Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: Rgry4i6HUOTE8/2VXrG7och/U5LCKrAozkdqOjIM3DA=
Subject key identifier: 6A:5E:A4:54:6F:A2:54:DE:57:A3:8B:A7:CF:39:8B:DE:66:64:03:6C
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 0194BB602A2DDC38C4AE20DE6B2CC86085E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 016A
Signing time: Fri 31 Jan 2025 08:00:29 +0000
Manifest this update: Fri 31 Jan 2025 08:00:29 +0000
Manifest next update: Sat 01 Feb 2025 08:00:29 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: O88qE1vGZ7xf8JTlR21DqZyXgz7ALLY5q1skM8nzfDg=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:2a:2d:dc:38:c4:ae:20:de:6b:2c:c8:60:85:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Jan 31 08:00:29 2025 GMT
Not After : Feb 1 08:00:29 2025 GMT
Subject: CN=6a5ea4546fa254de57a38ba7cf398bde6664036c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6f:15:92:40:7f:8f:ee:82:7b:83:a8:c3:63:
e0:b2:51:60:21:89:4f:6e:c8:38:df:46:6a:f5:2e:
20:e7:23:e0:c6:fb:fe:62:6d:95:16:74:40:81:c3:
97:9d:d3:4c:fe:49:7e:13:b6:81:c7:cd:a6:ba:60:
84:00:ee:6a:0e:5e:eb:4d:5d:41:e6:21:c6:54:c5:
f1:1a:4f:d3:33:44:10:d2:e8:d0:11:0e:8f:c5:6d:
bb:70:07:c8:32:d8:f1:a8:c3:32:45:39:06:dc:c2:
cf:15:27:77:3d:66:2b:70:be:d1:7f:1f:33:5d:eb:
0d:df:3b:f7:c9:57:3c:5b:fa:8d:ba:3f:0d:c4:af:
f0:1b:46:04:2b:ac:ba:52:90:36:dc:7e:ab:a1:e1:
88:d4:3f:b7:2d:e4:9b:64:dc:e7:1b:e8:d5:f5:0e:
8b:0a:48:af:0c:ce:05:a5:39:a4:15:1f:5b:81:d6:
ab:65:ee:69:09:c7:e5:c8:d0:d8:16:7f:8e:eb:fd:
f3:65:06:de:1c:6e:98:50:df:b3:ba:98:e2:eb:ce:
c4:9c:bb:22:60:64:46:e7:c0:7b:11:ff:45:c9:e0:
3d:fd:ec:28:4d:cc:1d:e9:eb:42:a7:95:9d:3e:73:
c6:bc:69:80:9e:36:0e:26:6a:9f:25:7f:bd:85:11:
83:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5E:A4:54:6F:A2:54:DE:57:A3:8B:A7:CF:39:8B:DE:66:64:03:6C
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:93:50:5f:c3:e7:69:13:44:17:9d:9d:2c:48:b9:65:15:c4:
d3:97:33:6f:89:f4:db:50:ed:f8:0c:cf:ba:e2:6c:97:1d:59:
4e:d1:d2:fb:39:49:1f:7e:aa:21:0c:44:36:13:57:e2:c0:4a:
70:31:3f:36:58:72:10:60:e2:68:fd:6f:98:6d:75:95:4d:ac:
41:bf:27:51:1f:06:79:a9:32:e5:b9:5b:4e:60:ea:eb:af:0a:
d9:79:0c:10:d0:08:26:4f:c1:a9:79:1b:37:8c:d4:f7:ea:c6:
8b:af:9d:57:a8:30:57:5b:43:1e:0e:be:3a:fe:bb:20:f0:48:
14:d8:01:c7:ee:c0:b8:4a:4b:82:4a:15:1c:85:79:6c:81:c6:
d8:70:65:d9:e5:4b:c1:65:ac:25:3d:ca:c0:d4:e2:52:76:7f:
1c:57:5c:49:23:4b:b5:9c:2f:f1:13:50:05:4c:ae:4c:44:5d:
49:04:84:90:d4:10:98:2b:bc:19:bf:e9:a6:4b:2d:c8:d7:1a:
9a:57:87:11:1e:93:c0:0c:f4:f2:1b:27:96:2e:b8:14:68:3b:
50:24:a8:c2:c4:8d:84:eb:24:f1:1f:f7:e3:d2:8c:91:f0:63:
d1:a6:92:31:5d:d4:a7:96:ff:f8:34:68:01:9d:5e:03:ee:69:
4a:15:47:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:30 2025 by rpki-client on console-fra.rpki-client.org