Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: 8DqANvY49w+guz2yF/S6i/Kld5dSPsXtb9GFLUcvSlw=
Subject key identifier: 44:39:BD:3E:18:07:FD:6D:C5:F4:50:56:5C:5B:EE:A5:65:A0:12:AA
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 019578A20C277CF0E33830B3B50FEAFD8196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 01CC
Signing time: Sun 09 Mar 2025 02:00:40 +0000
Manifest this update: Sun 09 Mar 2025 02:00:40 +0000
Manifest next update: Mon 10 Mar 2025 02:00:40 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: LIpsd2T2w8my/4pmE7axMuCan8uoSTVvFDtxoDqz1xs=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:a2:0c:27:7c:f0:e3:38:30:b3:b5:0f:ea:fd:81:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Mar 9 02:00:40 2025 GMT
Not After : Mar 10 02:00:40 2025 GMT
Subject: CN=4439bd3e1807fd6dc5f450565c5beea565a012aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cf:36:24:98:3c:bd:c2:40:40:cb:be:22:9b:
e7:51:99:2d:50:1f:6d:f2:c4:a9:b1:eb:8b:0b:49:
ed:f3:7c:17:1d:2f:08:0e:69:4a:47:43:00:78:9a:
db:9e:cb:35:4c:6b:ea:06:2b:ce:fb:03:49:3d:f5:
ee:a5:41:47:16:55:07:59:b3:01:8c:d9:ae:bd:3f:
79:43:b0:2c:5c:a2:74:a1:9b:0c:d8:e5:ca:a1:fd:
4d:60:69:f7:76:37:5b:b9:0a:be:40:8e:3d:3e:25:
20:f5:12:d5:b8:d8:52:93:ed:4e:60:a8:73:dd:b3:
63:a6:a1:84:c4:2a:bf:4f:3d:8a:b9:67:37:6c:cf:
85:ae:e4:42:83:3b:d4:d3:05:49:34:db:59:d8:9d:
f8:9a:3b:bd:c3:13:e3:6d:14:5f:38:6e:27:b8:32:
fe:bf:75:16:e9:94:8e:6d:6d:1b:81:7c:54:a0:ac:
bb:cc:cd:de:56:f7:46:f9:2e:71:f7:0e:e3:11:4d:
ea:c3:62:40:58:f0:cd:d2:90:7f:43:d6:56:55:98:
aa:c7:59:cb:cf:a3:29:a7:80:21:96:c4:b8:e3:97:
0e:94:1e:8d:f2:15:fa:21:eb:e6:98:78:33:84:ef:
57:fe:e0:08:4b:64:74:6d:23:94:ef:5b:3f:50:03:
76:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:39:BD:3E:18:07:FD:6D:C5:F4:50:56:5C:5B:EE:A5:65:A0:12:AA
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:60:e9:bd:0c:8b:95:5c:ad:42:4b:77:df:9a:c9:1f:44:e3:
63:51:5c:75:7e:f5:a9:e4:39:66:ab:76:3a:c7:96:6d:ba:60:
69:95:8c:1a:23:29:d8:42:2b:44:8e:b0:d4:1c:65:d5:bd:72:
7d:73:c2:8f:1c:ad:5c:09:9b:97:b5:fa:eb:35:e6:ab:4e:2b:
fa:2f:36:22:5a:7e:54:07:c6:a4:cb:cc:6f:15:ff:6a:c7:72:
aa:75:7e:14:34:14:2c:59:ed:76:d8:32:ae:93:d7:a4:1b:25:
13:c1:c9:68:4c:a2:f4:1a:fb:f0:41:75:f3:b9:f8:11:a4:c4:
16:4b:f4:16:3e:92:10:9f:48:c6:80:c6:b1:9a:ca:05:af:ab:
8e:0a:80:c6:3f:0c:a4:7d:3e:19:63:d4:b6:01:4a:42:1f:15:
45:d8:cf:da:d9:2d:fa:ef:aa:bd:fb:a9:4c:56:d7:71:83:11:
92:fd:bc:c1:58:f7:1b:09:a8:af:9b:46:be:dc:73:51:6c:a3:
fb:a1:09:3e:db:e9:ea:a1:8a:d6:53:90:cf:23:df:5e:a6:a0:
48:3e:38:18:d9:93:fc:d8:3b:40:42:87:49:28:36:54:ad:d2:
bc:65:0d:07:ef:93:05:ad:52:f3:c1:6c:1b:5b:5c:aa:b1:ee:
49:ac:17:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 10:09:27 2025 by rpki-client