Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: duCQYjtHV26Boe0Z2oEi1FbXmX0aMad4dxwV4RvND2s=
Subject key identifier: A3:1C:D1:BA:FB:E1:5B:57:73:9A:0D:82:2D:C1:BE:01:60:C3:62:2E
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 019E1F47FEB4BC8F3082408414C7DB4EC134
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 03:01:12 +0000
Manifest this update: Wed 13 May 2026 03:01:12 +0000
Manifest next update: Thu 14 May 2026 03:01:12 +0000
Files and hashes: 1: B923TTC0Df04C2WKB5eoCgT73fQ.roa (hash: u8SWrYqzCDPEqqAsY+pz5LjUeslP1zMGGkEQ+CEEG6g=)
2: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: NaU77/B3bJK3g2GQBi9HwVrSM6RVPxTGzAOwlp3z42g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:fe:b4:bc:8f:30:82:40:84:14:c7:db:4e:c1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: May 13 03:01:12 2026 GMT
Not After : May 14 03:01:12 2026 GMT
Subject: CN=a31cd1bafbe15b57739a0d822dc1be0160c3622e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d8:69:93:ca:d8:ec:40:98:2a:90:f8:a9:ef:
59:5b:89:4a:d6:eb:43:14:37:13:52:41:1e:ba:75:
fc:2f:67:82:76:66:66:05:24:71:0b:5a:16:6e:eb:
b0:e9:d5:d7:d6:e9:3c:d8:d7:bf:34:62:6e:0b:75:
2c:b6:78:0e:0a:e6:03:26:a8:cf:31:a0:d4:a1:d5:
24:3c:c7:6d:f0:fd:13:16:1c:69:ea:5f:8c:1a:20:
b0:c2:a5:4b:e4:f0:af:2c:71:dd:80:4d:de:64:66:
ca:3a:ba:38:e0:93:b7:69:1e:65:f8:a5:c5:7d:bb:
d3:fa:38:18:09:72:0a:e7:50:a8:f9:e8:d0:a3:05:
e9:88:e7:c7:7b:b3:e7:af:f7:29:f9:b7:98:b7:1f:
e6:6c:7e:26:42:11:32:ed:87:0a:55:c6:0f:bd:ba:
82:46:90:58:56:83:7a:f6:d6:3a:de:37:2a:e7:50:
fa:e5:a1:1a:08:3a:a7:68:22:d7:25:43:5c:66:82:
8c:c1:00:d1:6e:e9:24:a6:35:fa:c1:d8:5d:54:c0:
55:e4:e9:26:3b:fa:13:51:cb:54:4e:8a:22:4a:a5:
81:4f:31:7f:58:de:b6:16:1f:79:0f:31:8e:f8:0d:
f7:01:5e:e6:53:39:1a:1d:7b:7f:28:99:6d:cd:c7:
0c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1C:D1:BA:FB:E1:5B:57:73:9A:0D:82:2D:C1:BE:01:60:C3:62:2E
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:8e:23:c4:26:af:51:6a:bd:03:bc:90:43:dc:63:35:25:00:
c7:56:c6:fb:4e:d9:05:18:0f:2e:9d:85:81:13:12:7b:db:9b:
2a:6e:b1:fb:fe:6b:2a:0b:3e:62:9a:4d:38:15:2a:f6:8c:c2:
de:54:30:83:af:dd:8c:5c:b6:8c:06:e0:07:01:a7:6c:68:e8:
10:ec:2e:79:ed:d7:b3:4d:57:99:32:bf:12:ab:71:09:cf:e2:
13:02:98:bb:02:f1:f8:2b:6d:15:5c:95:0b:d9:da:1f:34:dc:
04:78:55:be:c2:4c:4e:01:b8:14:1e:d3:3b:1a:a3:8f:63:c8:
3e:a4:01:61:ac:39:f1:29:00:c4:4f:25:7b:49:93:39:aa:41:
79:4a:b4:22:d0:3f:c0:95:d9:6f:ff:c7:3d:4d:5c:e0:48:2b:
af:f8:46:94:7f:aa:27:9c:42:a8:43:83:8d:2e:d4:92:b5:35:
5a:76:c2:02:02:e0:19:54:1b:8d:58:28:56:b9:fc:0e:ec:db:
ea:51:f4:40:cd:c9:a7:cf:db:be:01:ed:44:ac:ef:16:5f:7d:
9f:9e:33:55:d5:a1:a7:ab:11:95:8d:1d:9c:1b:37:c9:a6:3e:
45:1e:fd:43:71:86:5e:af:6b:d9:4a:d5:5a:09:96:32:3a:df:
bc:07:9f:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fR/60vI8wgkCEFMfbTsE0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1
OGQ1ZmUwHhcNMjYwNTEzMDMwMTEyWhcNMjYwNTE0MDMwMTEyWjAzMTEwLwYDVQQD
EyhhMzFjZDFiYWZiZTE1YjU3NzM5YTBkODIyZGMxYmUwMTYwYzM2MjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9hpk8rY7ECYKpD4qe9ZW4lK1utD
FDcTUkEeunX8L2eCdmZmBSRxC1oWbuuw6dXX1uk82Ne/NGJuC3UstngOCuYDJqjP
MaDUodUkPMdt8P0TFhxp6l+MGiCwwqVL5PCvLHHdgE3eZGbKOro44JO3aR5l+KXF
fbvT+jgYCXIK51Co+ejQowXpiOfHe7Pnr/cp+beYtx/mbH4mQhEy7YcKVcYPvbqC
RpBYVoN69tY63jcq51D65aEaCDqnaCLXJUNcZoKMwQDRbukkpjX6wdhdVMBV5Okm
O/oTUctUTooiSqWBTzF/WN62Fh95DzGO+A33AV7mUzkaHXt/KJltzccMtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKMc0br74VtXc5oNgi3BvgFgw2IuMB8GA1UdIwQY
MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt
ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy
LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk44jxCav
UWq9A7yQQ9xjNSUAx1bG+07ZBRgPLp2FgRMSe9ubKm6x+/5rKgs+YppNOBUq9ozC
3lQwg6/djFy2jAbgBwGnbGjoEOwuee3Xs01XmTK/EqtxCc/iEwKYuwLx+CttFVyV
C9naHzTcBHhVvsJMTgG4FB7TOxqjj2PIPqQBYaw58SkAxE8le0mTOapBeUq0ItA/
wJXZb//HPU1c4Egrr/hGlH+qJ5xCqEODjS7UkrU1WnbCAgLgGVQbjVgoVrn8Duzb
6lH0QM3Jp8/bvgHtRKzvFl99n54zVdWhp6sRlY0dnBs3yaY+RR79Q3GGXq9r2UrV
WgmWMjrfvAefxw==
-----END CERTIFICATE-----
Generated at Wed May 13 07:03:38 2026 by rpki-client