Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
File: FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft (raw, json)
Hash identifier: iOzWhBGrIKU4FlbR0wYjFMwEBAbomnGzJ/j5jyRVCCg=
Subject key identifier: 3B:93:80:97:4E:DD:6E:01:42:8C:48:EF:B4:93:0D:CF:29:E7:B4:B1
Authority key identifier: 16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
Certificate issuer: /CN=168a919a4a463f3ca2bba5442550fc247da90cae
Certificate serial: 0198D4A84891C56102853AA85F27F0D5DD33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
Manifest number: 0169
Signing time: Sat 23 Aug 2025 02:00:55 +0000
Manifest this update: Sat 23 Aug 2025 02:00:55 +0000
Manifest next update: Sun 24 Aug 2025 02:00:55 +0000
Files and hashes: 1: FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl (hash: YAyzza9yG/WRN/t4cseon8szKyxMwf9OfoohCb/PhUI=)
2: ve2iEFS7yneK4NHtoTNszVB8cZo.roa (hash: g/XvhTcgORHoQzc25n1ZqGUd92LVhhds69w5ITmpr4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:48:91:c5:61:02:85:3a:a8:5f:27:f0:d5:dd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168a919a4a463f3ca2bba5442550fc247da90cae
Validity
Not Before: Aug 23 02:00:55 2025 GMT
Not After : Aug 24 02:00:55 2025 GMT
Subject: CN=3b9380974edd6e01428c48efb4930dcf29e7b4b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:0d:95:54:2e:99:3f:a7:48:84:ce:f2:da:
de:f9:98:75:08:f2:44:bd:f3:02:85:68:d2:cf:95:
71:0a:0e:5a:1b:10:80:9d:99:1e:b4:13:42:77:35:
b2:05:fb:8c:ad:3b:a4:76:19:ab:c2:8c:2b:d0:9f:
ac:2f:ca:32:79:46:4a:a7:25:33:dd:34:93:42:28:
2d:97:e9:82:3d:57:aa:1c:91:73:71:49:4d:b6:44:
fd:5f:de:18:de:99:b5:75:df:3c:ec:04:e9:bc:18:
35:38:09:cd:85:3b:03:72:a1:c5:f2:7e:13:27:c5:
df:31:21:fc:55:eb:9e:32:e5:dd:a3:02:a7:81:97:
67:b5:94:7e:3d:43:51:6a:ab:cb:bd:b2:21:a4:fb:
2b:5a:a4:3d:aa:0b:0f:cf:39:49:ef:eb:49:a0:d7:
e8:3c:18:71:ce:9b:d0:18:f9:86:0d:c9:32:83:12:
e3:d2:1a:6f:60:98:37:39:a3:6e:ec:b2:e9:fb:90:
10:be:29:8b:4f:6d:24:81:15:fc:3b:9f:c7:79:1d:
9e:71:da:7e:bb:2a:49:97:ef:26:3c:46:df:56:88:
bb:39:51:b3:2c:ef:e4:db:bd:c2:17:19:ec:51:c2:
ce:87:2b:1c:a8:73:cb:ba:9e:fd:03:e4:f5:02:20:
82:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:93:80:97:4E:DD:6E:01:42:8C:48:EF:B4:93:0D:CF:29:E7:B4:B1
X509v3 Authority Key Identifier:
keyid:16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:d2:0a:58:bc:bc:58:a8:c1:73:61:db:30:cd:61:96:ed:58:
