Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
File: FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft (raw, json)
Hash identifier: UReV1eI4d0n/+e83NJ4dOMyDgup98koutxv1/DFxpwk=
Subject key identifier: 96:51:9D:E1:D2:F8:CD:86:84:94:FA:6F:1B:FF:92:41:62:36:31:7E
Authority key identifier: 16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
Certificate issuer: /CN=168a919a4a463f3ca2bba5442550fc247da90cae
Certificate serial: 019D2996E1C698A86ABE3A4A508B354A3FEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
Manifest number: 03A8
Signing time: Thu 26 Mar 2026 10:00:47 +0000
Manifest this update: Thu 26 Mar 2026 10:00:47 +0000
Manifest next update: Fri 27 Mar 2026 10:00:47 +0000
Files and hashes: 1: 1qpA4kBmWPvjXJj5-28o1Uru68U.roa (hash: Xci7Bw12VXpZ9NdP2YN2sZhOd2vyN4EA/pcZ8/zKifE=)
2: FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl (hash: PaileKrTz48AEQAs5eX0xgvwk6+DdYYij77XNuNq3a8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:e1:c6:98:a8:6a:be:3a:4a:50:8b:35:4a:3f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168a919a4a463f3ca2bba5442550fc247da90cae
Validity
Not Before: Mar 26 10:00:47 2026 GMT
Not After : Mar 27 10:00:47 2026 GMT
Subject: CN=96519de1d2f8cd868494fa6f1bff92416236317e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:51:08:c5:9b:fb:a9:1a:b8:14:af:88:a6:bd:
66:8e:4b:5e:f3:55:58:18:29:a8:a5:8d:e0:d0:69:
03:3d:0f:97:bf:6f:4d:17:b5:16:4f:ff:7d:b0:b6:
cf:0b:69:62:f4:98:cc:e5:c2:ff:8a:79:a3:5e:2a:
f5:c3:69:b0:84:50:84:8c:35:e7:05:b1:0b:ce:c2:
18:90:4c:00:68:a9:d2:3a:ae:be:4d:fe:e0:0c:29:
56:af:f6:21:70:09:0e:e0:39:00:60:2b:87:28:ca:
b1:4a:9f:6b:45:4f:f0:f9:24:16:a4:d9:78:34:f5:
2f:38:4d:08:17:fe:60:cb:83:6c:85:29:ed:18:bb:
91:8c:72:16:6c:76:26:68:6f:4c:80:d0:14:38:bc:
c6:3e:36:58:57:e3:5d:90:0d:80:24:34:12:a0:66:
86:f0:ba:78:6c:7c:2d:e7:b1:57:93:26:11:e5:78:
70:0e:71:ab:5f:54:c2:a9:73:aa:89:30:18:a3:db:
6f:1a:0b:f5:39:20:a9:13:e1:78:c7:1a:e8:80:74:
f1:18:8c:d8:fa:fd:e5:9c:7b:b9:23:5e:75:0a:80:
8e:40:47:d2:78:21:0e:57:8e:cc:74:21:5e:d6:52:
bf:95:00:8b:73:91:47:be:c1:3f:df:ea:d0:54:eb:
91:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:51:9D:E1:D2:F8:CD:86:84:94:FA:6F:1B:FF:92:41:62:36:31:7E
X509v3 Authority Key Identifier:
keyid:16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:a3:49:ff:be:c6:83:a6:8f:c0:ae:a9:14:0d:84:15:9e:ca:
12:5d:3e:23:bd:0b:62:fe:09:f1:10:79:e3:d3:aa:36:44:04:
a7:cf:dd:4c:63:6d:5a:15:83:cd:fd:e6:e0:47:91:e9:e2:52:
16:9c:fb:d7:7d:30:b1:ad:9d:0e:52:a6:f4:f5:f1:c3:db:61:
b8:76:59:c9:30:99:2d:73:4f:5d:e8:31:62:96:f4:e3:2a:66:
9b:99:e9:25:a9:d9:e7:be:d6:d1:43:34:43:ee:95:20:ff:aa:
53:10:cb:bf:50:e0:bb:35:f3:dd:da:de:d0:a6:a3:64:b3:aa:
f0:64:f5:66:14:b2:86:3b:14:b1:03:34:3a:8c:0a:24:70:57:
4f:c5:31:bd:28:31:2b:27:70:66:41:66:13:a3:06:fc:dd:23:
5c:15:c3:99:d0:45:fc:c2:69:00:4e:73:df:82:74:ef:c3:b2:
e7:b9:0b:36:0b:19:1f:fa:61:75:42:fb:50:87:2e:62:8e:03:
46:22:76:f9:fd:61:8f:16:da:eb:79:34:33:c9:2e:09:6a:47:
df:6b:7b:0a:9a:7e:bd:d0:dd:7b:a5:d7:84:54:81:1c:db:0d:
b1:b1:50:4b:d3:82:ca:ba:91:63:d8:ca:c3:56:28:4b:25:48:
10:36:e0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:57:48 2026 by rpki-client