Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: oDQjq9Z1tspJVqVblJJXKF4cu+Uy5BWh01g+MtpPJZ0=
Subject key identifier: 4F:C4:C3:87:6A:AE:D6:3E:E7:CF:B3:0A:A0:E3:E3:C7:84:85:F4:5A
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 0199179B2265269DF7B4BA304CE884F89932
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 166A
Signing time: Fri 05 Sep 2025 02:01:06 +0000
Manifest this update: Fri 05 Sep 2025 02:01:06 +0000
Manifest next update: Sat 06 Sep 2025 02:01:06 +0000
Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=)
2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: dd30NUu9q+aNKq5BmYe5ns0VfAkkWrgUNAocR2OQZdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9b:22:65:26:9d:f7:b4:ba:30:4c:e8:84:f8:99:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Sep 5 02:01:06 2025 GMT
Not After : Sep 6 02:01:06 2025 GMT
Subject: CN=4fc4c3876aaed63ee7cfb30aa0e3e3c78485f45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:b3:40:e0:05:a1:5c:2f:2d:64:80:eb:50:
96:0d:6e:2a:44:c8:50:33:be:74:37:b0:87:a2:e5:
8b:fc:01:5e:3c:0a:d7:23:b2:65:0d:24:30:ee:4e:
79:bd:10:33:59:28:d1:ec:57:6c:49:2c:d6:3b:b3:
4d:d2:78:67:bd:5e:1c:ed:fd:07:59:66:7b:42:fe:
44:fe:9a:a1:8c:dd:3b:01:f7:17:8e:f1:69:b8:59:
96:3a:fa:2a:9b:6b:30:ab:0c:c9:47:60:c9:be:b2:
77:8e:02:a5:7f:c3:77:e0:9e:37:c7:30:07:37:8d:
eb:e0:4f:b8:73:a0:97:76:03:44:1e:d7:28:72:bc:
ef:a8:84:18:82:90:14:31:a6:f2:c4:11:de:3d:ce:
2f:b0:cd:41:c8:69:39:73:9a:98:9a:39:1d:3a:9b:
b2:b1:b5:ac:fb:c8:d8:ab:95:d3:ca:04:09:c7:5c:
d5:0c:3d:c3:55:82:17:d4:57:cb:81:82:53:d5:6f:
a9:3f:48:25:17:15:6e:23:96:f7:13:48:35:a9:e2:
98:02:fc:bd:4f:e0:f7:d9:12:d6:d8:87:87:81:52:
e5:cb:d3:69:06:22:0b:4b:1d:ec:02:75:7c:49:19:
e7:89:ac:30:b3:a1:13:67:4f:e0:de:28:53:f3:ea:
39:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C4:C3:87:6A:AE:D6:3E:E7:CF:B3:0A:A0:E3:E3:C7:84:85:F4:5A
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:4e:87:c1:cd:04:5a:cf:d3:e7:36:4a:24:f9:d1:53:77:a9:
b9:8a:56:da:40:ab:88:36:6e:d3:8f:b2:de:e0:4d:15:97:b8:
21:6d:fa:e6:cf:62:98:bf:09:73:38:e4:9c:b0:59:74:d2:51:
c6:22:db:b3:18:14:0c:8a:f5:02:fb:de:08:2c:8e:53:cf:bf:
5e:d8:6b:3f:5f:6e:c6:e7:92:9f:ef:4c:6e:c5:93:ca:03:c6:
6c:d8:c5:07:82:0a:67:89:5e:ba:9f:e5:cb:9b:fe:40:92:44:
53:db:d9:1c:fa:47:c0:a9:a9:0a:78:06:25:a7:ef:5f:ea:de:
93:3d:c0:b1:d9:18:a8:71:bd:71:22:b1:e4:d7:f1:ad:55:7c:
be:cb:47:eb:ff:01:8b:58:9e:61:68:69:81:4a:e7:6c:f2:24:
2c:de:a5:66:e0:a2:05:fa:ac:aa:89:33:a4:8f:82:ac:ea:ca:
aa:bf:72:60:b7:7a:b8:5d:59:6f:29:89:51:de:90:0c:a9:a8:
93:2d:a8:35:4c:02:ff:7e:c6:05:ae:30:93:d8:52:0d:c6:3b:
31:a2:24:db:ee:c7:6a:a3:6b:33:82:7a:7f:c3:11:88:f5:ba:
92:1c:70:db:38:2b:de:1f:72:62:55:a5:37:9a:16:7c:4c:b8:
64:81:34:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkXmyJlJp33tLowTOiE+JkyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODU2NjA2MWUzNjhjYWZmMTg4MWJlMmJhYzY3MzdkZmQz
YzFkYmEwHhcNMjUwOTA1MDIwMTA2WhcNMjUwOTA2MDIwMTA2WjAzMTEwLwYDVQQD
Eyg0ZmM0YzM4NzZhYWVkNjNlZTdjZmIzMGFhMGUzZTNjNzg0ODVmNDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWCzQOAFoVwvLWSA61CWDW4qRMhQ
M750N7CHouWL/AFePArXI7JlDSQw7k55vRAzWSjR7FdsSSzWO7NN0nhnvV4c7f0H
WWZ7Qv5E/pqhjN07AfcXjvFpuFmWOvoqm2swqwzJR2DJvrJ3jgKlf8N34J43xzAH
N43r4E+4c6CXdgNEHtcocrzvqIQYgpAUMabyxBHePc4vsM1ByGk5c5qYmjkdOpuy
sbWs+8jYq5XTygQJx1zVDD3DVYIX1FfLgYJT1W+pP0glFxVuI5b3E0g1qeKYAvy9
T+D32RLW2IeHgVLly9NpBiILSx3sAnV8SRnniawws6ETZ0/g3ihT8+o5awIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/Ew4dqrtY+58+zCqDj48eEhfRaMB8GA1UdIwQY
MBaAFDSFZgYeNoyv8Ygb4rrGc339PB26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUt
MDYyNzBlYTgyMTU0LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUtMDYyNzBlYTgyMTU0
LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIU6Hwc0E
Ws/T5zZKJPnRU3epuYpW2kCriDZu04+y3uBNFZe4IW365s9imL8JczjknLBZdNJR
xiLbsxgUDIr1AvveCCyOU8+/XthrP19uxueSn+9MbsWTygPGbNjFB4IKZ4leup/l
y5v+QJJEU9vZHPpHwKmpCngGJafvX+rekz3AsdkYqHG9cSKx5NfxrVV8vstH6/8B
i1ieYWhpgUrnbPIkLN6lZuCiBfqsqokzpI+CrOrKqr9yYLd6uF1ZbymJUd6QDKmo
ky2oNUwC/37GBa4wk9hSDcY7MaIk2+7HaqNrM4J6f8MRiPW6khxw2zgr3h9yYlWl
N5oWfEy4ZIE0Iw==
-----END CERTIFICATE-----
Generated at Fri Sep 5 07:34:55 2025 by rpki-client