Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: /6qLasEpRLQ/TABYlLSaitfEjyu0kCTIeShVmZsASZw=
Subject key identifier: 39:74:14:A6:CE:75:53:6F:F9:64:7B:40:DC:2C:E7:88:52:4E:25:00
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 0196A1647533811BAA94D247867B05FE705A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 1523
Signing time: Mon 05 May 2025 17:00:37 +0000
Manifest this update: Mon 05 May 2025 17:00:37 +0000
Manifest next update: Tue 06 May 2025 17:00:37 +0000
Files and hashes: 1: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: yvGev/RgYZac+HVSNz1t5+vZf8K2Hle1W7zQTh6OJxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:64:75:33:81:1b:aa:94:d2:47:86:7b:05:fe:70:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: May 5 17:00:37 2025 GMT
Not After : May 6 17:00:37 2025 GMT
Subject: CN=397414a6ce75536ff9647b40dc2ce788524e2500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f8:14:bc:50:59:2e:8a:9c:c6:5a:83:f9:f5:
7d:9f:3c:86:cb:5f:ef:b4:81:94:ee:91:fb:26:33:
c5:ac:15:81:77:4e:aa:63:58:d4:37:9a:f0:11:75:
0a:a0:95:84:4a:d4:d3:8a:60:58:a1:b1:08:98:6a:
90:76:57:fc:7d:6a:b6:e7:3d:26:67:3a:89:c5:31:
eb:e3:1e:5a:ad:c3:1e:52:a1:4c:e3:bb:41:96:5a:
6c:b1:84:04:ed:a2:ca:d3:5a:ce:d3:84:0d:86:7f:
3c:28:85:28:ec:b4:f3:2d:7d:25:84:5d:d7:72:1e:
2f:1c:11:d8:4c:8f:01:35:33:8b:c6:85:11:27:f4:
11:ed:48:a8:a5:c2:dc:dc:2b:ce:4e:42:3e:cb:8c:
a2:b2:f7:1f:6d:d0:a4:62:00:40:52:21:dd:e8:a0:
b0:4c:a7:f6:04:40:a8:f6:6e:16:cb:dd:77:5b:f9:
2b:87:8c:94:e9:9a:2b:99:8c:48:60:e3:9d:7f:6b:
22:d7:da:65:4e:84:44:f3:17:07:47:4d:4c:e6:a9:
55:98:45:82:1d:65:a2:c2:62:0e:51:06:ea:ec:6e:
53:a1:46:69:61:ff:9e:d0:ad:71:36:7f:b4:6c:1e:
ca:b3:8f:2c:7a:2f:a6:3f:b3:df:2b:09:e1:a9:f3:
e3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:74:14:A6:CE:75:53:6F:F9:64:7B:40:DC:2C:E7:88:52:4E:25:00
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:a7:71:13:ef:4f:58:c6:94:df:31:06:d6:b9:4e:a2:be:f8:
2e:a1:66:46:b5:07:b4:60:3c:15:0f:4a:5c:9d:15:4f:7a:fb:
b2:10:72:59:fe:b4:a9:68:e2:11:86:54:1f:43:fa:f8:79:13:
a0:0f:ec:1c:ed:b7:1b:e2:3c:b7:3a:a5:f0:b8:d0:6d:c9:84:
c8:49:1c:68:a2:ab:da:63:8f:97:22:b3:6f:f8:28:24:9f:38:
2b:a7:90:6b:cc:0c:4c:61:10:de:2c:dd:11:46:85:ba:40:1c:
89:16:ff:7a:68:8b:37:16:3e:d6:d8:aa:a3:b6:2a:a5:fa:47:
3f:6a:35:78:db:22:fa:20:67:a8:e6:75:ba:2a:3d:26:c3:42:
ef:b6:76:85:2b:f1:41:b4:ed:01:b7:21:35:7d:97:34:71:2f:
07:a1:22:21:3e:a4:70:1b:f4:56:8e:44:bb:03:59:93:63:38:
2f:c2:87:13:f8:32:5b:28:47:5c:54:cd:c1:5c:8d:89:f5:98:
1f:f1:58:f0:14:fd:10:f0:14:a6:ed:42:c2:17:a6:6b:73:2f:
80:4c:82:f6:41:9b:ef:a3:e0:65:08:9f:92:4b:06:b4:ad:0a:
f9:aa:d5:83:6c:c3:bf:7c:d0:bf:2f:69:12:15:11:01:f9:6b:
42:8b:c4:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 19:58:40 2025 by rpki-client