Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: YH4eFghVtW4IFbXUIz/CEAXRZj96ZLp5b4WcXj/znCk=
Subject key identifier: 33:48:F0:D6:5F:C0:71:3F:18:50:98:A4:45:32:EE:14:96:03:64:24
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 0199FE4747B10A86F96C943F1D059493D4EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 21:01:48 +0000
Manifest this update: Sun 19 Oct 2025 21:01:48 +0000
Manifest next update: Mon 20 Oct 2025 21:01:48 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: I+Homa1xI7dQxkOvGy4j+s+ViuD1JayCL0YxC3mN238=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:47:b1:0a:86:f9:6c:94:3f:1d:05:94:93:d4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Oct 19 21:01:48 2025 GMT
Not After : Oct 20 21:01:48 2025 GMT
Subject: CN=3348f0d65fc0713f185098a44532ee1496036424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d5:a3:e3:f2:8d:2d:20:53:4b:47:b6:3e:8b:
41:59:1c:0f:89:b5:1e:88:0f:5d:7a:2d:17:ec:29:
89:e9:42:dd:10:4b:94:91:9f:79:ee:ae:54:4d:3c:
24:2b:e8:ae:5e:85:53:3d:9c:16:93:76:b1:40:db:
b4:38:49:ab:96:34:5f:37:34:51:c1:05:9a:a6:eb:
ef:fb:f8:a9:99:26:6f:3d:02:44:b5:ac:d7:d4:5a:
74:e5:7d:39:36:26:a2:7c:0f:41:8f:25:81:36:59:
fc:3d:c7:c0:bc:10:c5:0d:01:2b:54:df:b8:1f:f0:
2e:2b:26:a6:43:32:21:e3:ca:65:30:4e:8f:1c:96:
32:be:2e:96:37:62:95:55:ad:39:58:b9:94:66:34:
3a:6a:cd:1a:96:21:c6:93:35:f0:4c:ea:2a:00:46:
21:c9:61:fd:63:29:69:32:9a:d5:0a:fe:61:29:2f:
30:aa:68:df:00:01:a0:0f:2c:2f:cf:a9:5e:b4:4f:
36:bc:9a:4a:8b:c1:4c:f5:01:39:36:8a:59:e7:da:
f1:fb:44:ae:c5:1a:cb:6c:88:ac:3e:b5:29:84:62:
7d:58:51:8f:d0:46:db:ba:10:46:56:ba:d7:0a:cd:
3c:e1:60:4d:6e:93:34:40:1c:c1:4b:46:0f:fb:2b:
95:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:48:F0:D6:5F:C0:71:3F:18:50:98:A4:45:32:EE:14:96:03:64:24
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:93:ab:12:67:ac:11:d4:4a:04:06:8b:fc:12:05:85:f5:29:
dd:4b:0d:e8:f0:9e:49:f8:1d:b0:de:15:d9:47:d0:89:f4:7a:
55:d6:20:80:0b:fb:25:12:8d:bc:7f:39:1d:db:14:18:90:27:
26:79:d7:35:fe:a7:e1:67:af:f8:40:c9:7e:13:21:19:9f:0d:
31:63:e2:b4:69:5b:0f:86:a4:25:c9:a3:0d:0b:4f:c6:45:a1:
2f:38:05:95:48:ae:10:4e:51:a8:66:f7:ff:e9:8b:5c:8d:3b:
06:d9:76:2d:a8:5a:60:17:d8:10:6c:99:ea:62:7e:fe:a9:e5:
5e:01:da:e0:a6:16:58:cc:76:35:33:f5:1f:15:28:70:ec:4a:
6d:34:2b:e8:51:7f:2b:c1:ca:0a:f0:83:a5:e6:83:7f:01:7d:
7c:3b:f7:c3:e3:ab:51:da:96:a1:de:cc:ee:ff:48:60:ae:3b:
52:d6:ce:6b:cf:df:f4:bf:cd:3d:46:cb:83:57:17:f5:b9:a1:
4a:7f:85:5f:fd:c9:0c:11:f8:d1:fe:63:a8:66:a2:41:36:b7:
1d:78:2f:0b:cd:6a:a5:a8:be:d8:65:47:37:3e:85:25:83:24:
33:2b:33:b3:46:8e:95:71:28:07:f2:8d:f1:92:87:e9:d5:f2:
cb:c4:40:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:48 2025 by rpki-client