Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: 94MHLd9cTx8MFD6l4AGbiXpPw3lEVrKj0wKitf7gOSQ=
Subject key identifier: 45:38:5A:FE:68:9E:0B:AE:DB:DA:18:B9:9F:61:47:61:64:35:19:6F
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0199FB7CF84D4624FA6839D843F067375521
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 08:01:35 +0000
Manifest this update: Sun 19 Oct 2025 08:01:35 +0000
Manifest next update: Mon 20 Oct 2025 08:01:35 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: FaI98n+Sik7+GzNhMoxs7dW+VJW7LAHLLk8FgbMIEwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f8:4d:46:24:fa:68:39:d8:43:f0:67:37:55:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Oct 19 08:01:35 2025 GMT
Not After : Oct 20 08:01:35 2025 GMT
Subject: CN=45385afe689e0baedbda18b99f6147616435196f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ca:f9:0e:44:14:5f:49:6d:de:4a:7e:c2:49:
8c:e6:74:f4:9a:02:24:4f:d4:1b:fd:13:89:7e:12:
c7:fb:90:a5:9d:60:e4:63:4c:b7:94:6d:9e:74:15:
97:5a:0f:14:96:67:23:5e:27:9e:08:1a:d0:ae:20:
d1:bb:b4:04:20:d4:3d:57:57:4e:98:87:5a:05:85:
72:c1:a4:b0:c3:05:46:7e:06:ac:6c:e4:04:c4:26:
7a:a0:b9:6c:dd:62:1a:be:b1:48:c0:3f:70:0c:69:
9a:5f:46:09:ec:1b:5d:51:10:45:71:46:23:b9:e9:
a7:0d:99:23:26:02:9d:2e:9a:3f:39:c9:86:01:45:
a3:a1:e5:2a:0f:a7:41:e2:f6:e2:78:12:0b:9d:ea:
8e:3b:f0:15:c3:9b:20:f4:42:ec:96:a2:01:47:b2:
8c:3e:3c:83:5d:84:1b:96:f0:44:06:b9:82:bd:df:
7e:8b:cb:df:4e:0a:7d:b8:90:f4:22:7e:da:fb:92:
d5:87:06:9b:8d:9b:2c:d8:a5:ba:3b:4e:8f:6a:c9:
4e:ce:9c:03:2f:d5:1c:fb:dd:12:16:bf:ee:b1:3e:
72:e1:05:28:51:53:eb:3d:c2:3e:a8:18:62:3a:c1:
f9:ab:62:9b:20:e2:18:13:fe:d0:b2:4e:39:13:16:
54:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:38:5A:FE:68:9E:0B:AE:DB:DA:18:B9:9F:61:47:61:64:35:19:6F
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f3:25:6e:17:e6:fa:06:b0:80:b1:a1:80:6f:88:35:8d:d1:
2f:b0:37:f8:0f:33:70:8b:d0:5c:79:2f:81:18:39:74:3c:fe:
69:e6:d4:7d:17:9e:cc:56:f7:85:92:1a:03:62:51:89:14:e6:
23:69:91:8b:a9:9a:72:87:ac:9f:19:81:5a:f3:24:fc:80:c4:
1d:f2:2c:21:b7:bc:d7:c0:53:1d:87:65:dd:69:75:7c:5e:10:
3f:54:4e:05:02:84:cd:f8:cf:43:4b:c7:6f:30:21:d4:17:8f:
f9:c9:7c:c6:37:c0:d1:a2:da:26:b9:97:a5:43:8e:4b:47:a4:
03:d0:a8:88:df:44:c3:f4:78:87:bb:32:4e:01:a9:cb:f7:4a:
35:5b:ab:13:69:90:c9:8d:15:6d:1d:1f:fa:ae:ce:ae:cf:46:
5b:cd:4a:80:4f:e0:d4:55:03:f0:c3:49:4f:dd:9c:63:2e:67:
f5:af:51:86:e8:af:5d:dc:33:e1:57:1a:c0:ff:70:ba:bc:71:
41:db:81:a3:3e:8e:75:3c:b3:0c:56:c5:62:d9:4a:86:cb:9c:
d6:78:9e:4a:92:99:01:e2:51:94:18:f7:ca:5b:64:78:42:4e:
c0:79:48:0b:8c:38:f7:ba:90:93:a3:01:51:8f:c4:df:e4:1c:
4a:bd:5d:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:03 2025 by rpki-client