Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: E/UFnFgP7g4O+PHSABbYGSL4kdaFaA0Wg4ujYuq3Ofo=
Subject key identifier: 11:32:F7:3E:26:FF:2D:6B:AD:0B:A0:EC:58:4A:91:20:CB:53:9B:A0
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 019A73387DD3B27547412204EC6FE1D35551
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 14:01:13 +0000
Manifest this update: Tue 11 Nov 2025 14:01:13 +0000
Manifest next update: Wed 12 Nov 2025 14:01:13 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: HMCqWm+FyupcRBvEkh116RVbbJGO7S6rvOg12vcTcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:7d:d3:b2:75:47:41:22:04:ec:6f:e1:d3:55:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Nov 11 14:01:13 2025 GMT
Not After : Nov 12 14:01:13 2025 GMT
Subject: CN=1132f73e26ff2d6bad0ba0ec584a9120cb539ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cb:19:27:0a:67:d8:ce:b5:0a:59:6f:75:49:
5e:be:1f:9d:6a:3f:c3:62:11:27:29:54:c6:84:69:
7f:28:cb:c7:47:9d:01:15:79:21:d0:a8:4f:6f:9c:
3b:c0:be:78:b7:d7:1e:77:d7:63:21:61:0d:44:ee:
37:45:06:6f:47:d7:27:d4:f4:f9:0c:4b:ac:33:17:
6b:b2:56:1a:86:26:d6:15:a5:17:7e:eb:df:39:b1:
68:6a:53:ee:c2:fe:5b:ab:74:df:87:1b:fe:4c:c4:
69:ca:73:1c:f9:c3:fc:25:f9:8a:5a:80:da:e3:bf:
29:df:e2:a5:0a:d9:69:44:97:11:9b:6b:47:c4:06:
00:b8:9e:b0:c3:6d:69:ea:e4:d9:41:9d:3c:58:c5:
06:23:f9:06:8f:7b:68:eb:2a:91:26:36:c0:49:bc:
32:b5:34:88:ef:bf:5f:4e:2a:f3:f1:30:17:7b:8f:
c6:3d:94:16:a2:24:60:8f:0e:f9:3d:25:68:ed:3c:
c7:c0:a0:d5:69:61:33:bd:dc:d1:e7:d2:3d:2c:d3:
d0:3e:6b:6b:48:9a:5e:b4:f5:f9:2f:d9:78:b2:0a:
00:c2:20:2b:12:83:73:77:8e:b2:ad:54:8a:a7:46:
2f:83:75:2c:e9:06:75:7e:24:30:ac:fe:3b:fb:6c:
93:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:32:F7:3E:26:FF:2D:6B:AD:0B:A0:EC:58:4A:91:20:CB:53:9B:A0
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:5a:cd:06:7f:0c:de:d9:87:01:d1:6c:b7:b8:ad:9a:27:47:
2d:cb:23:8e:12:65:93:03:31:08:e2:3c:1e:24:fa:e9:00:ce:
06:5d:c9:3b:4a:94:4a:82:01:a7:c9:6f:ae:df:65:15:e2:51:
64:2a:b0:42:63:84:db:cb:59:bf:50:79:6d:f5:e8:58:0f:8a:
5e:ec:91:52:4b:ca:24:7e:34:97:47:56:51:0f:30:14:38:0b:
32:50:89:49:40:61:ee:af:d2:2d:9a:91:d4:24:91:4b:5a:83:
4e:57:2e:8d:33:05:84:6d:b7:41:97:ca:c4:81:0c:6c:1c:b3:
05:d9:a3:a8:fd:99:81:6f:64:eb:46:8f:62:ce:84:ee:60:3d:
70:47:4f:16:d1:cf:a8:18:5c:ff:c3:b0:31:3d:73:69:02:f9:
0d:77:c4:51:5b:4b:0c:d0:40:92:ad:5e:f0:73:ec:48:00:4d:
55:9f:0b:ab:dd:d9:e5:81:e5:e5:29:22:75:4f:b2:2e:78:92:
7f:19:72:a5:a1:d7:56:b7:71:7f:b0:b3:c1:93:1e:91:39:55:
d2:e0:da:fa:90:41:49:1e:71:d7:7f:fd:77:7f:b8:2f:dd:2f:
c7:72:c6:e6:2e:7c:15:03:94:7d:a5:76:ee:b0:28:eb:c0:a3:
b5:8d:8d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:13:07 2025 by rpki-client