Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: LDIGqwYfclNTjZGsMl7rYhg1YIcXf6e6KyKckC9BQu8=
Subject key identifier: 71:1F:C1:4F:C3:81:D5:EB:AB:41:BC:BB:7F:B4:E2:64:D7:96:FD:BC
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0196778CBA5CA3D4B96CC68DCD9C762B80D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 14:00:33 +0000
Manifest this update: Sun 27 Apr 2025 14:00:33 +0000
Manifest next update: Mon 28 Apr 2025 14:00:33 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: qAO5LnYz0wAtF+fU5ZOfHFnKGOIDOtxLD6ONXkv6IG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:ba:5c:a3:d4:b9:6c:c6:8d:cd:9c:76:2b:80:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Apr 27 14:00:33 2025 GMT
Not After : Apr 28 14:00:33 2025 GMT
Subject: CN=711fc14fc381d5ebab41bcbb7fb4e264d796fdbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d3:81:10:9d:c9:b6:50:de:bc:5f:db:da:eb:
36:7a:d4:ec:17:1d:1b:29:b7:03:68:8a:ff:99:36:
a4:38:5e:7b:47:b1:dc:42:ac:97:54:f5:65:5f:25:
75:dd:ca:cd:a4:85:f4:99:ca:08:7a:59:3c:64:f8:
60:f6:f8:00:0e:ae:64:a4:70:10:26:07:38:c1:31:
da:df:e6:65:bd:58:94:47:cc:32:8d:5d:50:e0:78:
94:05:d3:1d:e3:73:ce:2c:7b:66:33:41:23:aa:06:
dc:5e:a1:2a:b4:6a:81:ed:48:bd:89:4e:07:35:fd:
52:97:99:1c:e1:f1:d9:26:d0:79:a1:45:c7:5f:64:
b4:ae:0e:0d:66:b9:36:ab:eb:fe:9d:c8:bc:fb:21:
2c:97:27:f7:c1:83:b8:44:6a:e5:68:71:ed:21:72:
39:4e:ae:18:7f:63:ad:95:e0:ff:be:ec:51:ae:89:
94:e2:2f:ba:6b:c5:06:6a:63:e2:a1:a1:23:b5:8c:
e3:7d:27:30:d9:6d:a5:72:e3:48:51:10:c4:71:3b:
72:6b:43:27:b6:82:f3:3d:17:9d:2a:5b:8a:6c:61:
da:44:53:fe:6f:df:a5:63:a6:fe:ca:70:7f:cd:ce:
a4:84:4e:1d:08:56:07:b2:37:5d:d4:0a:2d:bb:08:
9e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1F:C1:4F:C3:81:D5:EB:AB:41:BC:BB:7F:B4:E2:64:D7:96:FD:BC
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:08:8d:e1:4d:5b:b6:ce:25:08:6e:bf:9c:6d:bd:8d:95:97:
d8:96:c0:ce:60:3d:d4:a6:07:b5:08:7c:7c:54:8b:43:9d:a3:
3a:fc:9a:3a:bd:fa:c3:d5:a5:2d:b7:a7:28:70:72:25:78:a3:
c2:0c:e0:ef:30:f3:ef:d7:e7:d1:ba:a1:b8:ff:1d:3e:84:bb:
18:17:9c:71:f1:c7:9b:63:97:1e:7d:e3:37:4e:89:0c:d6:8c:
55:7e:49:cb:b2:ce:31:c6:96:1e:f1:c3:ed:db:f7:80:35:44:
99:ed:cc:e5:09:c1:92:7d:cf:26:23:58:8b:a9:13:c7:be:20:
6a:a8:8e:af:c2:2c:ce:ce:51:0c:53:17:32:22:a2:0d:f2:9e:
6e:7d:3c:69:54:56:4c:72:79:20:f3:0d:19:d2:a4:c8:b1:4a:
bc:59:a9:1c:6b:d6:e4:a4:3c:b1:df:10:5a:21:17:a3:52:b9:
45:bc:32:49:bb:f0:9c:fe:f7:ce:56:31:05:a9:ce:b6:ee:a8:
75:01:77:d8:d3:37:db:2e:65:ae:8f:27:2c:b2:c3:85:1c:c2:
7a:66:f0:dc:97:f5:f3:bb:7d:02:fb:bd:40:4a:4c:eb:a7:ba:
c9:0d:bf:e7:64:d5:ca:da:f8:36:1c:0e:d6:1e:8a:86:8d:7e:
9e:84:88:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:12:04 2025 by rpki-client