Manifest
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
File: bW-_qXU9uNhGQz21NR2ansB8lr0.mft (raw, json)
Hash identifier: 1tSgpUFoWVFD6VMKmaJYtdzDrJjqS2IDieFVZKJNIlI=
Subject key identifier: C9:50:BF:21:67:38:3C:4F:F8:95:88:ED:AE:51:94:CE:E6:49:1F:B2
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: 015544
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
Manifest number: EA10
Signing time: Thu 25 Apr 2024 21:59:50 +0000
Manifest this update: Thu 25 Apr 2024 21:59:50 +0000
Manifest next update: Fri 26 Apr 2024 03:59:50 +0000
Files and hashes: 1: 8mdKvv6WDmdbe4bzPB5FBaKq3Ko.roa (hash: GrH848EtzLQK6eNM7RKU41hsJ3LcZPaIkfPsV1VDdLo=)
2: Cj5ZRKtByA1oSvzgNdbXx2kuZQ4.roa (hash: ZEVMpj1l9RZGSL43WiWgUXRXufJh/xIXULJdQaQWNJ0=)
3: IrcDN_7m6t4d6eX-0Lwl942jFbw.roa (hash: 2hFkyP9fj2LSfM/EqdJXEP4H4x2DB4x+/3lt7w+Glu8=)
4: NKcuY5DvQmG0vwsI6MT4nqcBcoI.gbr (hash: XCvbaQ4jLs+FYEfGWvvAosp8+KDpC3bqUaEVid9HzLg=)
5: QS2kJBtmt1RhbzbbPFHSY8iuyN0.roa (hash: wLNfIjfjB/Cufsq2+1DPwegAsj4qNltdJvWamauPm58=)
6: R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer (hash: Rzg/EZBttguYfRZGbOaoDPUnBt3/xZ5TM8h6czyqmVY=)
7: TFexsS7wMHP5o4Ij3ZkGJmlw8Jg.roa (hash: Z333zwglKJdvaAOyhlAIv9oXJfHVOnlHuEM0TQLbjPw=)
8: U45pfCYqljJXOC9Vd1bKQVM1bwo.roa (hash: GU5ZBy59SJR67lq2z35yFUn5OrRMigkqWL/kf/VrBJE=)
9: bW-_qXU9uNhGQz21NR2ansB8lr0.crl (hash: dUq+OyNS3eLSQJrz4mtTXHU7hxEVC3B2+SxGM6egGhg=)
10: j4ln5e_lXw3tx_epTAGV0lMg-S0.roa (hash: lxOhc8qRk/ABlqlUEzpR5I8u+QPrE6n1gDp9oz26lWc=)
11: kEBySXrNC0v9rOC9xiBUxarIfH4.roa (hash: FyjE7Y9efKxm1h4E2lQFzyMhdHUCY33ftWiln7QE+og=)
12: u3LxPDwE68JjCe4rglZq-TiLgdQ.roa (hash: TL9uFRNt2yylbvERYgsQzvW7FKzRTjnH6ltkOEjxQ7M=)
13: w4aQNJ6BTAhSy8N4jpzB1C_y4HU.roa (hash: wIU9BI6fyhBSfnUIs22MlIgIfUPGB/EErx+QcgVKZhY=)
Validation: OK
Signature path: rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 03:59:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87364 (0x15544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Apr 25 21:59:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C950BF2167383C4FF89588EDAE5194CEE6491FB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:da:45:0c:00:be:b7:58:e2:31:61:75:d9:6e:
04:a8:65:67:71:84:8a:4e:db:4d:b5:a2:66:87:4d:
84:8a:8e:56:71:f9:6e:4b:33:ec:8e:40:e1:3d:ea:
e0:69:36:97:fc:e4:d2:29:88:8b:45:10:47:24:02:
5d:b1:eb:3d:60:6e:31:d8:d1:76:69:04:da:fa:82:
0a:50:ba:4d:ee:fc:f6:3c:8a:88:d3:55:a3:30:43:
c2:fd:33:a1:fe:c9:42:84:87:8a:f9:48:89:ba:8e:
ad:30:04:3a:25:e3:04:a2:a5:16:ae:60:8f:e4:6c:
8d:d2:b7:5d:24:22:02:89:83:9e:d3:7b:1d:4c:d4:
d9:b0:29:c2:57:61:ec:48:f2:f4:9a:fa:dd:ab:34:
2e:c8:be:f9:c3:6a:ef:5b:a9:f4:18:88:6b:1c:35:
db:69:c7:a7:03:ad:64:76:6f:55:54:82:39:bf:51:
4b:3a:a1:9a:3e:8c:09:f2:45:3b:04:c2:a4:91:b4:
24:90:1c:61:64:c8:fb:1f:77:6e:e5:8b:e5:55:fc:
43:0f:73:bd:fe:a8:3d:31:8e:9f:9b:a2:50:ea:19:
70:40:0f:00:2e:50:87:3f:5f:53:50:af:19:dd:83:
f1:b5:55:fd:42:da:40:dd:00:66:db:63:1a:f6:50:
3e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:50:BF:21:67:38:3C:4F:F8:95:88:ED:AE:51:94:CE:E6:49:1F:B2
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0d:5b:29:48:c5:25:50:c2:c5:70:27:8c:6b:f7:d2:5e:02:38:
f9:49:fa:84:18:ec:81:64:52:1a:a6:46:40:9c:1f:fa:69:93:
3b:6f:52:57:d9:cc:61:03:ee:a8:d8:f3:01:e9:d1:3c:c0:8d:
79:32:d4:f2:25:d1:ba:6c:52:43:55:10:77:3e:e1:17:4f:d9:
4f:be:07:bd:c9:a6:67:47:ad:47:bf:28:0b:27:02:89:2b:52:
c8:dd:0d:7b:72:4f:63:3e:aa:13:a8:a0:b4:2f:97:54:1e:1f:
63:91:ff:db:d8:26:f5:b2:21:07:a2:2f:4f:88:9c:47:9f:55:
ce:f3:78:1e:3e:92:61:df:c4:a0:4d:8f:dc:23:d6:e1:e8:8e:
0f:96:71:b5:33:6e:2f:a1:23:e0:1a:47:72:72:7e:b9:e0:ea:
79:58:cc:48:bd:d0:74:7c:cb:20:00:57:47:d1:ac:d8:78:b6:
f0:6b:39:19:f8:43:f7:74:65:32:36:2d:94:9a:80:ca:51:59:
f5:db:c8:3d:b9:c8:3f:4a:68:0b:6a:43:b2:aa:a0:75:0a:93:
72:60:9d:d3:8c:12:85:17:cf:2d:66:2c:1e:09:a4:d7:b3:05:
c9:45:b5:52:f8:49:ca:78:46:5d:2f:77:10:64:3e:c5:3e:bf:
24:2b:95:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:30:48 2024 by rpki-client on console-fra.rpki-client.org