Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: vf9pqavUpwQYaDbGa9C0BnCJjnWwFAZ/m+K3YDKm3PE=
Subject key identifier: B9:93:D6:EF:2F:AA:04:D3:3D:FC:3F:5E:9F:90:84:CE:70:7A:F4:11
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 019E1F11263CF9F1D1565E04E2020014C557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 1905
Signing time: Wed 13 May 2026 02:01:18 +0000
Manifest this update: Wed 13 May 2026 02:01:18 +0000
Manifest next update: Thu 14 May 2026 02:01:18 +0000
Files and hashes: 1: Pwvl_Zcat1KTzpuXYTtavIgP748.roa (hash: iLZ+jEw20ZEVrfeL0bdjMhqCq56ZpvLuivOan0qgqsE=)
2: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: aSed5o9ozIvQtWfM4CQkDEgnQvKwMAG1VjUKskhDCfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:26:3c:f9:f1:d1:56:5e:04:e2:02:00:14:c5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: May 13 02:01:18 2026 GMT
Not After : May 14 02:01:18 2026 GMT
Subject: CN=b993d6ef2faa04d33dfc3f5e9f9084ce707af411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:93:5a:66:5d:0c:5f:de:bf:22:4e:eb:55:62:
ec:59:fc:94:fc:c5:c0:6e:98:09:fd:57:ea:4f:79:
11:02:fa:71:19:67:22:be:5d:7c:77:9d:f0:a2:3f:
59:c0:fc:6b:20:e2:1e:b4:70:c7:f6:6b:f8:1c:35:
f4:f8:1e:64:e0:46:c5:e5:67:ff:70:8f:a9:16:7b:
60:69:25:07:89:71:68:99:26:5b:b0:ba:e4:43:51:
93:0a:1e:12:25:76:ad:f8:e0:7d:8b:37:8a:b9:b5:
8c:db:e3:52:71:37:3f:e0:58:ca:5f:c8:7f:53:7a:
9e:3f:12:1b:31:0b:7f:48:98:cb:3e:60:5c:9b:83:
b0:46:47:05:66:0a:33:3f:d6:72:5a:b1:7b:e0:14:
73:51:c3:d9:1b:58:cc:c0:97:d2:25:58:75:4c:b7:
ae:75:c7:27:2e:35:96:28:67:2f:a2:36:7d:52:4e:
4e:ed:31:3f:18:2d:63:b0:d6:28:8a:2b:57:09:ec:
27:99:b0:cb:f9:7e:a6:d8:45:ed:8f:12:8a:3c:fa:
7a:b4:d4:64:c0:f2:13:44:05:a5:f8:6c:e6:aa:7e:
de:85:d0:c9:01:88:03:e4:88:de:20:77:38:37:0c:
8b:02:56:8d:7f:4d:dc:b8:88:1c:5e:ce:f8:fc:14:
a6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:93:D6:EF:2F:AA:04:D3:3D:FC:3F:5E:9F:90:84:CE:70:7A:F4:11
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:ab:5a:19:0c:1c:9a:f9:aa:de:fb:1a:df:a6:32:78:f6:1b:
c0:af:06:ee:30:65:77:70:da:68:73:2c:c3:2b:15:b0:1c:2e:
de:19:82:59:84:ef:9b:96:a1:51:a2:bf:5f:91:e5:ad:36:95:
53:19:27:c2:c4:68:b3:ba:3c:0d:ee:e2:26:00:a9:20:d4:98:
0f:f4:96:92:5a:20:4f:60:ad:09:b8:f5:e7:84:26:83:1c:da:
58:86:7c:58:d0:c0:d6:0c:7a:92:7d:d4:01:ef:29:09:7e:96:
88:60:f4:39:d0:b0:95:50:61:3f:fa:ee:cc:86:95:d0:a4:10:
76:96:f3:41:e2:86:ff:cf:94:e7:9a:ab:47:6e:6a:59:aa:6d:
5d:a6:94:3f:bc:d7:66:04:fa:06:5d:25:18:19:04:3f:26:1e:
74:45:26:77:c2:0e:29:35:b2:82:63:ef:ac:09:d8:79:26:cb:
71:5d:b4:c6:8d:06:bc:3f:49:7d:92:c1:52:10:39:bf:0d:45:
62:8b:f3:da:91:06:1b:42:07:55:a4:89:9e:1f:06:86:54:e7:
79:f7:90:c4:83:70:dd:ae:bb:a4:fc:a4:8d:f4:e1:e0:3e:e0:
75:e5:a2:f2:06:dc:71:6b:7c:ca:07:a1:c0:ff:79:fc:75:56:
28:74:98:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fESY8+fHRVl4E4gIAFMVXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYjlhMGE3M2UzYmE1NjkzODFkZGRhNmQ2NDcwZGM3Yzg3
M2M5NTkwHhcNMjYwNTEzMDIwMTE4WhcNMjYwNTE0MDIwMTE4WjAzMTEwLwYDVQQD
EyhiOTkzZDZlZjJmYWEwNGQzM2RmYzNmNWU5ZjkwODRjZTcwN2FmNDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5NaZl0MX96/Ik7rVWLsWfyU/MXA
bpgJ/VfqT3kRAvpxGWcivl18d53woj9ZwPxrIOIetHDH9mv4HDX0+B5k4EbF5Wf/
cI+pFntgaSUHiXFomSZbsLrkQ1GTCh4SJXat+OB9izeKubWM2+NScTc/4FjKX8h/
U3qePxIbMQt/SJjLPmBcm4OwRkcFZgozP9ZyWrF74BRzUcPZG1jMwJfSJVh1TLeu
dccnLjWWKGcvojZ9Uk5O7TE/GC1jsNYoiitXCewnmbDL+X6m2EXtjxKKPPp6tNRk
wPITRAWl+Gzmqn7ehdDJAYgD5IjeIHc4NwyLAlaNf03cuIgcXs74/BSmNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLmT1u8vqgTTPfw/Xp+QhM5wevQRMB8GA1UdIwQY
MBaAFG65oKc+O6VpOB3dptZHDcfIc8lZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnJtZ3B6NDdwV2s0SGQybTFrY054OGh6eVZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9jYWE2OGUtN2E5ZS00Y2FlLThkMmEt
ZTkwMjE5YmM4ZmYxLzEvYnJtZ3B6NDdwV2s0SGQybTFrY054OGh6eVZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9jYWE2OGUtN2E5ZS00Y2FlLThkMmEtZTkwMjE5YmM4ZmYx
LzEvYnJtZ3B6NDdwV2s0SGQybTFrY054OGh6eVZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk6taGQwc
mvmq3vsa36YyePYbwK8G7jBld3DaaHMswysVsBwu3hmCWYTvm5ahUaK/X5HlrTaV
UxknwsRos7o8De7iJgCpINSYD/SWklogT2CtCbj154QmgxzaWIZ8WNDA1gx6kn3U
Ae8pCX6WiGD0OdCwlVBhP/ruzIaV0KQQdpbzQeKG/8+U55qrR25qWaptXaaUP7zX
ZgT6Bl0lGBkEPyYedEUmd8IOKTWygmPvrAnYeSbLcV20xo0GvD9JfZLBUhA5vw1F
Yovz2pEGG0IHVaSJnh8GhlTnefeQxINw3a67pPykjfTh4D7gdeWi8gbccWt8ygeh
wP95/HVWKHSYUA==
-----END CERTIFICATE-----
Generated at Wed May 13 08:16:57 2026 by rpki-client