Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: xISgleFq1FARZHt28SPCml0lvcmLxuVIiiBaKow4Qww=
Subject key identifier: EC:48:6A:EC:AD:CB:1C:33:E1:DF:65:74:A5:57:9A:43:2E:56:E2:30
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 0198D73B31EB37EAD2ED53343256147C50C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 14:00:37 +0000
Manifest this update: Sat 23 Aug 2025 14:00:37 +0000
Manifest next update: Sun 24 Aug 2025 14:00:37 +0000
Files and hashes: 1: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: FV/ZVxUhCjeskgDiM/mmGRJOrJWqysmNdDxfv4SB1v8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:31:eb:37:ea:d2:ed:53:34:32:56:14:7c:50:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: Aug 23 14:00:37 2025 GMT
Not After : Aug 24 14:00:37 2025 GMT
Subject: CN=ec486aecadcb1c33e1df6574a5579a432e56e230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c0:e3:02:00:c8:42:e5:18:b4:6d:2b:8e:be:
87:b8:7b:23:82:a4:c8:30:79:42:3f:1c:e5:a2:8e:
47:69:ce:91:ed:57:25:83:77:db:fa:12:0b:03:5b:
0c:a5:43:1e:bc:e7:b3:f1:78:71:4e:29:28:91:a6:
ab:f4:4b:62:7d:a8:87:9a:90:b4:0b:e7:88:d7:f5:
73:a4:1c:55:a4:89:e0:ca:65:b5:31:70:a0:27:67:
64:a4:6f:ef:ce:3d:14:18:6e:27:a6:72:15:cf:78:
7a:b2:ba:c1:bc:f4:21:be:9b:67:c5:3f:f3:dc:5a:
3c:90:d7:38:80:c0:06:be:5d:58:3a:fd:c9:d4:09:
25:41:bd:43:0e:8f:ab:92:3a:ae:cb:87:ea:b6:9b:
44:f2:12:72:91:66:ee:55:d8:1b:c4:46:07:ac:2b:
88:f5:1e:98:eb:23:38:c2:79:b1:d6:49:cb:64:cb:
01:71:a3:2f:4c:de:c1:b6:c4:6a:94:05:6e:62:f2:
74:2f:c3:1d:fb:83:64:73:92:16:cb:17:30:74:2d:
c6:80:2c:82:d0:58:41:64:dc:c6:df:0c:e2:e0:c7:
6f:33:c0:1e:2a:3e:de:19:8b:d5:7d:12:9f:0f:1b:
3d:22:8f:5f:27:97:e6:58:85:5e:08:72:d6:5d:27:
73:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:48:6A:EC:AD:CB:1C:33:E1:DF:65:74:A5:57:9A:43:2E:56:E2:30
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:e7:fd:b2:bd:db:4e:c0:7a:e5:aa:b3:6d:76:be:b5:7b:08:
e0:cf:dc:e2:42:51:8a:e5:f1:59:6d:23:2a:1d:80:2f:2e:5c:
ce:56:c3:05:77:fe:df:09:13:0f:2c:00:6c:9a:ce:b5:40:3c:
19:c6:d8:e8:25:12:b5:f9:9e:e7:f9:fd:33:fb:64:3c:66:ed:
a4:7e:62:1f:2f:c2:8f:81:8a:c6:46:fa:7b:c4:a5:9a:fc:18:
e1:df:19:7a:33:d2:7f:8d:49:12:cd:87:0c:43:0e:f5:4c:93:
64:8b:93:49:61:ee:74:23:17:bd:4b:14:b3:c6:84:12:9e:3b:
af:30:0a:64:c6:1e:8c:4c:73:ed:22:31:13:c5:af:a2:c1:d6:
09:d2:8a:61:89:14:91:a8:e1:cc:2e:83:d8:f0:1f:84:6a:3c:
7e:0c:13:c0:8e:21:52:47:c2:10:f5:dd:1c:f4:db:d0:00:1e:
dc:b4:07:72:82:7d:c3:99:4b:97:c2:45:13:2b:91:a6:2a:9a:
05:35:74:5c:ab:58:2d:ad:c0:72:e7:1e:d7:c2:e2:47:1d:a7:
d3:bf:e1:a8:7d:4c:86:98:b8:31:27:59:78:71:34:6e:b7:9e:
a3:5b:9e:a2:ba:1f:bb:9b:a3:8d:f9:91:48:1f:6d:71:80:ec:
fa:9a:01:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:29:38 2025 by rpki-client