Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json)
Hash identifier: Lo23tFvDGCqnfWfL+A7TBLf0Izkt7excjyBj5TaB7eI=
Subject key identifier: 9A:F1:4F:AA:4A:FD:50:1E:D8:24:59:5E:89:31:68:D4:66:B2:8B:A4
Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd
Certificate serial: 0198D6608A2E757D1A9CB1F9A472D0BCC959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
Manifest number: 0602
Signing time: Sat 23 Aug 2025 10:01:47 +0000
Manifest this update: Sat 23 Aug 2025 10:01:47 +0000
Manifest next update: Sun 24 Aug 2025 10:01:47 +0000
Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=)
2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: a2cu4ZBEmu5UDL95OZNdd7qmsTsuFYa0l0w+V6tfLQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:8a:2e:75:7d:1a:9c:b1:f9:a4:72:d0:bc:c9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd
Validity
Not Before: Aug 23 10:01:47 2025 GMT
Not After : Aug 24 10:01:47 2025 GMT
Subject: CN=9af14faa4afd501ed824595e893168d466b28ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ce:cd:9d:0a:c9:9a:a9:f0:4c:0b:58:e0:84:
8d:41:74:c7:45:46:a5:f8:98:b3:86:13:07:90:47:
c8:22:96:56:43:8d:54:55:f3:e1:a1:20:c7:2b:2b:
f3:8d:2f:32:f1:4b:08:00:20:fe:ae:3d:25:1a:0d:
49:68:10:a0:82:74:65:f9:13:84:a3:c0:c2:a2:6c:
4d:79:3f:97:22:fa:9f:3a:0a:f4:d9:4c:7b:49:52:
6e:4b:b4:2a:e0:11:1c:37:aa:0f:a0:64:c6:d6:d3:
d6:d2:99:be:f9:66:8a:90:34:5d:5e:79:5e:c5:d2:
b9:45:1e:ee:18:96:f3:f1:d0:71:2a:f3:5c:f6:4b:
2c:d3:89:32:5f:99:19:dc:a6:03:b2:f6:2e:d8:43:
81:14:73:24:71:3a:3e:ca:40:98:70:6f:dc:55:09:
ba:a1:0c:95:db:d0:03:29:7d:08:84:e4:47:0d:d7:
bc:ef:1c:d1:69:33:cd:53:bf:3e:f7:a3:ef:29:b2:
ad:3c:31:83:d1:32:c0:43:16:8f:23:aa:df:95:83:
87:df:ae:f9:65:24:42:17:5c:9f:05:24:35:60:25:
67:3f:5e:88:fe:fb:fa:3b:ec:4b:fa:54:5d:eb:a5:
df:31:69:8c:9a:e2:7b:79:b0:f9:3d:a7:ff:4b:82:
13:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F1:4F:AA:4A:FD:50:1E:D8:24:59:5E:89:31:68:D4:66:B2:8B:A4
X509v3 Authority Key Identifier:
keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:12:7a:a3:a5:66:bf:19:2a:d9:98:2c:a7:ed:f6:95:05:2a:
ce:5c:a8:dd:88:5b:4c:0f:ad:30:a6:e9:eb:9a:76:14:0c:26:
70:7c:ef:a4:f0:df:b1:32:35:c7:41:0b:f0:91:37:12:1a:e3:
2c:14:83:ca:c9:71:c1:d2:28:57:7f:55:f1:a9:3e:ed:f8:00:
0c:00:ef:e5:2d:83:7b:5c:18:68:da:8d:df:74:89:d7:d1:0d:
18:81:77:03:d4:aa:3a:93:75:6a:5e:e9:1c:4e:b8:1e:a9:0c:
d3:17:71:48:9f:2e:32:e0:ad:08:ef:53:08:fe:ea:69:b9:aa:
52:c0:a4:8c:8e:37:12:24:0b:7e:c7:fc:0b:c0:00:e7:68:96:
24:d1:74:13:f2:05:e7:01:df:de:e7:eb:15:7a:b5:04:2c:10:
cd:c4:c0:04:2a:b3:56:71:08:68:4c:6a:fe:2b:d0:8d:d0:a0:
ba:5b:ab:1a:51:6d:5c:99:cb:fa:22:83:a5:47:36:93:54:0b:
36:a6:2d:7b:38:ec:34:aa:52:af:cf:61:63:44:c1:83:89:1c:
7a:c0:d1:a3:1a:26:b4:cf:cd:c9:d2:0d:e4:9a:80:ef:76:56:
f2:47:d4:78:b6:1a:2a:e8:95:2c:46:ea:f9:32:69:2e:f9:0b:
a3:8b:9d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:31:34 2025 by rpki-client