Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: PUSyqh1nXQWnrLQ9PkyFGXLhcbCqK8Hsqgwnfv4+lMA=
Subject key identifier: E4:05:98:3A:46:7B:B2:DA:71:B0:EE:6D:45:F3:5B:A9:3D:D2:BD:31
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 019873740CD0E0897140093A667AB4A6C149
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 0357
Signing time: Mon 04 Aug 2025 05:00:41 +0000
Manifest this update: Mon 04 Aug 2025 05:00:41 +0000
Manifest next update: Tue 05 Aug 2025 05:00:41 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: LMT08TM/dp8Q17uOodnxxk2uKe5UL4hp8FlP/ATEdqU=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:0c:d0:e0:89:71:40:09:3a:66:7a:b4:a6:c1:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Aug 4 05:00:41 2025 GMT
Not After : Aug 5 05:00:41 2025 GMT
Subject: CN=e405983a467bb2da71b0ee6d45f35ba93dd2bd31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a4:5d:ba:e5:b7:eb:9a:bb:74:d2:87:60:36:
8a:ca:12:bd:cf:5f:43:f5:c5:8b:0c:5f:9d:c4:c6:
60:52:64:11:34:a0:fe:23:a1:1b:84:2a:63:d2:cb:
37:18:8b:34:af:66:4d:23:84:1e:75:52:76:e1:b8:
88:bb:8c:9a:c0:b3:37:2c:aa:95:35:be:52:71:c4:
fb:28:27:13:4c:a8:3a:3e:c3:11:b6:93:44:b6:6a:
1b:03:5d:61:94:04:96:47:25:38:ac:6b:4d:4b:7d:
63:95:c3:c7:a4:00:55:03:d2:69:12:0d:95:53:76:
b1:ac:3e:d9:fd:03:25:69:d8:cf:58:4c:9b:39:90:
4d:25:a4:18:56:20:83:10:d2:72:db:b7:a6:b5:61:
af:ee:5d:17:0d:33:3f:3d:48:f1:f8:8a:f1:9a:3c:
52:e2:d4:ce:0c:db:8d:52:bb:d5:1f:67:e9:46:a1:
c5:2b:81:99:c9:7b:40:ec:ac:86:73:11:7f:ae:f0:
b6:fc:6b:5a:4a:78:53:9e:d9:7f:14:ed:1b:35:39:
81:25:b4:5b:5c:ae:f8:20:6c:a9:20:3a:a3:75:b2:
db:a1:89:92:e2:1d:9e:bf:55:c8:0d:53:5d:a9:f9:
03:f3:3f:cf:b1:06:e6:7c:7c:18:c7:cf:09:64:c2:
44:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:05:98:3A:46:7B:B2:DA:71:B0:EE:6D:45:F3:5B:A9:3D:D2:BD:31
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:f4:e6:80:cb:64:bc:ae:15:bf:77:dc:49:b8:d4:b1:03:39:
9e:32:d6:21:60:ce:38:f2:f6:c7:42:ea:06:82:8d:01:a4:5c:
40:67:66:27:b6:d8:85:f2:ca:27:ce:e5:ba:97:28:ef:83:e9:
35:d2:18:83:e4:5a:4e:9f:b9:2b:24:c2:1d:d5:f6:f5:f7:ab:
82:52:a4:ca:cf:7c:94:f3:51:2e:4c:81:7a:6e:9f:8b:8c:a8:
9a:7c:aa:f9:70:3b:10:ca:ef:e3:83:ba:47:83:69:23:8e:e4:
05:3f:81:7f:fd:8a:17:81:39:2d:49:ac:f5:f7:e9:78:37:f6:
df:20:4c:1c:b4:5a:fb:a2:a8:25:b9:61:bd:48:85:c4:09:12:
63:42:43:f1:76:1f:51:81:ea:ec:9a:4a:6b:bf:76:72:4c:03:
9d:73:98:a2:4a:45:85:23:a1:31:c5:a8:5e:45:21:62:88:ee:
73:9d:8c:cd:71:88:ba:6a:95:a2:d7:20:ce:72:66:2d:0f:f7:
d9:40:16:ec:23:d6:62:45:29:b7:1e:83:95:91:f6:86:e2:3e:
db:04:c3:c9:d1:45:60:0b:39:fe:64:ce:8d:e2:aa:47:b7:8e:
84:70:91:44:85:25:6f:4a:c5:19:f6:c0:4f:9e:6b:87:60:94:
27:17:f7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:29 2025 by rpki-client