Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: PKEWnsqlWr5Vp7AG75h5islihKr6yoatCVxgEzH7oB8=
Subject key identifier: 61:7E:37:25:0C:20:8C:E2:24:F9:2B:4E:29:A8:B6:B9:76:B1:2A:17
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 01974A0CE3768BA16F6B1C2D71CDCF2C74C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 02BD
Signing time: Sat 07 Jun 2025 11:00:47 +0000
Manifest this update: Sat 07 Jun 2025 11:00:47 +0000
Manifest next update: Sun 08 Jun 2025 11:00:47 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: ZoaspDG/4ZBi1cKwabpLfr1IlLzIhHmPCGtqwZlxPYg=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e3:76:8b:a1:6f:6b:1c:2d:71:cd:cf:2c:74:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Jun 7 11:00:47 2025 GMT
Not After : Jun 8 11:00:47 2025 GMT
Subject: CN=617e37250c208ce224f92b4e29a8b6b976b12a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f2:0a:7a:48:58:c2:d9:ed:9b:93:b5:98:9c:
86:97:ed:0b:6f:ea:34:10:7f:cd:c8:8c:db:12:96:
19:f2:74:b0:29:f7:cf:b0:da:27:cc:a6:15:af:a0:
ed:8a:24:85:78:17:95:01:40:90:e0:cd:6f:bf:31:
fd:e8:60:46:85:e5:15:19:58:d5:f5:97:bf:2f:e1:
84:11:82:d5:b7:52:08:d0:b9:e1:cb:75:17:86:ae:
b1:17:d0:2f:e1:d6:c6:83:5d:b8:63:c7:f1:5a:1a:
0a:1f:13:dd:04:ff:da:d9:98:e1:bb:99:17:2a:42:
2a:6e:89:b4:7f:29:ab:25:a5:8a:b7:4d:89:fe:6a:
4e:f5:c7:94:2d:a9:b4:58:00:4a:34:74:af:da:99:
b1:4a:ec:c6:a1:10:35:15:73:31:37:9c:6a:cf:f9:
57:e3:cc:d7:37:8c:37:a0:2c:20:7f:da:be:6d:f1:
d8:b6:a0:d7:f7:30:43:41:aa:e7:3f:54:15:6b:e7:
b5:01:24:47:b8:80:2e:6a:6e:d4:7a:bf:a3:9a:72:
f6:bd:c0:c0:c3:32:63:5c:be:50:2c:cb:22:01:81:
4f:82:b9:74:2f:49:a4:22:95:1e:19:2f:11:42:c2:
fe:6b:96:d8:ea:4a:93:66:17:12:d0:0a:9e:ee:84:
6a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7E:37:25:0C:20:8C:E2:24:F9:2B:4E:29:A8:B6:B9:76:B1:2A:17
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:fd:d3:d7:66:19:ea:74:94:97:85:c6:97:ec:d5:03:e7:75:
31:46:b8:f7:f3:f1:44:d3:1c:e5:7c:b2:83:9e:36:cb:bf:3b:
93:24:d3:1f:74:93:b3:39:4d:bd:54:ac:d7:b0:60:6c:cf:7c:
79:c2:5e:2b:8a:c7:7f:cb:a3:98:68:e5:ca:6c:4a:79:26:d3:
5d:15:32:cb:18:ef:3a:64:a1:80:0b:2b:15:af:03:cd:61:88:
f7:51:a9:82:90:de:d1:a2:9d:7f:0e:de:5b:df:f4:28:d8:93:
6b:e6:04:49:c1:e9:09:a5:fc:02:65:cf:bb:2d:03:8f:7d:21:
49:a5:14:55:e0:2a:9a:29:8e:b0:39:3c:e4:be:1c:87:bb:f2:
77:24:34:d0:f0:7b:c8:71:2e:aa:b3:34:6c:e3:3d:14:6e:61:
30:a6:46:71:3e:52:2f:e9:d6:b1:59:02:cb:4c:93:a1:a7:1e:
9e:f6:c4:94:79:af:e4:bf:e2:e3:fa:f2:a0:01:26:31:02:df:
ed:d1:53:46:d5:55:46:81:66:47:ba:18:86:69:a1:36:06:7d:
52:02:3e:86:99:0c:35:e1:1e:b4:3d:62:d5:9d:94:a6:ae:51:
e2:5b:d8:ce:8d:66:13:a6:b2:19:c7:6c:3c:69:21:bb:e4:d6:
0e:87:98:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:52:04 2025 by rpki-client