Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json)
Hash identifier: Tw8Fv5UqoAf5K4z51uIiM5e/V1cSJEuky4G+L5UMQXA=
Subject key identifier: 06:C9:76:F1:9A:74:5E:F0:54:4A:75:25:75:C7:66:D6:A5:B5:CF:1D
Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd
Certificate serial: 01969E9A8CCC5C55749E4184776812794249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
Manifest number: 04DC
Signing time: Mon 05 May 2025 04:00:50 +0000
Manifest this update: Mon 05 May 2025 04:00:50 +0000
Manifest next update: Tue 06 May 2025 04:00:50 +0000
Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=)
2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: C4vwqSpKBiLJcHQmjgMG9QoOBt0jln/87RlsokMNiTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:8c:cc:5c:55:74:9e:41:84:77:68:12:79:42:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd
Validity
Not Before: May 5 04:00:50 2025 GMT
Not After : May 6 04:00:50 2025 GMT
Subject: CN=06c976f19a745ef0544a752575c766d6a5b5cf1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:05:d2:44:f5:08:3a:e9:88:2a:dc:3e:22:00:
52:02:f4:56:f3:b9:bf:17:d7:f0:3d:9d:6e:f4:f5:
10:48:ab:d9:cc:62:d7:fe:3a:34:92:5b:b1:17:db:
99:e7:7c:c4:77:93:f2:35:57:d7:e0:e8:1e:d3:9a:
3e:41:11:da:c5:3d:b2:db:e3:4f:9e:a1:29:62:fa:
9a:2a:80:6f:5d:5f:16:8c:f5:49:54:88:cd:57:07:
25:d5:01:43:53:50:f4:76:11:57:5b:15:af:13:91:
4a:32:99:cd:79:b3:99:00:3e:f9:ee:b3:99:f2:96:
a2:06:7f:22:66:3b:d4:b6:4f:26:cb:c8:97:95:58:
11:bb:b1:1b:30:be:9d:33:30:94:74:0f:e0:5a:98:
5c:4e:ed:25:11:5e:eb:40:68:b6:46:78:d9:19:46:
7f:59:e5:0d:44:d3:c6:e3:ee:c5:75:e8:8f:c3:79:
2e:d1:18:65:4f:15:95:1b:af:ee:b3:03:91:c2:1b:
2f:fb:88:c1:6c:b8:9a:95:26:fa:5f:94:b1:8f:8e:
99:b5:75:57:38:52:b3:9b:04:3a:aa:62:5e:c3:af:
54:27:20:7b:ca:29:91:c5:af:a2:a7:cb:78:0c:a2:
9d:5e:c5:c3:4d:d8:2a:9c:fe:b7:b2:16:83:28:7a:
21:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C9:76:F1:9A:74:5E:F0:54:4A:75:25:75:C7:66:D6:A5:B5:CF:1D
X509v3 Authority Key Identifier:
keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:d0:b9:91:8c:7b:46:05:aa:9d:0b:50:d0:f4:6a:bc:c3:9a:
aa:02:be:f1:ae:1f:28:40:f8:71:7f:61:a4:9f:b6:04:b4:65:
e3:4f:ed:b1:31:a2:51:cc:d8:fe:40:c0:59:f0:40:11:ee:74:
d1:8e:8e:ad:e2:1a:c1:28:27:02:c3:6d:e9:d0:04:47:fc:80:
bf:9d:8a:04:97:5c:ba:d6:15:65:23:79:b6:48:10:d0:25:b0:
98:6f:3c:dc:bd:bf:82:1d:e2:f7:0e:c0:33:4f:35:87:73:79:
d8:d9:db:c9:e3:01:80:68:84:3c:ee:f6:22:57:77:66:f6:f4:
2a:35:6a:29:f1:89:09:d5:2f:e0:74:d3:4e:67:bd:f1:2b:3c:
71:df:c9:6b:05:29:49:19:22:23:02:fc:d1:5c:0a:4f:6c:54:
d4:f2:5b:51:20:92:e0:e5:3b:93:94:41:0d:20:68:51:27:56:
b7:9c:a1:00:a1:7b:49:c5:69:f5:f9:46:a9:40:bf:40:4a:89:
46:04:13:fd:de:5f:eb:6a:0c:f7:2e:f0:a1:06:5e:57:c2:40:
ac:56:9c:0a:91:a2:ff:01:2d:18:9f:e3:31:53:6a:8f:16:7f:
1c:de:dc:86:dc:4d:42:7f:2f:5d:a1:4f:ea:0a:ae:63:04:7b:
29:49:3e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 11:22:41 2025 by rpki-client