
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json)
Hash identifier: AFysu2TDOKf9ktfClSnn68R/yxbyxbh4HYDDlnQgB58=
Subject key identifier: 9D:56:3C:09:10:C5:81:D5:F2:4D:AC:2F:96:4C:E4:37:13:F9:47:E9
Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd
Certificate serial: 0199FBEB9D9980AE6C912447C7F807B55B67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
Manifest number: 069A
Signing time: Sun 19 Oct 2025 10:02:26 +0000
Manifest this update: Sun 19 Oct 2025 10:02:26 +0000
Manifest next update: Mon 20 Oct 2025 10:02:26 +0000
Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=)
2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: VSsjTXuc+it16eIyoHTx0ctuXGXHV5aUjDvgVsiwyPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:9d:99:80:ae:6c:91:24:47:c7:f8:07:b5:5b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd
Validity
Not Before: Oct 19 10:02:26 2025 GMT
Not After : Oct 20 10:02:26 2025 GMT
Subject: CN=9d563c0910c581d5f24dac2f964ce43713f947e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:45:6a:09:1e:ed:50:b5:53:59:54:c3:3f:22:
da:0a:aa:9c:b0:96:c1:3e:c7:5d:49:0b:33:f5:43:
74:8b:a5:0f:36:e8:ed:34:07:66:20:f0:5e:72:a8:
18:aa:9f:6b:71:1a:03:4e:b8:57:34:da:50:bb:20:
63:b9:28:e3:8e:8c:1a:2d:7c:b0:ad:d4:66:48:b6:
82:84:4e:22:38:24:96:43:6b:bf:a1:22:e6:18:03:
fc:41:67:18:06:fc:f6:f8:0d:55:1f:cb:34:6b:eb:
81:90:5a:2d:b1:f0:ae:3d:e2:a9:28:3c:bd:c7:7f:
58:fe:82:09:82:19:06:b6:e4:ef:d3:63:2a:56:e1:
ae:8f:87:18:f0:d3:1f:b6:a7:d9:97:5c:6c:94:96:
5f:3b:64:17:62:6d:94:47:2a:ef:46:1a:b3:31:fb:
e8:0a:64:b0:4f:d8:07:5d:db:fb:9e:60:1d:5a:17:
f2:24:d8:94:db:13:8d:53:f6:3b:0f:ca:36:bc:2e:
48:de:79:cf:b2:d4:e2:64:1c:cb:ff:a3:f3:a0:35:
76:f7:1e:f5:c8:74:b9:9c:2b:a0:bc:77:4f:6f:d2:
4b:f8:ec:c0:49:1b:49:2e:40:f3:db:62:50:bb:f9:
77:1a:93:a1:57:66:07:d6:db:6d:54:7f:42:26:95:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:56:3C:09:10:C5:81:D5:F2:4D:AC:2F:96:4C:E4:37:13:F9:47:E9
X509v3 Authority Key Identifier:
keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:fe:81:54:0b:38:0a:5f:12:35:56:0f:25:65:9a:0f:a8:d2:
c7:5c:dc:ee:79:7f:1b:2a:e7:e5:66:72:ad:98:d4:d8:47:cb:
76:95:1f:62:6f:ea:05:2f:11:a4:56:ac:63:d6:21:11:31:7e:
cf:66:b8:09:ef:d5:e8:e9:59:9c:34:df:bc:d6:64:32:a7:68:
eb:55:c8:68:fb:a5:34:0c:bb:db:e7:f3:80:24:12:b8:61:e2:
e4:04:1f:8d:bb:f6:7f:ec:c0:e2:e7:1c:ab:69:e7:78:ef:08:
95:61:e3:d4:90:c9:c4:5f:85:68:5e:53:75:20:a1:3b:4b:b0:
74:95:61:03:ad:7e:87:bf:79:cd:2d:eb:c5:34:de:1a:df:d8:
7f:13:e2:2d:92:61:ae:af:57:71:d1:18:30:b8:a9:39:06:aa:
1e:92:dd:ff:be:d1:06:2e:45:f9:40:db:cf:c9:49:da:53:cd:
97:56:bb:ed:88:66:f5:f2:3e:9f:65:25:75:0f:af:f8:13:e2:
42:66:72:2c:ed:c2:3c:19:66:34:7b:47:50:c8:f1:c5:37:a7:
ac:c0:12:f1:27:79:8a:46:61:c1:9f:ab:1f:b7:b3:42:f8:96:
6b:66:0e:58:3b:ed:f4:35:c9:65:1d:3c:eb:1c:78:96:04:98:
ae:a8:d6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:24 2025 by rpki-client