Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
File: NB--B1HiEYiTdNFdYxLCJPaV-qI.mft (raw, json)
Hash identifier: Zpc13J3Ew2nowseBuLvBxMcqHk+LZSLpnetFnKpLT/E=
Subject key identifier: E7:8F:BA:1F:45:12:01:11:E9:38:B2:79:35:4B:4A:15:3D:9D:C8:8C
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 01977008498BE6370D828EECB63E30AD217F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
Manifest number: 0EB7
Signing time: Sat 14 Jun 2025 20:01:20 +0000
Manifest this update: Sat 14 Jun 2025 20:01:20 +0000
Manifest next update: Sun 15 Jun 2025 20:01:20 +0000
Files and hashes: 1: Giw6c3ykUw3nYPNE5UpuuM_ybFY.roa (hash: 4QE8zLtdTCj1Z8B1PqQUFcIb6Is1jjshW97EzIqWBB0=)
2: NB--B1HiEYiTdNFdYxLCJPaV-qI.crl (hash: 25qnhV31FppsV58aR47txOB0tcnNLLVWcXfDFbBQ1Sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:08:49:8b:e6:37:0d:82:8e:ec:b6:3e:30:ad:21:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Jun 14 20:01:20 2025 GMT
Not After : Jun 15 20:01:20 2025 GMT
Subject: CN=e78fba1f45120111e938b279354b4a153d9dc88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:00:ac:b8:47:4a:12:2b:9a:ad:f7:ff:1a:96:
07:44:02:bf:59:66:b2:fe:c4:88:4a:2b:00:36:dd:
81:f3:7c:2b:a6:e6:6a:37:a2:04:fa:db:34:5c:a4:
86:c1:3c:02:6e:39:1b:de:29:3c:a8:64:d4:3a:6c:
5d:21:e0:b1:14:ec:dc:45:14:c1:f3:06:11:9c:00:
2a:3c:ad:cd:34:52:09:ae:99:81:ce:cd:c6:a0:1f:
de:2c:4e:30:45:9c:77:0f:0a:b6:75:2b:94:aa:43:
78:c1:47:34:d9:d2:48:f4:e8:e9:7a:c8:fa:f0:e2:
ec:13:96:0c:98:fd:3c:42:36:8b:ba:b5:c9:cc:37:
51:90:5f:a4:72:e6:79:f1:ac:0c:59:0b:88:5b:10:
06:73:a8:3a:d8:72:3d:f0:80:70:1a:70:fe:4e:0c:
02:da:a3:ec:66:35:91:4c:34:8e:f8:2a:1c:62:7d:
91:61:ef:81:0f:10:f4:db:d6:7b:a0:55:3c:cc:94:
ab:13:1f:e3:3a:49:9f:d8:e3:78:3b:95:46:1a:18:
1c:e7:f5:9f:66:ba:b5:74:0c:17:6b:a9:ae:1f:66:
1b:e8:5c:6f:6b:1b:83:bc:6e:0f:46:30:66:99:63:
2f:cd:1a:ac:0b:ec:e2:0d:3f:db:b7:bc:c7:ce:57:
b4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8F:BA:1F:45:12:01:11:E9:38:B2:79:35:4B:4A:15:3D:9D:C8:8C
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:02:24:5a:d9:76:38:66:a3:23:4c:83:fc:3d:6f:53:0f:c2:
cc:03:19:57:f6:be:02:d7:73:5b:13:8f:bc:f4:11:cb:24:76:
36:ab:13:55:e0:61:86:2c:6d:d5:2b:55:36:53:8f:a3:e0:f5:
ef:f0:17:41:73:d6:f9:10:e6:07:d5:a6:27:3e:5e:0a:34:13:
b9:a5:b7:f1:30:6c:a1:36:97:f1:fb:bb:cd:b6:45:be:38:c8:
bb:cb:80:2a:20:46:80:b3:1e:dc:74:07:68:af:83:28:f2:63:
43:bb:c1:3a:1a:d9:11:60:21:1a:30:7c:a7:43:3e:0e:32:7f:
f2:14:d1:6e:d9:01:86:f1:9f:14:de:85:3e:d9:a3:4e:82:52:
5b:dc:19:62:50:08:98:99:04:89:33:47:6c:93:60:92:5d:e5:
7f:07:3b:65:9c:9b:66:7a:fe:0a:19:55:71:95:28:04:03:74:
64:31:2e:0e:19:ad:2b:e7:e6:62:35:75:3b:e8:e4:a4:52:5d:
c8:73:ad:c9:7e:89:3c:ee:e8:d5:02:b5:00:f3:48:2d:9a:97:
b6:1a:37:e5:50:16:0e:da:c2:88:eb:3b:1a:07:e5:ae:12:85:
b7:ca:b7:47:4f:4a:61:14:c7:2d:dc:17:b4:2f:70:0a:26:e9:
99:9b:69:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:04:45 2025 by rpki-client