Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
File: u03_X665REU6fISwl-V8ccBPEfw.mft (raw, json)
Hash identifier: PjeG9x/wevykeg13lFa5eI72e36nonYIYFrBoSerquE=
Subject key identifier: 79:1F:3F:04:C7:D5:D7:85:43:7E:0A:5B:56:95:3E:7C:6D:61:19:38
Authority key identifier: BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
Certificate issuer: /CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Certificate serial: 0199FB0F17FB4145FFB8617E629C53ED2139
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
Manifest number: 0A20
Signing time: Sun 19 Oct 2025 06:01:34 +0000
Manifest this update: Sun 19 Oct 2025 06:01:34 +0000
Manifest next update: Mon 20 Oct 2025 06:01:34 +0000
Files and hashes: 1: bmGSZIhDZ7omF5TcuRC3GMr8vZo.roa (hash: aa2GJMxBcb4lhY3ULNNCLoGJ/YB3WqwaeozmQDkZLmk=)
2: u03_X665REU6fISwl-V8ccBPEfw.crl (hash: 7hsiXS+img/0OX5VOmcCmvvRqFFhHTus62vtvZMY8/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:17:fb:41:45:ff:b8:61:7e:62:9c:53:ed:21:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Validity
Not Before: Oct 19 06:01:34 2025 GMT
Not After : Oct 20 06:01:34 2025 GMT
Subject: CN=791f3f04c7d5d785437e0a5b56953e7c6d611938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:22:9a:4e:c7:38:f5:3e:3c:f7:45:e0:f3:1b:
60:05:fe:d1:21:10:db:2d:55:cc:12:9f:00:53:e7:
51:73:44:27:18:74:d4:56:96:a6:f2:e8:63:c4:fb:
24:80:f3:f8:c1:c9:3b:8c:6e:04:d4:38:6b:73:b3:
59:b1:7d:f2:7d:23:5c:5a:63:80:83:b7:3c:1a:37:
9c:e0:eb:31:22:03:39:fa:bf:c7:ea:7c:cf:6f:93:
18:50:ff:56:ad:ba:e4:1e:b7:63:02:43:9b:d5:ec:
72:e2:79:c7:87:e6:bf:df:27:94:a6:be:2e:88:a9:
ea:f7:7c:94:ad:54:d4:a9:90:92:55:8c:21:13:de:
63:9c:32:ba:82:0d:d3:ac:47:27:6d:0b:a2:96:e2:
9b:c4:66:0b:e2:5c:97:e6:ce:a0:65:f4:f7:d6:43:
c6:fc:ee:49:d7:18:af:a9:de:db:a5:df:da:bc:b5:
89:00:a0:76:71:57:09:fe:8d:76:6e:83:45:78:b1:
da:00:28:86:f3:54:81:52:b1:d2:b0:d7:a9:d9:5f:
a7:32:35:71:d7:6f:3c:84:88:f7:f5:41:ea:5d:a9:
62:25:40:f6:f9:e6:0c:06:a0:fb:f5:6b:f1:e5:56:
a6:51:22:b5:9a:73:34:2d:f3:ba:e4:3c:9b:e6:8a:
fa:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1F:3F:04:C7:D5:D7:85:43:7E:0A:5B:56:95:3E:7C:6D:61:19:38
X509v3 Authority Key Identifier:
keyid:BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b7:c6:54:63:9d:54:d4:3e:94:66:d4:14:0c:00:06:c8:e4:
b6:7f:36:35:c8:b3:ca:b8:9c:38:12:d1:9b:40:78:46:fd:ec:
74:e2:d4:b1:71:ce:1b:8d:17:79:e7:63:7d:c6:1d:2d:c0:96:
86:e4:35:ee:d0:21:26:75:7e:53:b5:3b:11:c2:07:ed:65:da:
b8:5e:72:b1:3c:01:f2:55:6c:71:3d:c4:3c:76:65:eb:5d:7d:
a6:db:78:b0:df:71:d8:57:6e:86:06:78:6a:fd:e9:d0:a5:a6:
92:d6:c1:b5:28:92:8d:29:a5:87:c5:19:bb:af:e5:d3:f1:76:
ba:b6:d1:d6:18:d2:c2:70:c2:45:05:f2:32:7a:46:9f:c3:6b:
b2:8c:31:6d:78:56:4c:14:b1:ab:6e:cc:0e:89:bb:ef:df:2d:
7e:e3:2e:d8:26:bf:4f:97:ae:1a:35:e8:2f:72:ad:2f:ee:c3:
c6:02:d8:79:f2:8d:40:60:18:8e:fc:61:20:fc:aa:55:7d:57:
67:05:a7:85:88:6f:0d:cb:c9:5c:83:94:79:c3:2d:d3:f6:30:
7f:86:66:1f:64:43:2a:9f:e0:62:78:c7:d2:52:9e:d8:64:f0:
41:e9:d7:70:71:a3:4e:28:49:92:43:a4:99:9a:33:de:de:45:
ea:ca:27:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:23 2025 by rpki-client