Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: 4kjDy6flDJ88GLcZMtUSXjqAyMfgB7UBwYjYUOxBJG0=
Subject key identifier: E2:FE:F4:CF:C6:B2:DB:C2:B7:3F:89:F8:1C:93:18:65:E1:95:D4:5E
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 0198D4DFCBC8D9B76196828F99D9A0A100BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 03:01:33 +0000
Manifest this update: Sat 23 Aug 2025 03:01:33 +0000
Manifest next update: Sun 24 Aug 2025 03:01:33 +0000
Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: +a+ps3l7qHo5UylyRuc+aZstWoze9E18b8flcFhiJFw=)
2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:cb:c8:d9:b7:61:96:82:8f:99:d9:a0:a1:00:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Aug 23 03:01:33 2025 GMT
Not After : Aug 24 03:01:33 2025 GMT
Subject: CN=e2fef4cfc6b2dbc2b73f89f81c931865e195d45e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ba:09:71:85:c9:e5:32:c1:fa:22:4a:0d:8d:
b8:02:6f:78:49:9d:6e:d9:f6:f9:48:d0:e4:cc:37:
61:fd:5f:21:a3:e2:93:81:e7:c6:ee:3e:8e:87:25:
37:20:68:a8:10:64:7c:89:75:22:61:b8:b1:d5:9d:
8f:cd:1d:fa:5e:6c:40:76:2b:71:7b:0b:3b:1d:eb:
05:6d:26:84:f4:0c:3d:60:60:13:f1:df:25:ad:1f:
cd:c3:e3:dc:c9:25:70:00:2f:9e:d5:27:3f:98:06:
3d:a8:84:00:5f:b3:cd:c4:80:bc:f4:76:29:c2:a0:
dd:05:e6:5a:87:2a:19:9f:96:e9:09:8e:82:0e:6c:
69:9b:02:12:16:ca:0b:d4:52:ed:51:33:3a:94:4a:
cd:fd:d5:ca:49:99:0a:9e:af:4c:c8:7e:c0:12:61:
bd:97:36:c8:7b:bd:b5:cb:b0:4b:57:74:9d:eb:87:
ea:f1:28:d2:40:b2:8c:4e:c7:57:47:0d:05:0c:be:
d5:cf:ae:97:89:d7:fc:1a:62:4f:da:78:f8:58:aa:
f3:e5:5f:fc:7b:81:e8:70:c8:31:8a:0d:19:70:fd:
7c:50:dd:dd:05:a5:e1:9b:ac:b8:ec:43:d9:bf:7a:
66:70:8b:24:89:75:74:59:6b:01:a6:3b:d8:88:69:
d9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:FE:F4:CF:C6:B2:DB:C2:B7:3F:89:F8:1C:93:18:65:E1:95:D4:5E
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:f7:65:be:a5:bb:97:b6:27:91:b9:97:51:a0:44:c0:d1:ea:
a2:ca:72:ec:25:0d:9b:4c:3b:61:7b:8e:81:91:81:32:74:62:
8f:48:c2:10:19:ff:06:35:b2:d8:ad:53:0e:37:e9:be:1c:9f:
2b:2a:68:3a:34:97:b8:18:bf:01:d1:29:3a:ee:f8:17:e9:22:
ed:ba:d7:c1:6b:ce:ac:e2:25:ac:47:9e:23:6a:a2:3b:08:b5:
6d:53:b4:8c:3a:e6:c4:b4:bd:d9:03:57:85:66:e4:2d:af:ef:
88:a7:24:5c:be:22:9f:1c:fd:a5:6e:a6:de:7f:bc:3e:c9:8f:
25:f1:92:32:7c:28:ca:34:4a:8b:8b:82:0e:37:6e:e2:ce:28:
eb:ad:37:5d:7f:0e:85:dc:b1:d0:60:a3:a6:35:ea:63:e6:95:
68:e3:88:52:7c:82:93:41:31:28:cf:73:33:3f:9a:af:9b:06:
95:b7:a6:0c:f4:a0:f0:cb:7c:ba:8a:eb:fc:a0:e3:c6:ae:e1:
50:18:92:bb:a7:0f:1f:36:77:98:8d:ce:60:a1:68:e0:27:2c:
cd:d4:26:34:70:55:1d:64:aa:c6:a4:7f:9c:5e:e8:12:00:2f:
42:2d:21:c3:c8:8c:d4:ae:81:07:42:53:72:17:52:fe:0e:d8:
f9:17:5d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:37:43 2025 by rpki-client