Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: 1aNIjFbYS/LT/ayHU8WgQnpRSBejnOxG09O5O3WSQ90=
Subject key identifier: 7B:12:18:4E:D4:63:6B:45:14:56:33:C9:C4:14:2F:AC:44:5E:BC:A2
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 0197B70E6962CC22543690521FCD76C5F931
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 15:01:04 +0000
Manifest this update: Sat 28 Jun 2025 15:01:04 +0000
Manifest next update: Sun 29 Jun 2025 15:01:04 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: mlMJ94d/sCaRop1NvJWEwoJD3VS8ASOrafS1Gq2sft4=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:69:62:cc:22:54:36:90:52:1f:cd:76:c5:f9:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Jun 28 15:01:04 2025 GMT
Not After : Jun 29 15:01:04 2025 GMT
Subject: CN=7b12184ed4636b45145633c9c4142fac445ebca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b2:89:a5:08:7a:64:aa:1c:75:35:44:d7:d3:
32:bc:23:bf:49:9a:2c:c0:b3:03:fa:a6:76:f0:93:
eb:6b:48:28:4f:06:45:2c:52:dc:3f:91:49:bb:ef:
35:c2:0b:b5:d8:44:36:40:9e:c7:e3:05:e2:d3:ea:
ed:be:bd:96:aa:81:28:23:c5:11:cf:50:22:79:08:
ea:2e:3a:29:97:bc:e6:26:fb:85:0e:0e:bf:c4:30:
89:7e:b8:69:67:82:66:a7:95:3f:31:ce:91:88:4e:
67:0c:20:ed:78:25:1e:c4:e6:da:55:2f:55:89:94:
c7:87:4a:53:87:e9:10:e3:bd:62:c6:69:fc:c8:36:
23:43:fb:92:4d:fd:ec:b0:3c:c0:c0:87:a3:ba:58:
75:af:5f:a4:09:4b:db:90:72:01:5b:cd:ee:c6:24:
38:a6:23:81:2b:a3:90:40:3f:e2:c3:c2:de:37:60:
61:ff:6c:10:28:be:94:60:b9:bd:b7:c4:9e:f2:20:
a5:2c:bc:08:dc:71:23:48:db:b7:c7:9d:0a:b3:89:
49:81:a2:b8:b0:0d:e1:55:07:e3:36:64:2d:d4:8c:
23:ea:5c:54:9e:c9:af:bc:e2:4d:30:73:a9:88:25:
ee:c7:e6:db:b0:e3:56:d2:2f:6d:1a:b7:4d:b4:3d:
41:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:12:18:4E:D4:63:6B:45:14:56:33:C9:C4:14:2F:AC:44:5E:BC:A2
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:0c:f5:98:33:4b:d4:fd:24:ac:98:96:79:cc:0f:77:a5:c0:
f6:2f:76:9e:bd:5f:86:e9:3f:4a:4c:49:fc:36:53:3f:79:16:
9d:71:c2:a7:85:9a:e3:1c:e9:c2:6f:92:8f:0a:71:a0:aa:65:
f2:6c:d6:98:0b:29:db:3e:8d:1f:b5:67:ae:cf:6e:df:f5:db:
cc:13:07:48:98:fa:ab:c3:af:67:f1:64:02:e6:dc:5b:f4:71:
25:75:4c:18:22:8f:82:01:b1:1f:64:93:26:cd:e8:7e:f9:46:
d1:15:29:cc:20:bc:03:72:78:64:59:4c:2b:ad:33:ce:3a:8e:
0f:09:d9:02:81:62:54:05:43:de:4f:f4:54:0e:60:94:58:16:
73:3c:85:b3:f6:2f:68:d9:23:09:5a:1c:0c:da:4d:7a:c8:11:
a1:64:71:40:26:84:29:53:7f:ef:f8:b0:e8:6f:cf:01:bb:01:
52:c5:25:ff:25:2b:85:4d:3e:d1:96:71:f8:5e:06:cb:cb:df:
00:47:1c:6c:86:64:27:9f:7e:63:60:4c:55:f5:89:a8:ae:e6:
1c:3a:98:69:47:73:a1:a3:f1:ad:6d:53:1c:e4:96:4d:36:b3:
eb:14:3d:ce:4c:00:63:15:cd:83:c1:6d:e0:eb:2c:5c:9f:5b:
c3:13:4d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:46 2025 by rpki-client