Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
File: ffgoIInih2ZRITPUI2r0FaN709I.mft (raw, json)
Hash identifier: o3fj7WZlYUOZniHQe3Z9AkIEXBq119grpgGPxNmB10c=
Subject key identifier: C7:B0:12:E0:61:03:69:E4:DB:AE:69:3D:7A:F3:D1:9F:9E:8A:27:82
Authority key identifier: 7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
Certificate issuer: /CN=7df8282089e28766512133d4236af415a37bd3d2
Certificate serial: 019A27E6B57A91ABFF26DF91F013726E65D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
Manifest number: 0439
Signing time: Mon 27 Oct 2025 23:00:22 +0000
Manifest this update: Mon 27 Oct 2025 23:00:22 +0000
Manifest next update: Tue 28 Oct 2025 23:00:22 +0000
Files and hashes: 1: ffgoIInih2ZRITPUI2r0FaN709I.crl (hash: eSpjBNwmvUhkuv9Pk8iJ72rY9SifjjBBplaT/DhZUO4=)
2: ig1FgJHLmhVp1HtQnDRiBOwALfo.roa (hash: IlHHwWSfIB2n4wpeo6hZD+s1jPc54zsXsSO0r9HX6WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:e6:b5:7a:91:ab:ff:26:df:91:f0:13:72:6e:65:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df8282089e28766512133d4236af415a37bd3d2
Validity
Not Before: Oct 27 23:00:22 2025 GMT
Not After : Oct 28 23:00:22 2025 GMT
Subject: CN=c7b012e0610369e4dbae693d7af3d19f9e8a2782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a9:cf:e6:61:ca:fc:61:1a:7b:94:64:5f:5d:
f1:11:dd:49:d0:95:36:0b:c0:0d:2f:6c:8c:97:31:
c3:55:15:d9:46:43:47:fd:a2:65:16:0a:50:57:24:
41:ed:b5:62:d6:3b:7f:8a:57:18:c1:62:e8:1f:ca:
10:ba:81:99:41:4d:6d:4a:3d:bb:f4:fb:12:62:0c:
44:c4:97:63:6c:3d:ef:d1:43:ba:b5:3e:7b:a3:21:
ce:9e:a2:c7:2f:0a:e1:49:20:2e:29:61:90:9c:ac:
4a:1d:47:48:ff:5c:06:d1:11:d8:a0:ca:b4:8c:d5:
be:b0:ad:10:bc:01:3d:5f:cd:7d:51:91:4f:d8:83:
c9:a2:fc:c4:d2:d1:d8:11:ff:d8:8d:73:95:26:63:
85:e5:ae:06:76:fd:ec:11:5f:9e:b4:d0:7c:a1:ff:
f4:13:c6:1f:57:50:49:59:23:3a:68:60:97:46:9f:
54:3a:4f:8e:2e:68:e9:2a:7c:1d:4b:75:ca:ef:ea:
ed:ab:0f:7b:4b:e3:86:cc:ca:57:18:41:a0:96:81:
d4:cf:a3:09:13:fe:9d:b5:4e:5a:d3:ba:4d:6d:3c:
2b:5a:10:31:40:39:ed:78:f3:6f:be:4b:51:7b:69:
57:19:55:9b:0a:92:f1:d5:bf:a2:c6:15:19:5f:85:
50:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B0:12:E0:61:03:69:E4:DB:AE:69:3D:7A:F3:D1:9F:9E:8A:27:82
X509v3 Authority Key Identifier:
keyid:7D:F8:28:20:89:E2:87:66:51:21:33:D4:23:6A:F4:15:A3:7B:D3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffgoIInih2ZRITPUI2r0FaN709I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/452ba7-3c15-4bba-ad33-2571f7a2d25f/1/ffgoIInih2ZRITPUI2r0FaN709I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d5:52:00:1b:99:22:bc:45:df:90:7f:8c:12:33:50:96:0d:
