Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: YokTahmgM5UNSI+46ivtT/d3nyC65eqR56HK9ekMq08=
Subject key identifier: CA:27:5A:F3:7F:25:A8:D6:CC:43:BC:9C:B9:10:94:47:ED:3C:71:1B
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 01976EBDE9E1158D564D44ACAC8735479BB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 02D0
Signing time: Sat 14 Jun 2025 14:00:29 +0000
Manifest this update: Sat 14 Jun 2025 14:00:29 +0000
Manifest next update: Sun 15 Jun 2025 14:00:29 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: xjtPfJRk9uRx4dwcdPPwa48LB1vvFo4q4b9pNVdXaEE=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:e9:e1:15:8d:56:4d:44:ac:ac:87:35:47:9b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Jun 14 14:00:29 2025 GMT
Not After : Jun 15 14:00:29 2025 GMT
Subject: CN=ca275af37f25a8d6cc43bc9cb9109447ed3c711b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ed:3d:88:64:79:2c:47:43:99:aa:7f:d4:50:
a8:3d:0b:af:7c:e9:03:2f:40:58:11:34:5d:85:64:
25:b3:bc:33:3d:df:79:d2:b1:32:45:79:ca:0a:d7:
40:3a:c7:7a:90:5e:3a:48:7f:1e:d8:51:36:0c:91:
9b:a5:eb:6b:75:a2:2b:9d:39:6f:2c:4e:87:05:75:
8b:2f:2a:38:09:b8:85:1e:17:da:8d:f0:08:fa:19:
f5:8a:e0:f4:66:07:3d:7a:35:ae:78:3e:89:95:82:
62:4c:35:f0:23:fb:51:0e:dc:ba:2b:f9:2a:9e:7d:
20:4f:5f:e7:fe:e9:60:d8:6c:ec:ab:64:1a:6c:62:
80:0b:4d:f9:1f:30:7e:cb:7f:c8:51:96:c1:92:3d:
61:74:fe:db:8b:e1:43:ea:f3:1e:78:ca:c0:71:56:
3d:08:35:f2:b9:70:6a:6f:d9:39:e9:dd:b6:dc:25:
d1:38:b8:c3:e5:3e:e1:4f:f7:82:dc:e2:cd:56:fc:
5a:07:e8:58:e3:66:62:f0:cc:e0:2d:fa:ee:aa:f7:
98:7b:e4:f6:71:15:63:b3:8a:ff:69:a5:a4:c8:95:
52:b3:df:b3:d6:78:c2:f0:26:8a:2f:28:cd:17:d2:
31:ba:a0:74:3d:d4:87:f0:5e:c0:ef:25:fe:e0:a6:
bd:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:27:5A:F3:7F:25:A8:D6:CC:43:BC:9C:B9:10:94:47:ED:3C:71:1B
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:3d:d1:68:55:be:49:40:e9:e9:4b:45:cc:97:68:de:7b:f2:
0a:02:75:55:25:62:12:0f:c0:66:46:39:d5:1a:08:7c:b5:cd:
cf:c8:69:1d:84:54:59:c8:a6:ba:46:c2:52:9b:9e:23:21:28:
a4:a7:22:dd:43:74:c3:45:38:57:77:ec:54:28:a8:9a:24:6e:
f3:ae:a5:73:7e:ce:b7:c3:96:71:1f:ac:08:ee:03:78:b9:bd:
26:b7:53:eb:c5:cc:27:d0:ea:9c:4c:13:ef:be:2b:01:c2:9c:
93:10:74:10:ac:f3:78:1f:67:9b:8d:55:6f:d5:36:b0:6e:19:
5d:7a:32:e0:a4:46:98:86:30:ab:b9:67:dd:91:65:55:d7:a1:
70:87:7c:0e:d6:ee:80:8f:dd:a8:1e:3b:67:33:ae:99:a3:c0:
44:86:9b:89:0d:24:93:f7:f2:1c:13:94:21:89:e7:5b:6d:ae:
56:63:c0:be:d3:6c:72:c4:67:6a:3a:e3:40:56:e1:c1:7a:65:
3e:f4:1a:16:92:0c:83:67:a5:9c:47:c5:d5:ce:80:4d:6b:0c:
94:95:e1:cc:d8:3e:44:c8:3a:6b:37:97:91:3c:1a:dc:a5:d7:
d0:53:21:90:bf:5b:5a:c4:55:fa:47:4b:f4:0a:54:f5:40:10:
ca:f3:91:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduvenhFY1WTUSsrIc1R5u4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkZjgyODIwODllMjg3NjY1MTIxMzNkNDIzNmFmNDE1YTM3
YmQzZDIwHhcNMjUwNjE0MTQwMDI5WhcNMjUwNjE1MTQwMDI5WjAzMTEwLwYDVQQD
EyhjYTI3NWFmMzdmMjVhOGQ2Y2M0M2JjOWNiOTEwOTQ0N2VkM2M3MTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+09iGR5LEdDmap/1FCoPQuvfOkD
L0BYETRdhWQls7wzPd950rEyRXnKCtdAOsd6kF46SH8e2FE2DJGbpetrdaIrnTlv
LE6HBXWLLyo4CbiFHhfajfAI+hn1iuD0Zgc9ejWueD6JlYJiTDXwI/tRDty6K/kq
nn0gT1/n/ulg2Gzsq2QabGKAC035HzB+y3/IUZbBkj1hdP7bi+FD6vMeeMrAcVY9
CDXyuXBqb9k56d223CXROLjD5T7hT/eC3OLNVvxaB+hY42Zi8MzgLfruqveYe+T2
cRVjs4r/aaWkyJVSs9+z1njC8CaKLyjNF9IxuqB0PdSH8F7A7yX+4Ka9iwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMonWvN/JajWzEO8nLkQlEftPHEbMB8GA1UdIwQY
MBaAFH34KCCJ4odmUSEz1CNq9BWje9PSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80NTJiYTctM2MxNS00YmJhLWFkMzMt
MjU3MWY3YTJkMjVmLzEvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80NTJiYTctM2MxNS00YmJhLWFkMzMtMjU3MWY3YTJkMjVm
LzEvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPj3RaFW+
SUDp6UtFzJdo3nvyCgJ1VSViEg/AZkY51RoIfLXNz8hpHYRUWcimukbCUpueIyEo
pKci3UN0w0U4V3fsVCiomiRu866lc37Ot8OWcR+sCO4DeLm9JrdT68XMJ9DqnEwT
774rAcKckxB0EKzzeB9nm41Vb9U2sG4ZXXoy4KRGmIYwq7ln3ZFlVdehcId8Dtbu
gI/dqB47ZzOumaPARIabiQ0kk/fyHBOUIYnnW22uVmPAvtNscsRnajrjQFbhwXpl
PvQaFpIMg2elnEfF1c6ATWsMlJXhzNg+RMg6azeXkTwa3KXX0FMhkL9bWsRV+kdL
9ApU9UAQyvORcw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:05:27 2025 by rpki-client