Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json)
Hash identifier: 8m3DsLBFpCd7GqEyRc5DmycGK92zyQB33NrMe7baxy4=
Subject key identifier: 87:6D:B5:92:39:10:47:7B:73:E0:67:96:D0:D3:D6:64:EC:3B:ED:D9
Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd
Certificate serial: 0197B6A163806FB134D3428B02AF7209071F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
Manifest number: 056D
Signing time: Sat 28 Jun 2025 13:01:59 +0000
Manifest this update: Sat 28 Jun 2025 13:01:59 +0000
Manifest next update: Sun 29 Jun 2025 13:01:59 +0000
Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=)
2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: KYPi1F6OgBk8vN4VfU99u3eaqoMo8kmd6afAfjUQZN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:63:80:6f:b1:34:d3:42:8b:02:af:72:09:07:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd
Validity
Not Before: Jun 28 13:01:59 2025 GMT
Not After : Jun 29 13:01:59 2025 GMT
Subject: CN=876db5923910477b73e06796d0d3d664ec3bedd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:35:a1:f0:f9:3b:89:10:47:09:3b:88:fa:
84:85:29:93:ae:a0:7c:60:ce:d2:70:54:cf:69:ba:
32:5e:f3:21:d0:ea:da:a1:2b:8d:71:da:ce:1b:6c:
f6:1b:e0:74:cf:a5:0e:e3:fd:11:e8:84:65:13:93:
f6:cc:09:e6:7e:d4:d7:61:8f:3d:7e:be:e0:81:67:
d0:59:ae:e4:d0:1a:26:31:38:02:2e:a6:b7:ca:27:
8a:38:d4:f7:13:4c:7a:fb:2f:38:09:19:f9:20:c8:
69:b2:c4:26:1a:ef:72:41:c8:6a:83:81:ee:db:a8:
43:b2:d2:71:a1:67:cf:f5:6d:c6:99:ca:c2:4e:26:
ee:c4:60:6a:61:7b:8b:26:9e:cc:5b:7a:60:e4:9d:
9b:20:d9:2e:9d:90:1a:9d:e1:98:de:c1:2a:8a:fb:
63:f3:62:90:ac:33:25:84:5c:01:3f:89:3d:54:2e:
cf:cc:7f:e7:b3:73:86:d3:56:8e:e1:df:fb:35:fa:
23:48:24:31:a6:28:ad:cc:fa:83:37:ba:fa:d6:09:
82:1c:30:0b:b4:7b:dd:8f:25:fa:da:4c:d6:58:45:
e1:6f:a2:51:dc:4e:06:1a:35:ed:a9:7a:e8:17:2c:
33:fe:07:8e:15:08:05:32:a7:74:4a:1d:16:e3:7d:
58:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6D:B5:92:39:10:47:7B:73:E0:67:96:D0:D3:D6:64:EC:3B:ED:D9
X509v3 Authority Key Identifier:
keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:a5:b7:15:79:5a:50:46:be:06:61:b9:85:56:9a:1e:d8:0c:
07:c5:1f:e8:f1:8f:24:6f:4c:5d:5a:6a:26:52:fc:b8:c3:38:
d2:73:53:03:17:9e:40:a0:b6:a7:81:c3:3d:49:8f:0b:ce:7d:
68:f2:29:59:a5:9d:fc:20:75:55:6e:de:8e:4a:f2:a2:0f:7e:
48:e1:65:94:61:39:32:58:86:4c:47:b3:56:9d:8f:31:1c:3f:
a1:db:f0:0a:f0:79:b8:a4:7d:13:68:f3:e7:a0:ed:5c:39:e5:
d8:e8:ca:41:36:a1:95:eb:60:43:d2:c3:19:4e:2b:7e:83:55:
d1:4f:34:f2:74:dd:29:d9:8c:23:ee:1e:d9:c0:87:e1:8b:61:
c6:fe:83:b5:d5:d9:e0:b8:f2:ba:21:6a:4d:31:c1:a9:39:b2:
9b:70:93:a8:96:4c:90:14:de:56:46:54:ca:25:a0:ff:6f:ec:
5f:cd:3b:d3:73:60:d6:c5:3b:45:8d:99:81:cd:8b:81:6f:4a:
04:4b:56:1e:42:93:0d:19:6d:24:d8:ab:44:ca:ad:8f:bd:da:
c3:09:02:04:fa:e2:08:53:04:75:a8:8f:26:4a:d7:b5:f6:ad:
a3:9b:b6:81:a3:6f:07:bc:4b:44:8e:98:a9:a8:59:d9:4c:fa:
b0:fe:a3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:53:19 2025 by rpki-client