Manifest
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
File: bW-_qXU9uNhGQz21NR2ansB8lr0.mft (raw, json)
Hash identifier: da/vSXX2MPNNSBvwRRJF/o1vNyVQz6b3oyUmqXSKD0M=
Subject key identifier: C9:50:BF:21:67:38:3C:4F:F8:95:88:ED:AE:51:94:CE:E6:49:1F:B2
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: 01AA69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
Manifest number: 013F02
Signing time: Wed 23 Jul 2025 01:01:29 +0000
Manifest this update: Wed 23 Jul 2025 01:01:29 +0000
Manifest next update: Wed 23 Jul 2025 07:01:29 +0000
Files and hashes: 1: 0eIyeiGyIFKlmQZQX86bC9ciEr0.roa (hash: cyM/FkQoj9xO06P7TCTTv/LOo2Xuut82u3dZZ39/U9g=)
2: E0AAy4jgV_BtY7GQELCxALV6Q5U.roa (hash: 0YEsF8nmeEujfyIIOFiGW6CDXyDY9JCTr+LXIKq+emU=)
3: IdgNYO8v_dEbdoPuHFTpsjA3l0U.roa (hash: rr4euxcMf4+ZXrKMACe3mGR+5zZFKDjuT9seOvH/4fA=)
4: R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer (hash: fwCKuxtzzirqS8FvTIV+k7he6U4wthwt1LkI0CdYJKc=)
5: UDn6-ZD0WTj18D8nHih3D--ZO_s.roa (hash: E0/WsIxOejz2/RTbLMdD/5U9XX5PVXs0IPlP2v1u8tI=)
6: ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer (hash: Pft9iYjBesYTNht4g1UqgMiTx81vUwBXh8MKS/81v8U=)
7: bW-_qXU9uNhGQz21NR2ansB8lr0.crl (hash: YtzUk0GmT2oNCo9tPG+dYULWxsx5ZfLcZ8y+uw+aVQc=)
8: fDvN8JDIeg8h7b5wWCFK_F7J_SY.roa (hash: 3XTR+/4DackDLN++CL7fLb+4xpAjYp7KADxJhiiuXY4=)
9: fykdvBDNLvaFDLOeKcvquSaaNlM.roa (hash: 36Psre3MLHPEb3ezhbbE40C2QS1KDUyERdtNq15GTwU=)
10: lAN537Pqyt3IsX0kCwc4qs0Cejk.roa (hash: lXT5FVM7+7MTpRMcu84qhNRJxD2GNBRwCl7nT4luylk=)
11: laI1_vEYtlNzj-K0SXR_yGpd1TA.gbr (hash: UqQYG2z76G043/AlJNMTiXkQS0iMsC+J/mdxEEWdE3w=)
12: r-pLC2fDZMfxKp9PL1lylxFeQHs.roa (hash: NwnUQOTwUtYfhDg8EyWEkjuxKkBF9rlR8HB0QXbZKuA=)
13: xF8fZFbI8NRA4qk_N5CLpw6Nmj8.roa (hash: uVos6KXGCj74GgHG7sOPwpP0it60WyuUCM+9kzZw+Fw=)
Validation: OK
Signature path: rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 07:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109161 (0x1aa69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Jul 23 01:01:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=C950BF2167383C4FF89588EDAE5194CEE6491FB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:da:45:0c:00:be:b7:58:e2:31:61:75:d9:6e:
04:a8:65:67:71:84:8a:4e:db:4d:b5:a2:66:87:4d:
84:8a:8e:56:71:f9:6e:4b:33:ec:8e:40:e1:3d:ea:
e0:69:36:97:fc:e4:d2:29:88:8b:45:10:47:24:02:
5d:b1:eb:3d:60:6e:31:d8:d1:76:69:04:da:fa:82:
0a:50:ba:4d:ee:fc:f6:3c:8a:88:d3:55:a3:30:43:
c2:fd:33:a1:fe:c9:42:84:87:8a:f9:48:89:ba:8e:
ad:30:04:3a:25:e3:04:a2:a5:16:ae:60:8f:e4:6c:
8d:d2:b7:5d:24:22:02:89:83:9e:d3:7b:1d:4c:d4:
d9:b0:29:c2:57:61:ec:48:f2:f4:9a:fa:dd:ab:34:
2e:c8:be:f9:c3:6a:ef:5b:a9:f4:18:88:6b:1c:35:
db:69:c7:a7:03:ad:64:76:6f:55:54:82:39:bf:51:
4b:3a:a1:9a:3e:8c:09:f2:45:3b:04:c2:a4:91:b4:
24:90:1c:61:64:c8:fb:1f:77:6e:e5:8b:e5:55:fc:
43:0f:73:bd:fe:a8:3d:31:8e:9f:9b:a2:50:ea:19:
70:40:0f:00:2e:50:87:3f:5f:53:50:af:19:dd:83:
f1:b5:55:fd:42:da:40:dd:00:66:db:63:1a:f6:50:
3e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:50:BF:21:67:38:3C:4F:F8:95:88:ED:AE:51:94:CE:E6:49:1F:B2
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:08:90:0e:bd:21:c5:8f:cc:1a:58:27:ca:96:53:04:f6:ae:
d7:e5:ee:c2:d9:72:35:73:1f:bf:a9:68:af:51:e7:10:a2:38:
d4:62:ac:0b:a5:cb:e6:08:e4:6e:55:93:b5:b0:7b:06:01:eb:
16:c1:cb:6f:7b:a1:f6:73:34:91:d7:d6:ca:b0:f3:3a:93:c8:
c9:0e:02:75:1b:e0:17:e9:00:2f:b3:d6:5f:32:b8:8b:04:54:
b0:df:1e:b8:eb:21:22:0b:09:4f:2c:11:60:b1:eb:60:93:ca:
81:4c:24:db:35:4d:98:cb:dc:78:3b:fb:96:11:bc:2a:a2:08:
9e:dc:77:09:d6:d4:01:d6:27:63:50:d0:b5:be:fe:07:4a:f2:
02:d1:9c:19:a1:e8:c6:f8:73:14:fc:cd:57:c0:33:bb:a8:54:
c9:d6:69:13:8c:c2:fd:f7:36:30:d7:a1:05:d1:62:fc:d6:6b:
38:b9:82:cf:8e:9e:c4:23:ea:99:4b:db:39:60:2b:f7:75:9a:
ea:bf:2c:af:af:6a:8a:2a:b1:df:7a:e1:19:a8:fc:6b:b3:62:
29:ca:0a:53:d9:d1:42:ae:17:ed:62:c8:da:37:25:88:da:c8:
31:ec:ea:26:1a:4c:80:c0:05:86:6b:8c:4b:97:b0:5d:05:32:
53:af:02:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:18:15 2025 by rpki-client