Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: DblX0ppsjweQYKc+P7rd8n24xZ1U1NAY/TYdT/Qd+Sc=
Subject key identifier: 5F:F0:B3:13:99:BE:85:48:6C:64:10:B6:4B:7C:E5:98:DA:C2:33:D0
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0196B74787A95A52B08455DA6891F6A69E2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 152F
Signing time: Fri 09 May 2025 23:00:40 +0000
Manifest this update: Fri 09 May 2025 23:00:40 +0000
Manifest next update: Sat 10 May 2025 23:00:40 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: QWstF/XG6bqN22qK031+RKtoeP4g/j04Tnl3QeyUJA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 23:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:47:87:a9:5a:52:b0:84:55:da:68:91:f6:a6:9e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: May 9 23:00:40 2025 GMT
Not After : May 10 23:00:40 2025 GMT
Subject: CN=5ff0b31399be85486c6410b64b7ce598dac233d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:eb:c6:e3:b3:24:97:c3:d5:b7:41:31:e8:7a:
ac:90:d1:6d:d5:fc:5c:b4:75:0d:e3:c5:08:be:d7:
54:f7:70:5f:b6:5e:8f:93:bd:4f:2e:1c:94:f5:53:
4b:b0:e6:65:89:52:aa:b2:96:9c:fd:c7:28:3b:37:
35:ad:4e:54:65:64:92:c0:c8:90:14:ca:c9:bd:3c:
49:d7:42:48:39:19:50:0e:39:34:3d:ee:c0:26:65:
c9:58:c8:7f:08:91:39:4c:52:ca:14:3a:96:9b:32:
44:88:c5:72:ea:00:03:a2:d1:b6:d5:d0:60:28:2e:
85:91:43:a6:39:a2:a2:e7:54:7b:c7:64:37:ea:4b:
d7:08:5b:2f:8c:9a:db:2d:21:ef:4b:cf:80:51:28:
f8:59:c7:ff:e6:a0:c9:ca:3a:39:cd:3e:c2:ff:bd:
52:0a:38:5c:a0:c5:4b:9b:97:77:20:b2:72:81:77:
e6:0b:55:a8:59:43:7c:c0:a0:fb:f8:45:5a:63:2f:
46:42:cf:9e:53:3d:4f:f5:f8:ac:df:94:09:b5:f3:
f4:65:12:86:a4:3f:ee:1e:42:e6:01:f0:fb:49:5d:
20:c3:05:3b:e3:57:ca:49:4f:49:94:07:b6:e2:e3:
fe:b3:c5:4c:1e:08:24:56:10:3b:2e:9a:3f:5e:60:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F0:B3:13:99:BE:85:48:6C:64:10:B6:4B:7C:E5:98:DA:C2:33:D0
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:74:7e:87:35:89:ac:8e:79:ff:ed:e1:ca:79:19:31:2a:f8:
db:1d:f5:9d:d3:50:94:db:e7:0d:a7:4e:17:86:b1:2f:02:85:
79:19:67:a3:dd:89:67:e6:b5:11:1e:bd:a9:a1:b2:fc:6a:07:
1f:e5:bd:05:1f:af:63:2b:c3:49:b7:0c:dc:89:40:95:37:0c:
36:e2:6b:e1:59:34:1b:b0:7d:ee:a9:6d:ec:26:04:d6:8b:f7:
d0:42:aa:eb:70:b5:be:1e:56:c4:85:84:40:26:b2:53:3a:1d:
71:dc:5b:d6:51:4e:88:72:01:d1:49:44:da:19:35:3d:68:93:
c7:15:69:3f:0a:8d:89:e0:1a:97:d9:90:70:74:05:61:c6:69:
43:36:3e:77:2e:ba:c8:58:fa:37:45:53:4e:22:81:18:15:fa:
be:03:27:e8:6a:b2:b9:b7:96:c3:71:22:a3:54:d2:27:63:15:
d2:02:10:d8:de:37:d9:c0:9e:24:2d:40:d4:6b:61:d2:cb:59:
d5:5a:f4:a0:7b:a8:0c:b6:f8:8e:c1:c7:75:02:1d:6b:d9:6a:
a5:56:8b:6f:2f:d6:5e:db:bd:b6:3f:ba:0b:ed:45:f8:2a:d6:
a3:92:63:fd:c1:01:4c:87:fa:1d:5f:bf:95:e5:aa:94:4e:20:
a6:07:87:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 06:25:18 2025 by rpki-client