Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: UtEMR24KUsoU9DMVoSeJNpXi+/kIpRJh4Zfj3JtLBs8=
Subject key identifier: 32:46:06:F3:49:B7:F0:BD:C7:47:C0:3C:E7:A9:8E:4E:6B:3D:0E:00
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 019EB87CAF82039CD3288CB0CB55B574FD07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 0697
Signing time: Thu 11 Jun 2026 21:00:39 +0000
Manifest this update: Thu 11 Jun 2026 21:00:39 +0000
Manifest next update: Fri 12 Jun 2026 21:00:39 +0000
Files and hashes: 1: VI88t701xOomwQbkq2A0MsUHhaE.roa (hash: RAWKc0L395XKof6Gm/hGtX8RP6I3bbR74YcCWfoMv7g=)
2: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: 6yyGmnV93l26QT3gOTeiKJiRZMJBPIkwpXl3X1tMSlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:af:82:03:9c:d3:28:8c:b0:cb:55:b5:74:fd:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Jun 11 21:00:39 2026 GMT
Not After : Jun 12 21:00:39 2026 GMT
Subject: CN=324606f349b7f0bdc747c03ce7a98e4e6b3d0e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:75:4c:c1:0f:29:e5:83:59:3c:7f:eb:7b:1d:
1d:c8:33:46:cb:7c:5d:5a:0a:73:38:33:0c:e4:14:
dc:d5:e7:27:8b:25:37:92:3a:7e:a6:39:d3:37:17:
e6:40:0d:c5:46:9d:06:68:5e:c8:31:ee:ca:70:8b:
a8:95:d8:a8:84:e2:f1:dd:83:f3:ca:8f:f2:5b:9f:
ae:2b:cb:93:bc:6a:3d:e0:dc:4f:fc:62:e7:c5:1b:
a2:0e:22:5c:cf:b6:04:d1:f6:09:cf:6e:13:cf:8f:
69:fa:69:4b:16:7e:4b:0d:db:d5:bf:32:81:52:8c:
78:63:fd:83:08:52:93:22:01:f9:95:0e:44:c1:2a:
fe:ce:c6:93:72:3e:42:41:99:66:7b:c2:4d:0e:23:
14:d4:9e:86:0a:08:b5:9b:12:26:e0:ee:6b:b2:35:
5a:48:ea:f7:20:88:3e:cf:fc:51:1a:97:d0:43:6c:
6f:86:8b:81:01:5f:ec:7b:a2:4d:08:0b:73:ae:f2:
26:99:ae:43:f6:c5:56:08:15:2c:32:20:b2:31:dd:
ca:1f:df:b2:a7:d5:4b:ae:1d:b6:3a:9b:11:11:d2:
f5:39:8c:d8:bf:c2:36:99:e9:56:7f:be:3b:e8:19:
49:eb:12:c4:96:f3:9a:10:67:d6:45:bb:c2:8e:6c:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:46:06:F3:49:B7:F0:BD:C7:47:C0:3C:E7:A9:8E:4E:6B:3D:0E:00
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:2a:99:cf:aa:f1:0d:b7:35:ec:d7:8a:ab:5a:f4:eb:ff:5d:
2b:77:e5:4d:43:2a:8d:b3:6e:f7:ca:99:55:eb:a2:f5:fa:74:
0e:ef:38:c3:ee:e1:d2:5c:59:8f:0a:a6:c0:a1:39:a4:57:3c:
5f:83:74:9b:18:0f:5d:2a:29:5a:5f:09:e0:06:14:5b:01:c0:
60:46:9f:4c:41:b9:55:55:5b:e5:7b:d1:e8:de:9a:3e:07:37:
43:7a:fe:7a:16:ef:8f:21:93:0f:10:db:f3:66:98:e7:7c:c7:
51:d6:27:76:a2:8a:43:10:ec:5d:de:6e:2c:14:2b:1b:35:7c:
b2:28:56:4f:1d:ae:9e:bf:42:e4:43:64:a4:af:84:83:d9:74:
72:ae:19:b0:5e:0c:2f:66:b0:1a:b1:b2:5c:26:eb:84:b4:a7:
7b:0c:f3:30:0a:cd:d8:26:a2:fa:42:54:cd:da:b7:79:f0:9b:
06:74:85:cd:34:04:91:3e:91:8e:e7:11:36:6e:ea:72:13:66:
09:52:f5:03:a0:bc:6a:61:f9:9b:46:82:11:7f:98:70:65:81:
70:75:bc:25:9b:11:c9:8d:a7:01:fa:62:bf:5d:91:c7:93:ab:
d6:4b:23:c7:ed:0c:bd:23:97:17:72:79:72:73:82:82:97:ce:
e9:58:92:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64fK+CA5zTKIywy1W1dP0HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkZjgyODIwODllMjg3NjY1MTIxMzNkNDIzNmFmNDE1YTM3
YmQzZDIwHhcNMjYwNjExMjEwMDM5WhcNMjYwNjEyMjEwMDM5WjAzMTEwLwYDVQQD
EygzMjQ2MDZmMzQ5YjdmMGJkYzc0N2MwM2NlN2E5OGU0ZTZiM2QwZTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXVMwQ8p5YNZPH/rex0dyDNGy3xd
WgpzODMM5BTc1ecniyU3kjp+pjnTNxfmQA3FRp0GaF7IMe7KcIuoldiohOLx3YPz
yo/yW5+uK8uTvGo94NxP/GLnxRuiDiJcz7YE0fYJz24Tz49p+mlLFn5LDdvVvzKB
Uox4Y/2DCFKTIgH5lQ5EwSr+zsaTcj5CQZlme8JNDiMU1J6GCgi1mxIm4O5rsjVa
SOr3IIg+z/xRGpfQQ2xvhouBAV/se6JNCAtzrvImma5D9sVWCBUsMiCyMd3KH9+y
p9VLrh22OpsREdL1OYzYv8I2melWf7476BlJ6xLElvOaEGfWRbvCjmyShwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJGBvNJt/C9x0fAPOepjk5rPQ4AMB8GA1UdIwQY
MBaAFH34KCCJ4odmUSEz1CNq9BWje9PSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80NTJiYTctM2MxNS00YmJhLWFkMzMt
MjU3MWY3YTJkMjVmLzEvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80NTJiYTctM2MxNS00YmJhLWFkMzMtMjU3MWY3YTJkMjVm
LzEvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHyqZz6rx
Dbc17NeKq1r06/9dK3flTUMqjbNu98qZVeui9fp0Du84w+7h0lxZjwqmwKE5pFc8
X4N0mxgPXSopWl8J4AYUWwHAYEafTEG5VVVb5XvR6N6aPgc3Q3r+ehbvjyGTDxDb
82aY53zHUdYndqKKQxDsXd5uLBQrGzV8sihWTx2unr9C5ENkpK+Eg9l0cq4ZsF4M
L2awGrGyXCbrhLSnewzzMArN2Cai+kJUzdq3efCbBnSFzTQEkT6RjucRNm7qchNm
CVL1A6C8amH5m0aCEX+YcGWBcHW8JZsRyY2nAfpiv12Rx5Or1ksjx+0MvSOXF3J5
cnOCgpfO6ViS+A==
-----END CERTIFICATE-----
Generated at Fri Jun 12 03:20:43 2026 by rpki-client