Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: gidiVOBCRQzjTBwtL+EdRIaTpZlhIxDpBBtxe+jS8Qs=
Subject key identifier: 69:11:57:B0:BD:AB:9F:8B:61:8A:82:21:D2:21:39:65:19:AE:16:98
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0197B632854565863FB24BA9A01A01C2E219
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 11:00:53 +0000
Manifest this update: Sat 28 Jun 2025 11:00:53 +0000
Manifest next update: Sun 29 Jun 2025 11:00:53 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: 7FefC9N2FH0QrSRX8NlW4BtFMX5hSjilmhpBzUILxpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:85:45:65:86:3f:b2:4b:a9:a0:1a:01:c2:e2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Jun 28 11:00:53 2025 GMT
Not After : Jun 29 11:00:53 2025 GMT
Subject: CN=691157b0bdab9f8b618a8221d221396519ae1698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ec:1d:81:f6:81:1a:fd:5a:01:68:87:13:26:
91:2c:5a:61:8c:b5:4b:4e:ae:6a:7b:4a:15:38:0a:
c5:47:d8:5a:3e:00:99:e3:7b:05:7d:17:65:ba:ec:
0e:aa:26:44:63:13:60:36:76:cc:a7:f8:d7:59:67:
9f:d6:93:76:14:04:df:64:87:11:3a:57:e7:c8:72:
48:a0:0c:66:f5:db:12:56:d2:88:b3:fb:02:4e:d2:
44:1c:5f:ff:85:31:29:6c:43:51:3d:36:d2:cd:ea:
b8:d9:8a:20:d8:fa:b1:ac:21:82:f2:39:87:36:44:
dc:57:3a:51:4c:44:5e:9d:b9:96:b6:6f:61:fd:ed:
f0:0e:cb:02:b4:c6:e4:37:a3:d6:51:29:d5:6f:40:
e8:4c:99:01:9e:e2:5e:25:3b:34:a7:ba:1c:04:4d:
5c:b3:19:f5:a5:29:cb:eb:68:a2:01:e5:63:56:52:
b6:15:3a:64:b6:73:c9:60:71:1b:86:64:fb:9a:67:
24:e2:5d:af:91:98:3f:9f:b0:e3:27:ad:ba:8f:b6:
ec:30:b9:57:43:05:b3:a9:e7:5f:9e:3f:27:0e:51:
cc:67:a4:c1:38:5a:c4:18:87:7b:f4:03:78:05:74:
4e:0b:8f:bd:e3:e4:ed:d5:1c:3b:9c:35:23:fe:a4:
48:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:11:57:B0:BD:AB:9F:8B:61:8A:82:21:D2:21:39:65:19:AE:16:98
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:ff:17:2c:e1:36:7e:65:e5:28:fc:b0:a0:31:72:04:64:cf:
7d:5e:36:e9:cc:b3:cb:d7:eb:71:0a:89:93:ad:94:75:a6:9a:
ec:e3:f5:59:49:76:02:da:5c:70:41:a4:b3:55:7d:99:5b:62:
6a:d9:17:61:29:21:9d:c2:cb:64:3a:55:d1:41:74:9a:15:6e:
e1:ec:cd:12:04:9b:25:09:16:2d:eb:f8:10:f2:df:ba:0f:ee:
18:4b:e4:ab:e9:12:0f:e1:eb:83:bd:b5:46:d3:93:51:ac:77:
ab:75:db:b1:7e:9e:6e:a7:fb:ef:54:a6:8d:43:84:00:de:29:
91:7f:3a:1e:2e:0e:64:e0:79:4d:9b:1b:ca:68:5f:f3:91:72:
d5:fd:29:8c:9a:10:14:4a:7f:04:c5:83:d7:62:42:5b:84:a4:
e6:9f:99:ec:6f:15:c4:a1:06:72:8f:e5:26:4b:8f:38:f6:d3:
a8:84:50:db:e4:23:9b:a7:c5:1e:6b:68:b0:9c:e4:15:e5:2a:
c1:6f:99:4e:ac:3c:61:2a:a5:39:d5:8f:2e:a1:60:52:b0:f6:
da:c9:f8:0e:34:c2:8b:61:97:93:49:51:d7:55:e5:cb:a1:9c:
32:b5:5d:92:41:9a:13:70:23:90:43:71:93:81:50:35:32:19:
16:1e:31:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:25:37 2025 by rpki-client