0f:51:d4:12:8e:69:2d:cf:44:c4:ef:64:7d:3c:9d:0b:7c:81:
a2:63:dc:5a:86:03:2a:69:6f:50:af:13:5f:e3:95:7c:00:2d:
9d:48:9b:71:9d:86:08:60:e9:46:27:20:c3:4b:31:63:a4:e2:
96:c4:5e:8a:8b:29:d4:36:28:16:71:b9:90:d1:92:b3:bf:21:
db:5d:21:74:a9:7f:98:cd:75:90:fc:a6:ba:82:68:06:d3:23:
45:56:84:85:fc:00:b2:84:ed:8c:f1:c7:9a:f5:a7:c2:34:c3:
9e:0c:07:82:64:fc:8c:d8:dd:04:11:5d:ec:a5:eb:70:0e:96:
3b:ef:16:82:03:af:4f:94:4e:5e:34:d4:47:29:a6:5c:7d:f5:
91:9a:b1:80:44:2f:2c:f7:82:53:22:28:60:e3:6b:49:5d:97:
f4:01:f3:71:82:82:28:68:4f:60:4d:a0:9f:e0:f4:3d:94:2b:
8c:3a:45:57:77:12:15:d5:7b:0f:98:aa:53:e8:be:11:6e:11:
b3:6f:b5:6f:33:d5:a4:7e:4b:e9:77:11:da:7f:5e:44:1b:34:
ca:2c:82:bb:f1:1a:b4:5c:f5:f1:4a:aa:01:ff:01:44:22:18:
ae:a6:0c:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqEiRxWEChTqoXyfw1d0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2OGE5MTlhNGE0NjNmM2NhMmJiYTU0NDI1NTBmYzI0N2Rh
OTBjYWUwHhcNMjUwODIzMDIwMDU1WhcNMjUwODI0MDIwMDU1WjAzMTEwLwYDVQQD
EygzYjkzODA5NzRlZGQ2ZTAxNDI4YzQ4ZWZiNDkzMGRjZjI5ZTdiNGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTMNlVQumT+nSITO8tre+Zh1CPJE
vfMChWjSz5VxCg5aGxCAnZketBNCdzWyBfuMrTukdhmrwowr0J+sL8oyeUZKpyUz
3TSTQigtl+mCPVeqHJFzcUlNtkT9X94Y3pm1dd887ATpvBg1OAnNhTsDcqHF8n4T
J8XfMSH8VeueMuXdowKngZdntZR+PUNRaqvLvbIhpPsrWqQ9qgsPzzlJ7+tJoNfo
PBhxzpvQGPmGDckygxLj0hpvYJg3OaNu7LLp+5AQvimLT20kgRX8O5/HeR2ecdp+
uypJl+8mPEbfVoi7OVGzLO/k273CFxnsUcLOhyscqHPLup79A+T1AiCCTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDuTgJdO3W4BQoxI77STDc8p57SxMB8GA1UdIwQY
MBaAFBaKkZpKRj88orulRCVQ/CR9qQyuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRm9xUm1rcEdQenlpdTZWRUpWRDhKSDJwREs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mYzBiZDYtOTg2OC00YjQ5LTk4ODgt
ZGNkNmEzOWY4MGRmLzEvRm9xUm1rcEdQenlpdTZWRUpWRDhKSDJwREs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9mYzBiZDYtOTg2OC00YjQ5LTk4ODgtZGNkNmEzOWY4MGRm
LzEvRm9xUm1rcEdQenlpdTZWRUpWRDhKSDJwREs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjdIKWLy8
WKjBc2HbMM1hlu1YD1HUEo5pLc9ExO9kfTydC3yBomPcWoYDKmlvUK8TX+OVfAAt
nUibcZ2GCGDpRicgw0sxY6TilsReiosp1DYoFnG5kNGSs78h210hdKl/mM11kPym
uoJoBtMjRVaEhfwAsoTtjPHHmvWnwjTDngwHgmT8jNjdBBFd7KXrcA6WO+8WggOv
T5ROXjTURymmXH31kZqxgEQvLPeCUyIoYONrSV2X9AHzcYKCKGhPYE2gn+D0PZQr
jDpFV3cSFdV7D5iqU+i+EW4Rs2+1bzPVpH5L6XcR2n9eRBs0yiyCu/EatFz18Uqq
Af8BRCIYrqYMcg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:11 2025 by rpki-client