Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
File: NB--B1HiEYiTdNFdYxLCJPaV-qI.mft (raw, json)
Hash identifier: C1EYuYrAukUONNjHC93Y6dLBI7xA3S0tUTLwqXtnOJM=
Subject key identifier: 1A:BF:99:86:F0:E8:BF:67:07:49:FE:0A:A1:6F:44:51:CC:16:F0:FA
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 019872CFACC442231BAD66392042D4DE84B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
Manifest number: 0F3D
Signing time: Mon 04 Aug 2025 02:01:09 +0000
Manifest this update: Mon 04 Aug 2025 02:01:09 +0000
Manifest next update: Tue 05 Aug 2025 02:01:09 +0000
Files and hashes: 1: Giw6c3ykUw3nYPNE5UpuuM_ybFY.roa (hash: 4QE8zLtdTCj1Z8B1PqQUFcIb6Is1jjshW97EzIqWBB0=)
2: NB--B1HiEYiTdNFdYxLCJPaV-qI.crl (hash: A5ou6jd8VQuueBnwVLCXVFEHSNpfbdnY+cJw0LmgXKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:ac:c4:42:23:1b:ad:66:39:20:42:d4:de:84:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Aug 4 02:01:09 2025 GMT
Not After : Aug 5 02:01:09 2025 GMT
Subject: CN=1abf9986f0e8bf670749fe0aa16f4451cc16f0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:14:10:0c:0b:ad:1a:64:b9:b6:3d:09:99:5e:
f2:14:bf:66:10:8f:be:92:b4:b3:47:80:b5:c8:f6:
72:20:a2:3f:6a:21:94:f9:ad:8f:ed:1b:2e:f9:6f:
79:17:56:8d:26:07:a4:1f:53:a0:48:12:2b:37:cb:
d5:99:83:c7:a1:a2:6d:24:a1:5a:cd:18:8f:55:dd:
09:15:0e:a0:28:0f:4d:b2:41:e6:9b:e8:1d:70:e6:
cb:38:98:08:7a:0e:26:e9:5b:ad:75:7a:20:65:a7:
78:2e:51:3e:1d:26:ba:c2:60:8d:82:63:7d:7c:b7:
75:41:11:90:0c:bb:ac:79:1b:fa:f3:75:46:2c:6a:
bc:af:10:77:3a:9a:0f:b0:a4:4a:85:ed:f7:00:bf:
63:4f:eb:76:11:eb:88:82:0a:41:74:82:08:3c:2b:
ca:c7:42:7f:5b:2c:e7:58:f1:f2:f2:61:c0:3a:12:
f0:af:ed:eb:94:53:8d:aa:10:b8:e1:7e:b7:f3:26:
10:83:06:25:9b:ea:71:ca:8c:43:cc:cb:e1:c6:30:
40:2a:05:d0:82:5e:6d:e1:c2:df:3e:21:9d:26:3f:
29:65:34:b9:ae:da:35:34:4a:92:25:93:2f:52:50:
85:66:8d:34:e0:3e:1a:43:ce:9d:4c:ff:2e:be:2e:
1a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BF:99:86:F0:E8:BF:67:07:49:FE:0A:A1:6F:44:51:CC:16:F0:FA
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:10:e7:5c:60:4f:17:89:2b:4c:c4:c3:21:49:4f:3d:19:b8:
55:8e:5c:cc:a6:95:4a:85:30:ff:d6:03:c0:8f:a4:bf:1f:a2:
70:36:11:82:d3:db:e9:76:52:de:10:21:62:75:16:18:b5:bc:
48:28:50:d1:b9:98:59:35:d8:bb:2f:36:0a:28:f3:87:9e:4b:
a8:cb:dc:42:f3:ae:77:c1:a8:19:48:9f:24:77:e0:e4:b2:f2:
b2:c6:b3:f7:2a:86:2f:a7:a3:43:94:b3:f9:7c:54:bc:96:b7:
42:12:04:94:26:1d:89:30:33:99:49:65:ec:ed:02:c2:d2:8e:
cd:ee:7d:d8:a9:26:73:1a:00:82:c3:64:95:63:28:98:b6:48:
b1:4b:c1:83:40:d3:07:fc:b8:70:8a:69:58:84:83:5e:cd:bf:
c2:4a:7f:a5:2b:b0:4f:60:65:18:cb:99:b5:13:13:27:68:e3:
3d:90:25:54:6c:86:12:96:f4:09:dd:aa:44:11:8a:54:c3:6a:
4e:e1:0e:b1:b7:4d:91:33:bf:71:bc:9b:98:0f:a2:fa:50:b2:
f6:0b:78:2c:10:74:7a:ad:a2:12:a0:31:5b:e0:e2:58:48:a4:
15:c7:56:ce:c2:0b:c7:f2:a2:ca:15:09:35:6e:dd:b7:79:6f:
5a:21:45:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:15:52 2025 by rpki-client