Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: FoAI40dRsOgLa8IwEa2Q72eVxXFseE+8W16ae/S/RGc=
Subject key identifier: F9:D1:B0:A2:90:9F:06:DF:19:32:1E:EA:45:D7:E9:35:64:AE:69:C2
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 0197B77C098F6CC4CD21B9255727A6BFEB6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 17:00:48 +0000
Manifest this update: Sat 28 Jun 2025 17:00:48 +0000
Manifest next update: Sun 29 Jun 2025 17:00:48 +0000
Files and hashes: 1: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: P1kDFrzmbcTO4CyphwlZPrzrHEsq1GTZ7kWpT9alwMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:09:8f:6c:c4:cd:21:b9:25:57:27:a6:bf:eb:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: Jun 28 17:00:48 2025 GMT
Not After : Jun 29 17:00:48 2025 GMT
Subject: CN=f9d1b0a2909f06df19321eea45d7e93564ae69c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:eb:32:dd:46:51:56:40:4f:90:ae:0d:3a:a2:
68:52:77:d3:35:57:1c:b6:6e:29:81:62:8a:8f:4f:
d3:51:7e:fd:29:1e:f4:e1:1a:1f:0c:94:57:cb:28:
61:23:d8:23:8a:7b:db:61:3d:60:fe:32:42:c6:5d:
24:70:33:16:6e:ca:13:35:1b:50:d1:82:40:4f:fe:
6c:6f:0b:fe:60:42:b1:c9:fa:bf:81:ef:e9:dc:6b:
7e:5f:f4:79:15:7e:f6:de:ca:b6:53:4b:d8:f0:53:
46:7d:6b:44:fe:5e:03:23:af:19:9c:93:c1:98:fe:
20:3f:76:3a:95:97:59:fc:5d:e5:fb:b3:86:e3:7d:
8f:2f:24:31:00:e3:1d:5f:50:24:9b:0c:27:05:8c:
85:05:c9:09:f9:c3:5e:f0:f9:1b:be:53:43:e4:76:
34:5b:bb:e6:77:c0:68:26:11:32:8a:ea:9c:11:e2:
74:05:59:f1:06:09:3d:06:a9:d6:a4:60:e8:6b:9f:
79:93:a9:a2:ba:26:be:de:a3:62:e3:49:fe:a6:20:
93:51:35:07:40:ae:48:d0:69:d1:d5:0b:78:b3:bb:
ed:e0:a6:7d:b1:2f:e5:64:86:0f:69:1f:d1:89:85:
c0:82:e5:dd:a1:f4:d4:d1:e4:3f:df:21:bf:f9:dc:
1e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D1:B0:A2:90:9F:06:DF:19:32:1E:EA:45:D7:E9:35:64:AE:69:C2
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:27:e2:1a:27:46:81:1c:db:07:05:62:bd:97:9a:40:09:7f:
bf:7b:28:aa:4c:31:17:00:42:b4:4a:11:8c:59:f2:b8:fd:a8:
29:78:6f:59:63:f9:af:99:75:1d:3d:ba:fe:1d:58:a0:e2:f6:
3b:80:a6:3a:b6:d7:e9:0a:39:5d:74:9e:f0:f5:3a:c8:c1:53:
9e:4c:39:05:8f:4a:41:a7:18:63:c9:66:b4:9d:88:6c:b0:cf:
e3:9f:3b:09:9b:2b:e2:f8:a4:0d:8f:16:9d:2f:52:25:86:69:
fb:54:7f:a3:31:b4:b9:ee:9e:eb:50:52:20:a7:ee:00:db:bd:
76:cb:f8:3f:30:b9:a2:10:1e:83:29:90:df:b3:b7:29:67:97:
a6:66:39:a6:86:98:15:8b:df:48:19:56:90:74:32:da:4c:a7:
61:48:04:d0:9c:1d:b4:f4:48:b8:b4:73:24:41:b6:7b:34:e6:
c4:21:b8:4c:42:86:53:67:5f:9a:a8:30:71:f4:2c:d7:9f:c3:
33:40:6e:65:5e:8c:45:93:20:74:cb:d1:4e:c1:c5:47:46:88:
e5:23:ce:27:26:55:11:7b:c3:df:9c:27:41:b7:74:73:93:40:
e9:0d:7b:4c:63:7a:27:ce:94:92:31:c6:3f:79:1c:89:47:21:
59:44:77:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:59:31 2025 by rpki-client