Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: a+LTaHc/osBPozK4D0NvAKAT0Dfo8mlFY/OOoG7VtQE=
Subject key identifier: 24:46:CB:A7:B6:EC:3F:5E:9A:5B:8D:AC:CF:5F:85:3D:7C:8F:F1:6F
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 0199179A97C06650A95E1EDAD7A046040DD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 03AC
Signing time: Fri 05 Sep 2025 02:00:31 +0000
Manifest this update: Fri 05 Sep 2025 02:00:31 +0000
Manifest next update: Sat 06 Sep 2025 02:00:31 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: GNzij3hs7P3UeXQ7/TuB9FW1r02eCwo8YpWCSOA+G44=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9a:97:c0:66:50:a9:5e:1e:da:d7:a0:46:04:0d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Sep 5 02:00:31 2025 GMT
Not After : Sep 6 02:00:31 2025 GMT
Subject: CN=2446cba7b6ec3f5e9a5b8daccf5f853d7c8ff16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:70:31:f9:cf:10:ef:97:95:d1:04:8b:fd:6a:
e4:a8:1e:7c:ef:33:ed:f4:50:49:32:26:2a:db:01:
ea:59:f6:a7:e2:49:e6:75:7b:75:b0:6e:10:23:66:
92:c2:55:a6:dd:81:55:d9:0a:98:5f:0b:14:89:ed:
1c:1b:dc:ef:6d:70:1d:0c:ec:97:e0:2a:c8:e0:f8:
3e:65:20:0f:bb:bf:8d:83:28:a7:7c:42:f6:89:ac:
0f:18:50:9e:16:70:3e:ab:f1:e1:53:14:df:a9:e3:
e4:d8:08:d5:ca:a1:a9:cb:5e:fb:94:22:0c:cc:32:
80:1a:a0:43:07:bb:d3:21:2a:c1:4f:9a:db:ed:32:
ed:33:83:ce:67:5d:53:a8:d4:51:70:7f:71:90:de:
3e:b0:a0:be:ba:f8:e5:f7:97:9c:10:df:0e:a3:50:
fe:73:72:78:a9:45:19:25:c8:22:28:ca:8a:a6:3d:
02:02:44:80:7d:8a:2e:f7:29:26:95:72:63:d4:22:
0d:60:e1:a6:2d:5a:66:cd:e4:73:06:f8:ca:fb:b7:
28:b0:d2:45:02:9c:bd:41:82:61:3b:06:62:ab:c3:
f5:f4:45:5c:1b:bd:7e:4e:fb:5c:42:2a:98:68:b9:
a9:f8:ca:ed:7e:b7:97:2c:af:ac:1e:c0:45:d4:b7:
7d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:46:CB:A7:B6:EC:3F:5E:9A:5B:8D:AC:CF:5F:85:3D:7C:8F:F1:6F
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:9b:03:e3:11:60:c1:2e:49:65:00:0c:98:49:a0:23:92:12:
5e:6f:55:92:5e:15:4f:da:83:2c:eb:0a:39:38:60:7a:31:5d:
f1:10:34:96:8a:1f:b9:b1:eb:f4:6b:f8:8a:77:61:25:57:91:
0e:ba:8d:fc:36:3d:d3:f9:89:1e:09:ec:91:63:4d:a1:82:8a:
f6:9d:7a:59:3c:40:fa:ad:27:cd:d7:e5:62:e5:d6:23:42:4f:
1d:89:fb:da:81:fa:4b:2f:9a:b6:80:70:28:09:9b:cc:92:57:
59:6f:97:73:07:47:56:ef:7f:b3:ec:d1:17:a1:89:e2:3c:41:
74:cc:0e:54:c8:f0:9f:c2:bd:87:08:f3:6c:f7:be:b6:da:ff:
2c:96:21:95:67:81:fc:93:5b:a4:89:13:76:12:33:e7:ee:0a:
1c:d9:ed:b8:b2:44:b2:04:f5:b9:7a:c2:ba:3b:43:c4:0a:f5:
0e:f7:5a:2a:64:6f:58:3b:27:92:3f:d1:a4:58:96:e8:13:b2:
98:35:bc:e5:af:a9:4b:88:b9:05:51:75:22:cf:38:ee:14:55:
60:31:54:32:8c:6a:4a:84:fc:4a:63:11:ef:12:49:e4:03:30:
3d:36:f8:63:b8:db:be:0d:5b:79:84:4d:74:c2:7f:b3:89:cc:
a9:16:94:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:03:50 2025 by rpki-client