Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: bKxQoPLW36fwkdVaZmEgYR7LYh5T49vjaki6PNt5SW8=
Subject key identifier: D7:E0:03:2E:CC:44:D4:AC:BC:E7:3F:D0:99:67:DF:F4:68:46:5A:27
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0197481E4965994CC993510938248F69BC9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 02:00:33 +0000
Manifest this update: Sat 07 Jun 2025 02:00:33 +0000
Manifest next update: Sun 08 Jun 2025 02:00:33 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: hjRAEjmcptiHtIXx6uXv5Mqayw+NdKdaEYoIfNg5nbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:49:65:99:4c:c9:93:51:09:38:24:8f:69:bc:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Jun 7 02:00:33 2025 GMT
Not After : Jun 8 02:00:33 2025 GMT
Subject: CN=d7e0032ecc44d4acbce73fd09967dff468465a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:df:73:20:d2:10:46:9d:38:83:1f:b9:36:77:
41:30:8b:84:55:65:2d:36:86:34:ae:b2:06:00:ea:
3e:30:7a:87:8f:0f:a1:2b:03:07:84:1e:a3:64:27:
07:f6:36:7b:b1:50:63:d0:2f:6e:57:f7:ca:84:f0:
1f:c8:67:dc:f8:43:09:89:eb:09:ba:5c:09:30:1f:
a3:08:ef:8f:90:6e:3c:b2:1f:ea:41:76:3f:89:4d:
5b:42:30:5b:37:22:b1:11:a2:95:fa:54:41:ee:22:
da:90:6b:63:2f:31:81:f5:32:3c:2b:2e:9a:ca:91:
1c:ed:f5:ad:ac:af:36:10:be:7d:6b:74:cc:94:b3:
7c:03:56:c3:b8:1c:e0:f2:97:ad:a8:a3:a3:18:f0:
ca:df:4a:16:7a:2f:89:3e:d4:96:94:75:77:8a:0c:
70:0f:13:d9:af:ba:c2:82:25:3a:e0:36:aa:36:b1:
ee:50:6c:8e:72:4b:d7:2c:5f:70:77:28:a5:0e:5c:
b9:ca:d6:4e:bd:03:16:a3:a9:10:e2:ad:22:01:2f:
a7:d3:39:e8:e2:a8:7a:16:45:b0:5a:6f:c1:50:1d:
e9:97:09:15:6e:75:9c:f3:d3:9d:95:2f:6a:2c:d8:
57:92:c4:d9:05:f9:19:da:00:c5:ae:cc:d2:6e:be:
01:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E0:03:2E:CC:44:D4:AC:BC:E7:3F:D0:99:67:DF:F4:68:46:5A:27
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:49:4b:5b:82:fb:e0:ee:f3:50:08:ea:d9:5c:1b:f0:b2:67:
18:e0:01:e2:30:f4:2b:81:c8:5f:6f:d0:e8:2f:33:b9:f2:1a:
5e:db:2a:3a:b6:e1:1d:6e:c4:6e:57:0a:8b:f3:4c:d1:5b:69:
7d:3c:7c:18:3e:5e:7a:eb:2e:e0:34:e8:25:60:cd:4a:3b:86:
76:32:0b:ee:32:89:35:83:65:c9:16:6c:b6:13:de:08:ad:db:
d0:a5:5c:3b:7f:2b:c3:9c:c7:42:b6:8e:94:64:e8:bd:70:31:
c6:fb:a4:4a:2b:99:46:cd:70:f5:46:91:50:46:45:5e:5d:af:
ec:69:9a:b3:1e:7d:f4:75:3a:2d:6a:1e:27:f6:3e:aa:56:c8:
10:18:be:b8:9a:6f:cd:52:ff:4e:3d:25:ec:81:dd:21:54:67:
35:88:c8:e5:23:74:73:4b:ca:67:bb:33:3b:de:2a:ea:e8:96:
a0:37:55:6c:1f:3e:ed:e9:98:dd:7c:37:58:ea:58:49:aa:8f:
64:3e:af:aa:7c:cb:51:7b:1e:90:c8:13:bb:9d:58:32:93:c3:
35:3e:cf:95:0d:1e:ed:f3:67:82:5a:4c:92:8f:7d:a2:a1:75:
b1:24:9d:7c:02:34:99:07:87:d8:72:cc:33:15:49:1a:b2:bf:
93:f4:26:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIHkllmUzJk1EJOCSPabybMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODU2NjA2MWUzNjhjYWZmMTg4MWJlMmJhYzY3MzdkZmQz
YzFkYmEwHhcNMjUwNjA3MDIwMDMzWhcNMjUwNjA4MDIwMDMzWjAzMTEwLwYDVQQD
EyhkN2UwMDMyZWNjNDRkNGFjYmNlNzNmZDA5OTY3ZGZmNDY4NDY1YTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo99zINIQRp04gx+5NndBMIuEVWUt
NoY0rrIGAOo+MHqHjw+hKwMHhB6jZCcH9jZ7sVBj0C9uV/fKhPAfyGfc+EMJiesJ
ulwJMB+jCO+PkG48sh/qQXY/iU1bQjBbNyKxEaKV+lRB7iLakGtjLzGB9TI8Ky6a
ypEc7fWtrK82EL59a3TMlLN8A1bDuBzg8petqKOjGPDK30oWei+JPtSWlHV3igxw
DxPZr7rCgiU64DaqNrHuUGyOckvXLF9wdyilDly5ytZOvQMWo6kQ4q0iAS+n0zno
4qh6FkWwWm/BUB3plwkVbnWc89OdlS9qLNhXksTZBfkZ2gDFrszSbr4BewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNfgAy7MRNSsvOc/0Jln3/RoRlonMB8GA1UdIwQY
MBaAFDSFZgYeNoyv8Ygb4rrGc339PB26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUt
MDYyNzBlYTgyMTU0LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUtMDYyNzBlYTgyMTU0
LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoElLW4L7
4O7zUAjq2Vwb8LJnGOAB4jD0K4HIX2/Q6C8zufIaXtsqOrbhHW7EblcKi/NM0Vtp
fTx8GD5eeusu4DToJWDNSjuGdjIL7jKJNYNlyRZsthPeCK3b0KVcO38rw5zHQraO
lGTovXAxxvukSiuZRs1w9UaRUEZFXl2v7Gmasx599HU6LWoeJ/Y+qlbIEBi+uJpv
zVL/Tj0l7IHdIVRnNYjI5SN0c0vKZ7szO94q6uiWoDdVbB8+7emY3Xw3WOpYSaqP
ZD6vqnzLUXsekMgTu51YMpPDNT7PlQ0e7fNnglpMko99oqF1sSSdfAI0mQeH2HLM
MxVJGrK/k/Qm1g==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:23:04 2025 by rpki-client