Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: JUruEYDU6gz7U3Te8fhGOKH0TmMnFYpaXdCqZcIaiXY=
Subject key identifier: B7:12:10:CB:46:5D:C5:F3:3F:A5:CA:22:95:14:FB:BC:C4:DB:5F:B0
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 019D27E0069B897D81A80378267553D58177
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 02:01:26 +0000
Manifest this update: Thu 26 Mar 2026 02:01:26 +0000
Manifest next update: Fri 27 Mar 2026 02:01:26 +0000
Files and hashes: 1: Pwvl_Zcat1KTzpuXYTtavIgP748.roa (hash: iLZ+jEw20ZEVrfeL0bdjMhqCq56ZpvLuivOan0qgqsE=)
2: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: 5G3wF9avuSFZh3HpaGjfCuGxLVeVqoqX3wOkQb7NxU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:06:9b:89:7d:81:a8:03:78:26:75:53:d5:81:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: Mar 26 02:01:26 2026 GMT
Not After : Mar 27 02:01:26 2026 GMT
Subject: CN=b71210cb465dc5f33fa5ca229514fbbcc4db5fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:92:26:98:9e:dc:c8:c2:4b:7d:e3:9f:41:3d:
b8:91:7a:03:86:ce:f3:c8:50:04:95:f3:ea:85:99:
94:97:32:86:4d:36:53:88:c8:df:a6:67:86:06:04:
18:ec:eb:85:cd:b0:a5:f8:b5:8c:36:0b:78:2e:e6:
50:88:56:d9:65:5e:cd:f6:fa:fa:f1:32:e1:db:ad:
37:80:88:7e:48:26:b1:e4:64:58:22:fa:93:e8:30:
0c:9a:f8:e6:10:b2:4e:c6:f8:de:d8:30:fe:89:dc:
09:d0:63:22:c6:6c:d1:67:94:9e:c5:ff:74:10:f0:
07:e9:46:f8:38:ff:62:1c:6a:1b:67:9c:c6:d7:f9:
5a:f8:0d:4b:41:02:32:d0:62:0c:b1:60:d5:a5:ba:
71:61:12:a6:19:bd:17:da:4e:74:14:d7:28:8a:da:
a3:b0:1f:10:35:39:8e:20:de:33:ea:33:0f:a1:fc:
75:e8:b8:34:92:6a:62:d9:0c:54:50:ca:c4:f8:b9:
59:10:79:08:ed:d3:99:51:87:b8:6d:40:43:b3:3c:
f9:1c:c1:64:f4:e6:1d:c7:d4:97:34:29:32:ff:6b:
5b:a0:88:ea:67:6a:87:36:55:c6:f1:c8:d6:09:d6:
b2:97:51:0e:cf:d7:eb:1d:ec:c0:af:ad:07:99:42:
5f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:12:10:CB:46:5D:C5:F3:3F:A5:CA:22:95:14:FB:BC:C4:DB:5F:B0
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:c3:81:2c:c0:15:81:ea:ad:1a:c1:fc:fb:cb:f5:4d:03:b1:
fc:11:39:31:4b:2a:c0:00:5c:51:3c:1e:74:b1:8c:13:5d:58:
62:bb:ff:c7:21:64:c7:65:8b:ab:74:1e:2c:9d:ff:3d:91:bd:
06:26:7d:1c:41:f3:b8:d5:19:dd:c1:b4:a9:b0:7d:38:35:d3:
ea:ee:45:b9:5f:53:1e:6f:70:d5:0b:fd:67:93:36:1b:41:43:
e4:28:b7:96:e7:b9:08:79:50:02:da:a4:e4:60:e3:cf:0d:ce:
64:07:4a:6a:10:8f:f0:cd:ac:98:9c:00:0b:06:67:04:43:b1:
28:85:54:d5:19:27:27:60:bf:55:90:13:e8:cc:d7:ed:d8:fc:
7b:32:7a:08:c4:6e:3e:39:52:6d:13:04:80:0c:32:67:20:f5:
c6:99:ee:b9:be:9f:39:d7:c8:14:ef:68:8d:ad:b5:68:8a:08:
e5:9d:eb:1c:ab:4a:09:38:16:06:16:6b:d0:0b:31:ba:16:66:
49:36:22:d3:c3:bc:d4:a3:19:bf:b8:06:f9:59:96:5a:49:b5:
9c:d4:95:d0:20:e5:b5:92:cb:2e:ed:e2:5a:a2:ec:15:3d:d9:
55:2c:58:b2:79:d2:72:cc:b0:27:0a:0e:1f:a2:b9:9c:1e:1a:
8f:28:28:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:12:25 2026 by rpki-client