Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
File: FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft (raw, json)
Hash identifier: VsPeCa/YVvXpxpc++tyKLQ+t8/LGKfO1lHIwVbXzEWo=
Subject key identifier: F4:7F:66:59:47:74:CB:A9:F8:79:80:5B:F8:BF:17:02:8E:83:CF:4A
Authority key identifier: 16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
Certificate issuer: /CN=168a919a4a463f3ca2bba5442550fc247da90cae
Certificate serial: 0199FE0FF5B939B510F7F0DD076C8B6EB6CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
Manifest number: 0203
Signing time: Sun 19 Oct 2025 20:01:22 +0000
Manifest this update: Sun 19 Oct 2025 20:01:22 +0000
Manifest next update: Mon 20 Oct 2025 20:01:22 +0000
Files and hashes: 1: FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl (hash: Q9Cen3dh44wcxc7hRUNDEGA9c53BzbGdfwR1QvWuUAs=)
2: ve2iEFS7yneK4NHtoTNszVB8cZo.roa (hash: g/XvhTcgORHoQzc25n1ZqGUd92LVhhds69w5ITmpr4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:f5:b9:39:b5:10:f7:f0:dd:07:6c:8b:6e:b6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168a919a4a463f3ca2bba5442550fc247da90cae
Validity
Not Before: Oct 19 20:01:22 2025 GMT
Not After : Oct 20 20:01:22 2025 GMT
Subject: CN=f47f66594774cba9f879805bf8bf17028e83cf4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:55:26:31:1b:08:b5:a6:5e:1f:71:34:a6:
3e:4f:49:ce:15:93:a8:43:0a:2f:64:cf:e9:06:cf:
33:2e:51:bf:c7:8d:63:20:a7:d7:1a:ae:84:46:68:
89:f6:23:47:05:28:d8:49:2f:92:39:b4:76:cb:2f:
66:c3:0f:5c:c4:fc:0f:1c:08:5c:e6:fa:a1:44:ae:
e7:d8:8c:f0:14:50:8a:10:eb:e1:9b:93:01:c2:48:
ac:64:94:59:55:f4:29:b4:d8:a7:21:af:b1:db:6b:
82:cc:af:c4:e9:c9:68:00:5a:75:96:69:68:d1:e7:
36:48:f6:4d:10:a8:1b:1f:c2:2b:12:33:94:20:01:
20:f5:71:73:2f:c9:49:42:a1:c0:ca:94:de:13:1a:
49:8e:87:e9:b7:c5:11:24:bb:7a:34:cb:b1:0a:a2:
f6:13:02:ef:11:fb:3a:3b:5b:21:dc:2e:7d:ec:d2:
50:c0:fc:51:4d:db:0d:2e:c7:c0:12:3d:cd:40:60:
8d:04:b6:c3:60:91:5e:7c:51:e4:09:ae:e8:be:85:
df:e8:3c:54:a4:b6:85:85:69:66:3a:c8:e8:1d:51:
5d:84:36:68:c5:71:f3:75:c9:ca:ae:b5:31:82:29:
91:b4:86:fc:1c:f7:35:f5:a7:77:de:05:f9:b4:5d:
ff:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:7F:66:59:47:74:CB:A9:F8:79:80:5B:F8:BF:17:02:8E:83:CF:4A
X509v3 Authority Key Identifier:
keyid:16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:65:e9:13:76:14:ba:37:16:44:47:69:ca:39:2c:00:62:3c:
6d:92:c5:71:25:00:41:2c:b6:57:15:7f:08:1a:9b:6d:cc:9c:
c6:dd:25:df:78:44:53:5d:52:a8:c6:b9:7b:37:52:ac:b7:55:
82:e5:69:a5:76:28:d2:76:f0:b7:36:32:9e:4f:f0:99:78:61:
30:b6:87:16:68:2c:87:a1:ea:e7:01:0a:53:64:71:73:02:85:
68:5c:f8:73:79:e7:14:2f:bf:5f:f5:cb:34:ba:30:be:ba:48:
50:70:50:2e:c6:31:7c:9f:85:e9:30:39:bb:62:d7:27:f6:99:
70:58:ed:65:20:c3:a5:1d:57:5c:f5:e9:59:29:c4:63:36:b7:
54:ad:06:e7:28:75:90:fd:85:6a:bc:f6:2d:e2:1b:1c:13:85:
53:14:2b:9f:cf:d0:f7:0e:79:66:c3:df:94:70:3a:e4:89:27:
60:98:16:ee:ff:f7:0d:d4:d3:f4:dd:5c:04:f3:3d:93:bd:5c:
33:00:d1:ba:95:9e:eb:c2:54:d3:d1:2e:8a:8c:93:bf:d6:41:
a6:e7:5a:56:94:26:b4:d7:23:2f:1e:bb:e5:9b:3e:6e:9e:ed:
c4:73:1c:4b:5a:64:f0:d7:ce:8a:8e:bc:77:b0:1a:43:6c:8b:
f9:f8:e4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:19:54 2025 by rpki-client