Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: 9uhKuPAIEHvLw2tJvMpP11mMnsQUmc4xFOyX1FX0amk=
Subject key identifier: E8:40:C7:73:04:86:4F:C6:BD:47:F2:0B:AB:31:4B:33:74:6E:4F:03
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 01977866166BE081C3E267CEF85A095689AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 1593
Signing time: Mon 16 Jun 2025 11:00:45 +0000
Manifest this update: Mon 16 Jun 2025 11:00:45 +0000
Manifest next update: Tue 17 Jun 2025 11:00:45 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: OIPX6txFiLKPWfhwep+bBK7yzNhj/ZR7J3GY7tLCmDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:66:16:6b:e0:81:c3:e2:67:ce:f8:5a:09:56:89:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Jun 16 11:00:45 2025 GMT
Not After : Jun 17 11:00:45 2025 GMT
Subject: CN=e840c77304864fc6bd47f20bab314b33746e4f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:90:e1:0c:c8:a4:3e:24:4b:d9:70:02:d3:81:
be:32:86:f6:10:9d:43:ab:f5:cf:5c:cd:6a:da:b2:
f3:07:1c:9a:73:a9:a2:0a:0e:4b:fc:3a:c6:2e:cc:
19:05:55:2c:20:9c:09:21:f0:ea:5d:bb:76:7e:bb:
4e:4f:c5:9a:5b:97:b5:32:af:f9:4a:81:44:22:10:
69:33:87:4d:7b:4d:7e:f5:7f:11:72:a2:95:8f:28:
7a:0b:30:01:fe:79:59:7c:96:92:d1:e8:53:d5:9a:
39:39:b3:35:e3:3c:ec:bd:13:a9:82:b1:c6:2d:8a:
18:44:ec:db:77:5c:50:d9:f6:b1:06:f0:d7:eb:d7:
d3:e9:3a:fd:cc:a6:87:69:9f:10:d7:f8:3b:34:27:
e6:0b:4e:ef:d7:a7:6b:05:8a:e9:a6:f1:43:e2:1f:
a0:36:95:d6:78:29:f3:ac:fe:88:9c:e5:57:43:3e:
76:26:0f:a8:e5:c2:5c:7b:4f:e0:4c:59:4b:6a:1f:
1a:84:40:ed:18:58:85:07:e7:80:f1:d7:71:a7:79:
06:89:37:be:1b:21:f8:e4:4b:f4:10:f1:b8:e1:db:
71:10:97:fe:53:70:11:c1:a8:52:4d:a8:0c:12:93:
7b:32:1b:f4:2b:83:02:2b:8b:17:1c:1a:07:86:5f:
b8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:40:C7:73:04:86:4F:C6:BD:47:F2:0B:AB:31:4B:33:74:6E:4F:03
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:c9:59:fc:28:4d:1d:e3:fb:d8:31:4c:da:f1:77:4c:47:7b:
f5:bd:04:1c:53:10:88:18:46:22:3b:e1:6f:24:0d:9d:10:0e:
f8:3d:c8:7a:4a:d5:80:a6:6d:0b:ec:94:ce:ca:0d:34:4e:b7:
96:b4:9e:07:11:12:b2:2c:99:9e:fa:48:f7:1a:eb:bd:5a:e5:
a2:16:fe:77:27:e1:f5:97:7d:10:6b:b1:48:69:f8:a6:e1:b3:
11:a4:2b:29:55:7b:d2:80:aa:24:0c:e0:e1:de:f8:8d:2e:95:
f1:cd:af:f7:44:00:ed:38:6a:60:8c:75:74:55:6d:f7:f8:33:
8f:cb:78:2c:35:56:ff:78:77:ba:c8:05:67:77:03:5b:7e:c9:
7f:9f:86:4a:60:fd:ae:d1:a0:0e:24:64:66:4a:95:aa:45:40:
cd:53:8d:ac:d5:4c:57:48:8c:9e:07:31:55:bf:17:6a:13:f3:
05:80:fa:ff:dd:2c:7b:05:17:37:ce:12:9a:91:e6:a8:6b:af:
22:42:71:03:5e:02:f9:79:f4:10:47:e6:0d:79:9a:8b:12:e8:
08:95:d0:95:ed:63:85:ce:ef:bc:a1:ce:c6:a2:9a:6f:63:41:
5a:56:47:76:6e:c4:ef:d4:63:ee:12:8c:70:fa:ef:8e:31:a1:
6c:49:5a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:13:49 2025 by rpki-client