Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: A9v9AWm02nrTMyZSyELK8QX6+ed7jT6DjSSZ/Lz02gk=
Subject key identifier: F7:A3:CA:AC:61:E1:A6:18:42:03:CD:82:CF:D7:BB:86:CB:BD:B0:97
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 0196BFDCBC64AB4233984ADCF5F99F78C30B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1536
Signing time: Sun 11 May 2025 15:00:36 +0000
Manifest this update: Sun 11 May 2025 15:00:36 +0000
Manifest next update: Mon 12 May 2025 15:00:36 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: ewyeF0OIQLK4JlLO3s9YjE2R82iypJAusO4eej+x/qQ=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dc:bc:64:ab:42:33:98:4a:dc:f5:f9:9f:78:c3:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: May 11 15:00:36 2025 GMT
Not After : May 12 15:00:36 2025 GMT
Subject: CN=f7a3caac61e1a6184203cd82cfd7bb86cbbdb097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3a:e5:dc:a4:58:4d:12:68:2c:c9:91:cc:e2:
5c:86:71:14:2a:5e:73:e7:6f:72:6c:e9:ba:8e:67:
e6:e4:ee:45:01:c4:2a:66:b3:11:c6:2a:18:25:86:
c7:33:01:bf:b3:3d:00:c5:f8:5a:fb:c9:9a:86:c8:
99:09:01:a8:0d:46:43:bc:e0:4a:ca:7f:ed:ba:9b:
46:e9:b7:d6:f2:07:1a:d8:16:7f:49:cc:dd:ba:c6:
6b:57:bc:15:c1:64:22:b2:75:37:45:64:91:6b:07:
04:ca:66:a6:d4:c7:09:65:1a:5d:22:4d:bf:f6:80:
6b:ae:75:25:d0:a6:51:37:4d:e2:35:4c:47:73:8a:
84:fb:e2:22:91:dd:89:b9:7b:3b:c0:4f:7d:89:8e:
82:45:b9:2a:e2:e5:86:64:95:5e:14:a4:8d:f8:85:
cd:fd:d1:53:6a:a9:8d:56:ef:86:78:9f:7e:3b:5b:
e0:c7:2b:87:07:ee:f8:96:29:38:f0:09:a5:d1:a4:
61:af:f6:1f:95:c1:87:bd:7b:3c:d3:ac:8d:93:ab:
27:c6:37:22:cc:c6:3d:c2:7a:5f:32:e3:1f:66:6c:
85:39:27:81:a0:d5:a0:43:b0:16:43:a6:db:13:83:
c7:05:de:fe:16:84:14:5e:33:75:c7:41:14:f9:1b:
d6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A3:CA:AC:61:E1:A6:18:42:03:CD:82:CF:D7:BB:86:CB:BD:B0:97
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:aa:6b:6a:69:43:f5:ee:da:8c:ef:51:64:07:ec:f0:a5:25:
84:e8:63:c8:71:ac:82:18:7e:0e:73:1e:df:85:2e:e4:36:47:
83:ec:df:30:17:44:3d:3e:67:00:fe:53:89:40:35:e6:1f:f8:
93:29:49:7f:cd:9d:50:b6:5a:57:17:50:b6:0d:54:6a:ed:3d:
37:49:05:58:c3:22:8a:07:a8:b4:84:86:f2:c9:b9:3d:7f:07:
2a:91:11:20:bc:e1:aa:c4:33:6e:fc:c5:10:7b:40:fa:db:9d:
ac:d4:ad:e8:04:3c:56:64:6f:4a:67:e5:36:4c:b9:86:f5:83:
4c:e2:1e:97:1b:c2:3e:e3:51:10:f5:6a:f4:36:ac:ad:4f:0d:
7d:5e:3a:c2:01:88:aa:35:e9:15:63:c9:bb:69:09:87:97:b7:
e7:66:df:f6:e2:23:d2:7d:5d:ab:f2:a9:c1:18:f4:04:7d:0c:
1f:09:cc:3b:c5:b1:e9:53:53:a7:4d:e2:20:c9:57:44:3e:ea:
37:3d:43:dd:03:57:4a:04:15:ec:48:96:56:20:55:e4:87:5a:
a5:1d:07:11:6a:47:ce:b5:fd:f5:75:1c:9c:c2:58:c5:45:f3:
08:de:93:f7:38:17:cc:bf:0b:52:71:16:95:ea:59:4c:23:6a:
94:99:4a:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/3Lxkq0IzmErc9fmfeMMLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1
OGQ1ZmUwHhcNMjUwNTExMTUwMDM2WhcNMjUwNTEyMTUwMDM2WjAzMTEwLwYDVQQD
EyhmN2EzY2FhYzYxZTFhNjE4NDIwM2NkODJjZmQ3YmI4NmNiYmRiMDk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTrl3KRYTRJoLMmRzOJchnEUKl5z
529ybOm6jmfm5O5FAcQqZrMRxioYJYbHMwG/sz0Axfha+8mahsiZCQGoDUZDvOBK
yn/tuptG6bfW8gca2BZ/SczdusZrV7wVwWQisnU3RWSRawcEymam1McJZRpdIk2/
9oBrrnUl0KZRN03iNUxHc4qE++Iikd2JuXs7wE99iY6CRbkq4uWGZJVeFKSN+IXN
/dFTaqmNVu+GeJ9+O1vgxyuHB+74lik48Aml0aRhr/YflcGHvXs806yNk6snxjci
zMY9wnpfMuMfZmyFOSeBoNWgQ7AWQ6bbE4PHBd7+FoQUXjN1x0EU+RvWCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPejyqxh4aYYQgPNgs/Xu4bLvbCXMB8GA1UdIwQY
MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt
ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy
LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIapramlD
9e7ajO9RZAfs8KUlhOhjyHGsghh+DnMe34Uu5DZHg+zfMBdEPT5nAP5TiUA15h/4
kylJf82dULZaVxdQtg1Uau09N0kFWMMiigeotISG8sm5PX8HKpERILzhqsQzbvzF
EHtA+tudrNSt6AQ8VmRvSmflNky5hvWDTOIelxvCPuNREPVq9DasrU8NfV46wgGI
qjXpFWPJu2kJh5e352bf9uIj0n1dq/KpwRj0BH0MHwnMO8Wx6VNTp03iIMlXRD7q
Nz1D3QNXSgQV7EiWViBV5IdapR0HEWpHzrX99XUcnMJYxUXzCN6T9zgXzL8LUnEW
lepZTCNqlJlKFw==
-----END CERTIFICATE-----
Generated at Sun May 11 22:49:15 2025 by rpki-client