZBXqDm88g==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:49:34 2025 by rpki-client