Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: m6c3ZeRk5qKAQeetVmI8O6C9kNa9x/RmhbDM4KEwnmo=
Subject key identifier: 91:A5:F8:0D:CE:79:33:AE:63:A6:E6:05:BB:0E:12:8C:61:A9:BF:80
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 019650ECAEDB4A9632C3F1FDA723C4FEAB4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 02:00:10 +0000
Manifest this update: Sun 20 Apr 2025 02:00:10 +0000
Manifest next update: Mon 21 Apr 2025 02:00:10 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: HI9t5VMglHqaEmwDe9XQ2kFB239kMqNVVMpr6i89fBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ec:ae:db:4a:96:32:c3:f1:fd:a7:23:c4:fe:ab:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Apr 20 02:00:10 2025 GMT
Not After : Apr 21 02:00:10 2025 GMT
Subject: CN=91a5f80dce7933ae63a6e605bb0e128c61a9bf80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:40:eb:cf:62:f1:6c:63:15:a8:5c:33:48:42:
40:6a:9f:40:9b:ee:70:e8:51:48:87:ac:72:16:01:
e0:6f:41:44:97:b4:41:ca:e8:ea:08:0c:2e:84:57:
a3:80:56:83:b0:35:b6:0f:17:17:06:4f:dc:5b:14:
95:62:f4:79:98:56:d7:7f:41:61:ec:ff:12:1c:a5:
58:1e:32:fe:52:11:c4:89:5d:05:3a:f2:21:dc:69:
9d:91:d4:fa:08:f9:77:41:86:f2:e8:84:8d:bd:05:
d9:83:a3:f5:6d:3b:17:91:91:ac:54:31:40:04:13:
84:d3:61:98:d7:4d:4f:3e:58:75:1b:49:da:a6:e0:
c9:e5:0e:7a:98:2d:05:cc:08:6e:c0:ce:bd:db:99:
05:1d:f8:8e:3f:3e:f1:5e:ae:f8:7f:97:e9:95:f2:
c9:0b:80:c8:fc:10:f6:ce:0e:7d:80:d7:46:b9:02:
13:df:85:f3:18:84:60:06:c4:bf:f9:e2:b8:09:65:
19:df:e6:db:1a:d5:a1:02:55:1a:12:09:0f:81:61:
e3:82:90:b9:5e:06:75:5e:d5:7d:af:ab:16:67:66:
57:57:b3:48:86:d9:fa:d0:64:be:94:1f:43:32:36:
85:8d:b1:d9:fc:d5:cd:ed:48:ef:08:03:ae:9f:46:
44:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:F8:0D:CE:79:33:AE:63:A6:E6:05:BB:0E:12:8C:61:A9:BF:80
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:a4:f8:ed:1d:36:18:f2:db:3b:88:07:64:92:a2:dd:14:e1:
a5:e5:e8:26:e1:0a:42:7c:3c:b9:df:46:77:53:82:dd:bc:43:
e2:9d:f5:bd:17:40:ee:22:f1:bb:84:2d:e2:02:bb:31:10:0d:
24:fa:37:c1:99:1d:ec:a6:c8:9f:a0:c3:ee:26:60:ba:92:25:
4f:95:29:5f:c2:ac:7e:ea:85:7f:72:64:f9:e9:5d:0c:a7:da:
81:e4:9d:4e:27:22:dc:61:98:4a:a4:bf:96:ee:ba:bc:7a:7f:
33:be:33:33:c8:e4:eb:c4:8b:9e:22:97:33:1f:1b:b5:1a:71:
7f:fe:bf:1b:ec:46:35:16:88:93:0a:3a:83:20:0a:6a:49:0a:
14:e5:8f:10:3b:02:03:95:0f:34:1c:0a:a3:d6:ad:d2:f5:74:
be:d5:db:64:e6:d8:79:16:28:c7:ec:64:6b:1e:c5:94:83:84:
48:ec:ee:f2:a3:f2:51:c7:ef:49:04:37:07:26:d7:a6:98:e1:
49:60:59:f4:7f:47:8f:46:7e:c4:a1:5f:93:d2:d8:eb:80:74:
51:84:e2:e5:d0:86:6b:b9:5d:bd:c6:fa:ed:55:32:aa:5d:15:
23:9b:d6:67:a6:e2:d5:cd:0f:07:3a:28:8f:48:a5:9f:fa:29:
fa:bd:87:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:34 2025 by rpki-client