Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
File: FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft (raw, json)
Hash identifier: ihYkoMghCt5v4CmDuQ9ppqtYhzCmpjjyPvnd8FesJ7E=
Subject key identifier: F8:1D:54:85:07:81:19:88:1D:E2:9B:92:B7:1C:82:FD:6E:40:CC:C7
Authority key identifier: 16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
Certificate issuer: /CN=168a919a4a463f3ca2bba5442550fc247da90cae
Certificate serial: 0197BAB3EBBBFE119C5922A747C07F5627C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
Manifest number: D7
Signing time: Sun 29 Jun 2025 08:00:42 +0000
Manifest this update: Sun 29 Jun 2025 08:00:42 +0000
Manifest next update: Mon 30 Jun 2025 08:00:42 +0000
Files and hashes: 1: FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl (hash: zylDdUsPevspLkCZswhXozsH1i06XPtRRbbNRZCs9ps=)
2: ve2iEFS7yneK4NHtoTNszVB8cZo.roa (hash: g/XvhTcgORHoQzc25n1ZqGUd92LVhhds69w5ITmpr4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:b3:eb:bb:fe:11:9c:59:22:a7:47:c0:7f:56:27:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168a919a4a463f3ca2bba5442550fc247da90cae
Validity
Not Before: Jun 29 08:00:42 2025 GMT
Not After : Jun 30 08:00:42 2025 GMT
Subject: CN=f81d5485078119881de29b92b71c82fd6e40ccc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:9a:9e:3f:ea:47:35:1c:e0:3f:1e:0b:e2:
5f:c1:1c:73:82:5e:81:3a:4c:3a:34:90:e3:de:36:
96:9f:9b:04:34:31:12:d3:0a:84:24:61:d8:ea:c4:
60:0d:e1:a2:3d:90:b3:fa:7e:19:b3:52:6a:6f:89:
8c:89:96:4d:9a:d5:8f:9f:81:f5:45:79:dd:c9:16:
d0:1f:30:92:7a:98:e0:55:ab:ea:d4:5c:52:8c:94:
c3:2f:96:5a:18:f6:ad:65:43:ba:4e:57:1a:36:7e:
c1:d0:03:a3:fe:2c:3f:2c:80:1f:89:ca:d4:ea:90:
dc:cd:4c:96:0f:33:a1:d8:4e:13:1a:29:a9:87:30:
09:c3:ec:3f:8e:c3:fe:82:f6:0d:79:3b:6b:cf:9b:
a6:9c:b5:2e:bb:f6:0f:89:71:16:f8:87:7c:37:79:
e9:7b:9c:57:44:1d:77:ac:64:94:5f:f3:dc:cb:9c:
2f:92:74:77:f3:5e:69:66:46:41:46:aa:05:2e:fd:
42:c2:33:8d:7c:29:26:ec:16:66:92:af:c6:07:fe:
9b:0c:41:7f:ec:b1:fd:99:40:df:23:bd:f6:6b:7d:
56:3e:cc:62:05:6a:2a:cc:8b:bd:bf:5d:20:a9:71:
1e:54:87:ba:b5:d9:4d:27:1a:dc:95:da:21:5c:93:
6f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1D:54:85:07:81:19:88:1D:E2:9B:92:B7:1C:82:FD:6E:40:CC:C7
X509v3 Authority Key Identifier:
keyid:16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:19:2b:6c:43:a8:64:ee:d6:66:7a:0f:d8:54:48:63:fd:45:
a5:cc:20:f2:9b:e5:f9:b6:25:50:be:87:3c:f6:cc:7b:b3:16:
f4:fd:a0:41:78:e9:33:3c:61:71:f0:48:d6:a1:21:13:99:09:
e6:8c:03:8b:f1:33:13:aa:c4:ce:05:a1:ca:93:ea:7f:17:34:
be:00:89:95:e4:e3:67:fe:7e:67:df:2b:42:e3:b4:01:b9:73:
11:d0:35:84:c6:cd:fa:7b:57:ce:42:bf:b3:94:d5:c3:22:04:
ef:78:97:20:c8:63:90:fd:92:5a:3b:ed:ec:20:2f:60:49:88:
56:1e:65:65:f3:77:c2:69:51:0e:30:2e:b2:da:bd:b0:c0:3e:
ba:9c:36:87:ed:42:bc:af:d1:64:0a:2c:b0:86:be:9f:1e:fb:
c6:6f:3c:3b:c4:a8:1f:98:6a:7b:3c:97:f0:34:50:af:1d:38:
92:e0:a2:66:96:89:da:41:34:eb:42:8c:45:01:0e:78:cc:c1:
10:ec:a2:f4:5c:3f:28:15:45:a9:e9:18:7c:5a:c5:f0:3e:d1:
ec:c0:1b:0a:42:bf:27:b6:e4:1d:45:d4:40:39:f9:4b:cb:28:
c0:6a:ca:02:13:de:31:37:8a:73:12:99:f8:c6:90:15:70:9b:
52:8d:4d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:47:05 2025 by rpki-client