Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: 4YXCM61FymzNlDnQihA0xQpzSm9Sib0RIBdjoTuvcKE=
Subject key identifier: 17:F1:92:A9:80:2A:8F:A6:2D:42:27:33:38:44:0B:9B:11:71:FE:DC
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0198D5F1B4DBA712B6DDF21A25301B35ACBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 08:00:44 +0000
Manifest this update: Sat 23 Aug 2025 08:00:44 +0000
Manifest next update: Sun 24 Aug 2025 08:00:44 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: zoVTjvo3RNzlkJkspsrSEkuC4sB2uLXH4QFvckpUvYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:b4:db:a7:12:b6:dd:f2:1a:25:30:1b:35:ac:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Aug 23 08:00:44 2025 GMT
Not After : Aug 24 08:00:44 2025 GMT
Subject: CN=17f192a9802a8fa62d42273338440b9b1171fedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:81:dd:13:1a:59:20:ac:6d:d2:5f:e8:fd:75:
30:45:e8:75:8b:85:bd:4a:c2:65:16:d9:f3:94:57:
04:62:c6:48:96:d0:be:39:82:fc:23:80:a9:fa:ad:
88:ec:1c:32:ac:fb:82:ec:c8:53:6f:96:93:b3:e1:
e6:96:ec:38:13:91:e9:4e:0f:58:42:7f:67:c0:cb:
f3:b6:48:3c:98:e3:1d:27:c9:bd:98:82:ff:f6:e6:
2e:8a:44:96:0e:bd:a5:e2:51:05:ac:e8:6d:0f:4e:
4a:e8:31:e4:19:ea:81:33:2a:76:db:ce:97:4d:9c:
37:4d:6b:ba:d5:7f:b6:f5:1f:18:5a:07:f2:d1:18:
53:75:4f:4e:7f:f4:31:55:8c:c5:18:7c:6d:7d:75:
b1:11:c3:e2:5e:c6:76:1c:f7:51:69:a1:70:26:4a:
90:17:a2:e8:06:6b:29:42:02:f3:e6:a7:a2:f1:25:
e7:99:ad:c0:35:69:7f:2a:6a:a4:ed:58:69:f2:ea:
2b:46:b5:dc:3f:18:41:91:e7:64:d9:b2:a3:b0:c0:
54:49:95:1a:9d:e5:46:12:a6:95:1d:e7:15:ea:19:
96:a4:98:70:4d:95:10:d1:f3:f2:9f:87:df:e1:d9:
0a:74:99:35:80:99:03:60:eb:2b:a8:9c:cd:8c:f3:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F1:92:A9:80:2A:8F:A6:2D:42:27:33:38:44:0B:9B:11:71:FE:DC
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:cc:3f:ce:22:d0:4b:75:db:0b:9e:09:97:9d:28:20:19:3f:
4f:45:90:bf:4e:b8:94:01:a5:22:c3:19:01:a1:77:45:bd:7c:
94:1f:10:d3:bb:f3:4c:97:58:dd:f9:cb:eb:01:ce:90:27:83:
b7:14:01:7e:b8:89:ca:2c:df:e7:5c:0e:37:f7:e8:09:82:a5:
fd:56:77:b0:66:6b:2f:f6:62:5d:6f:2b:ba:45:75:2b:e5:08:
eb:99:a3:4c:66:74:d1:fd:c2:25:a0:67:d4:f0:39:e2:0c:62:
f3:c4:4e:6f:f4:66:d4:44:7f:45:6f:92:8e:71:78:8f:21:a4:
83:85:46:d9:47:2a:37:28:9e:46:4c:7a:37:8e:78:da:b6:6b:
09:03:f3:8c:a6:8a:3b:6c:a0:89:0d:07:bc:df:bb:24:e4:00:
19:52:30:cf:15:4f:a2:62:4e:cf:55:89:50:34:83:b3:42:05:
d9:22:db:bd:12:e9:15:73:b4:96:55:bb:48:6e:59:59:95:b0:
53:4e:41:d3:7a:0d:df:81:4d:de:ae:f0:cf:16:32:d9:48:a1:
93:02:20:2c:ee:6e:3b:af:da:44:21:eb:17:d9:e0:2f:18:2b:
f8:bb:38:ad:3f:50:8b:de:83:86:cb:05:d5:b0:70:c9:61:b6:
06:0e:bc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:42:00 2025 by rpki-client