1d:ac:18:af:19:4b:cf:8f:12:a5:ad:dc:5c:2a:c6:b2:43:db:
12:2b:3e:f6:c9:98:3c:48:f9:a8:cf:e4:f5:8b:8f:ea:ab:b6:
6b:20:6d:55:13:ed:03:7d:d3:da:11:78:27:bb:a0:48:16:8c:
d9:92:14:75:68:94:b1:8c:b4:a8:19:5a:29:94:94:79:1d:ff:
5d:35:d0:eb:fb:f7:18:c7:95:f5:95:22:25:d4:75:96:a1:34:
9a:4a:58:d1:9b:59:8b:b9:76:5f:a6:cf:9c:f1:36:04:60:cf:
71:29:fb:ef:64:c9:94:56:1b:31:a7:07:df:09:b1:91:0e:2b:
70:ef:57:09:db:98:0f:aa:4b:47:0e:8b:d2:b0:a6:b5:05:ea:
84:b8:dc:c7:36:f5:d5:38:ee:fe:5b:2a:41:df:89:5c:c5:fe:
0e:9a:eb:8f:d1:13:17:07:45:32:0d:15:c9:f8:7b:e4:49:01:
cc:59:d5:dc:ed:8a:ff:ef:bd:d2:60:32:89:3f:eb:e3:b4:5b:
ea:de:ba:cf:50:9f:9c:da:d8:89:77:43:48:46:c8:a5:d7:89:
3c:8c:69:4a:fd:4f:76:92:52:6d:d9:37:65:c9:7f:93:cb:ed:
85:d8:49:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZon5rV6kav/Jt+R8BNybmXRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkZjgyODIwODllMjg3NjY1MTIxMzNkNDIzNmFmNDE1YTM3
YmQzZDIwHhcNMjUxMDI3MjMwMDIyWhcNMjUxMDI4MjMwMDIyWjAzMTEwLwYDVQQD
EyhjN2IwMTJlMDYxMDM2OWU0ZGJhZTY5M2Q3YWYzZDE5ZjllOGEyNzgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6nP5mHK/GEae5RkX13xEd1J0JU2
C8ANL2yMlzHDVRXZRkNH/aJlFgpQVyRB7bVi1jt/ilcYwWLoH8oQuoGZQU1tSj27
9PsSYgxExJdjbD3v0UO6tT57oyHOnqLHLwrhSSAuKWGQnKxKHUdI/1wG0RHYoMq0
jNW+sK0QvAE9X819UZFP2IPJovzE0tHYEf/YjXOVJmOF5a4Gdv3sEV+etNB8of/0
E8YfV1BJWSM6aGCXRp9UOk+OLmjpKnwdS3XK7+rtqw97S+OGzMpXGEGgloHUz6MJ
E/6dtU5a07pNbTwrWhAxQDntePNvvktRe2lXGVWbCpLx1b+ixhUZX4VQawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMewEuBhA2nk265pPXrz0Z+eiieCMB8GA1UdIwQY
MBaAFH34KCCJ4odmUSEz1CNq9BWje9PSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80NTJiYTctM2MxNS00YmJhLWFkMzMt
MjU3MWY3YTJkMjVmLzEvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80NTJiYTctM2MxNS00YmJhLWFkMzMtMjU3MWY3YTJkMjVm
LzEvZmZnb0lJbmloMlpSSVRQVUkycjBGYU43MDlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFdVSABuZ
IrxF35B/jBIzUJYNHawYrxlLz48Spa3cXCrGskPbEis+9smYPEj5qM/k9YuP6qu2
ayBtVRPtA33T2hF4J7ugSBaM2ZIUdWiUsYy0qBlaKZSUeR3/XTXQ6/v3GMeV9ZUi
JdR1lqE0mkpY0ZtZi7l2X6bPnPE2BGDPcSn772TJlFYbMacH3wmxkQ4rcO9XCduY
D6pLRw6L0rCmtQXqhLjcxzb11Tju/lsqQd+JXMX+Dprrj9ETFwdFMg0Vyfh75EkB
zFnV3O2K/++90mAyiT/r47Rb6t66z1CfnNrYiXdDSEbIpdeJPIxpSv1PdpJSbdk3
Zcl/k8vthdhJpA==
-----END CERTIFICATE-----
Generated at Tue Oct 28 01:39:05 2025 by rpki-client