Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json)
Hash identifier: aiL82WjaSzwJty3Vyt5SHZ4ImsyT4kmgCkNp4v+QKZI=
Subject key identifier: F9:D7:78:FA:54:10:C8:06:95:31:D4:20:21:EE:93:A6:9E:BD:5A:34
Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd
Certificate serial: 01964F6D3C0DB371BB10BC1C3570928B47EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
Manifest number: 04B3
Signing time: Sat 19 Apr 2025 19:01:20 +0000
Manifest this update: Sat 19 Apr 2025 19:01:20 +0000
Manifest next update: Sun 20 Apr 2025 19:01:20 +0000
Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=)
2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: LHD05d55FJYBACe62Ab7qfuF2duN7IzVWrx9D6r9ROk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:3c:0d:b3:71:bb:10:bc:1c:35:70:92:8b:47:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd
Validity
Not Before: Apr 19 19:01:20 2025 GMT
Not After : Apr 20 19:01:20 2025 GMT
Subject: CN=f9d778fa5410c8069531d42021ee93a69ebd5a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9b:da:47:fd:4e:36:ac:a0:ae:fb:f6:9e:7c:
7c:ce:e3:f0:b6:6a:dc:5a:ca:09:6c:65:77:cc:7c:
6e:f5:e0:53:08:20:6a:0f:b9:12:8f:c7:08:59:10:
b0:7a:46:6e:71:ae:b5:55:48:d6:b1:5a:ec:14:bc:
99:92:40:90:d7:e8:5c:07:b5:37:b2:50:22:34:43:
5b:ea:da:46:c1:5e:40:8d:df:9d:bd:d5:ab:69:45:
79:ec:da:bf:25:2c:6d:bc:b8:96:93:7b:b0:f2:6c:
5e:ef:19:3a:e3:d3:96:46:84:75:93:fe:f0:6f:f7:
44:fe:d1:82:a1:57:ad:de:c6:16:64:c6:59:d6:e9:
28:f9:dd:ef:a2:2d:e8:55:6c:1a:42:58:8d:3c:eb:
6f:4e:c6:59:3c:ca:2b:2a:14:8b:9a:7e:aa:c5:69:
f1:2c:fe:b4:68:34:37:a8:2f:54:62:5a:6e:3f:4e:
ce:ef:bf:52:65:45:e7:39:90:5b:08:14:ca:bc:52:
12:25:4c:a6:8a:e6:86:18:d4:6f:61:f1:b9:14:1f:
a5:96:c5:81:69:f8:6c:f0:85:be:cc:a2:cb:1b:6d:
b9:07:2e:8e:6f:f3:83:08:f9:3a:dd:4a:53:31:d0:
f0:cd:4c:f7:35:57:88:fb:4f:cd:90:06:06:bd:78:
9a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D7:78:FA:54:10:C8:06:95:31:D4:20:21:EE:93:A6:9E:BD:5A:34
X509v3 Authority Key Identifier:
keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:f2:3a:db:28:97:bc:28:a5:20:b9:f4:ac:bf:d9:3f:4b:c6:
83:03:bb:14:5a:a5:55:08:d9:7f:1b:29:71:2a:6a:1c:fa:d8:
27:98:c0:5f:2e:bb:05:b3:07:c4:6d:fb:c2:3f:6d:b2:dd:0f:
58:ee:fb:11:a7:b6:71:96:25:6f:3b:9d:95:01:e5:0b:ae:e7:
ca:17:80:01:a7:a7:f0:a2:9c:c4:76:a4:ed:29:46:e9:02:54:
fd:92:66:28:5c:6b:92:5b:6e:f2:a1:09:41:5b:32:f4:47:07:
08:41:6a:d9:d8:92:00:6d:84:20:c4:24:a5:a9:7d:f5:fb:b0:
74:96:f5:54:1b:a8:89:fd:f3:ef:9f:74:c4:f9:2f:32:4a:ea:
3c:db:6d:db:6c:7e:ff:40:b6:4d:22:9d:2f:19:20:a7:ab:b5:
64:22:f1:96:50:30:4e:48:da:ea:13:ee:cb:11:be:9b:87:e1:
6a:14:34:34:f3:0f:0e:db:b0:8d:dc:ce:b3:db:a8:e8:b2:41:
27:fd:b3:0d:bb:c2:bb:45:d4:e8:5e:37:22:ed:0b:ee:fc:43:
30:53:21:47:86:fd:15:54:e9:0d:a8:4c:8f:fa:cb:71:2d:94:
65:53:5f:6f:9b:13:22:19:ec:8c:0d:78:76:ee:e2:20:62:a7:
57:bd:b9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:03 2025 by rpki-client