Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
File: u03_X665REU6fISwl-V8ccBPEfw.mft (raw, json)
Hash identifier: cryO5L9lyWgiuJafQ7gNEA5WRHsHXCJChaQtpHkTPW4=
Subject key identifier: A3:D5:CF:9E:5E:D9:B3:85:87:7B:51:E1:7C:E6:C4:2B:CE:05:5E:0E
Authority key identifier: BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
Certificate issuer: /CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Certificate serial: 019D2A04FCD87C9A597EE164052DE5098F78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
Manifest number: 0BC7
Signing time: Thu 26 Mar 2026 12:01:03 +0000
Manifest this update: Thu 26 Mar 2026 12:01:03 +0000
Manifest next update: Fri 27 Mar 2026 12:01:03 +0000
Files and hashes: 1: OA-_Q29g0KuA0aONpveSxXZxFSk.roa (hash: tbSm3k3UWVaAwspyDOSHzLXBvf5BTv6nxCBnDZfco98=)
2: u03_X665REU6fISwl-V8ccBPEfw.crl (hash: 5w8Z/Bw+H0eYf3MrqzE/BXGkck9CupVOeTomQxF2SlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:fc:d8:7c:9a:59:7e:e1:64:05:2d:e5:09:8f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Validity
Not Before: Mar 26 12:01:03 2026 GMT
Not After : Mar 27 12:01:03 2026 GMT
Subject: CN=a3d5cf9e5ed9b385877b51e17ce6c42bce055e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4f:ef:58:86:c2:8f:c0:6b:93:c0:b4:51:99:
b9:e1:cc:2a:cd:3b:b3:97:67:34:f4:4b:b0:ea:3f:
24:8f:a0:8b:a3:b1:21:78:5b:2f:f8:fe:8d:bf:44:
12:78:43:33:40:35:a0:79:f3:8c:93:78:9e:f3:66:
57:33:cc:31:85:83:c1:67:6f:24:2f:ae:2d:d0:83:
e7:f7:70:fd:39:18:ca:45:4f:12:3b:df:cd:26:76:
35:98:f8:48:f6:04:4e:25:c4:2f:d6:65:e4:3a:0d:
38:4e:18:43:6c:b9:ff:d0:1d:04:91:81:d7:9f:9b:
ef:7d:47:95:6e:21:96:fb:bc:38:c5:0d:af:56:eb:
c3:46:ed:ef:7d:6e:05:34:cd:27:a9:f0:c1:ba:eb:
a1:bf:29:87:c9:36:15:32:57:2e:ef:4c:4c:bb:82:
71:3e:5f:e6:0c:c9:5e:fd:37:6b:c5:7a:3a:8d:09:
9b:71:fc:7b:fe:9d:70:c4:36:c5:33:dd:9d:99:f8:
bf:da:ec:15:7d:6a:23:c0:06:9f:2c:23:38:67:68:
78:8d:26:11:18:5a:c2:fd:d9:50:b9:e2:89:9d:0b:
72:5a:41:5b:41:36:80:78:a4:bf:5a:6a:40:1e:c3:
c3:af:3b:a6:37:ef:23:32:66:5f:d9:9c:1d:a0:44:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D5:CF:9E:5E:D9:B3:85:87:7B:51:E1:7C:E6:C4:2B:CE:05:5E:0E
X509v3 Authority Key Identifier:
keyid:BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:69:ce:26:28:8e:fe:64:99:1e:b0:42:bf:cd:c8:a0:44:9e:
75:9c:40:20:a8:67:9d:78:18:e3:74:0a:57:0a:7b:c6:8c:c0:
1f:a1:be:8c:a3:32:a9:5e:d4:b7:fd:47:bd:ae:b4:f8:a4:a1:
b8:f5:9f:f7:97:fd:a2:a1:47:5a:20:03:b0:54:c7:58:12:4e:
bd:f4:67:f7:7e:eb:df:38:49:6b:81:0e:10:f4:b3:04:22:95:
a1:94:c8:5d:ba:d2:78:e5:75:ef:9c:da:1c:12:fb:0a:d1:8f:
88:d8:02:5d:4c:4d:8f:2b:8b:e1:02:84:a2:b0:6e:fc:26:4f:
c7:42:c4:f5:15:0c:c0:f2:95:67:9f:ee:55:06:dc:81:ea:5e:
1b:9f:c5:a6:ca:47:40:81:4c:14:cd:04:5e:9d:70:96:29:2e:
65:1e:64:11:ff:78:f0:cd:ff:3b:fb:88:58:e4:b3:00:83:ae:
2c:83:7c:33:b8:81:e0:b8:fc:dc:49:73:93:08:d4:05:2e:7a:
a9:5c:b5:0c:0a:70:fe:7b:b8:3d:a1:a5:e2:83:18:09:32:10:
45:9d:1e:7e:84:f5:f9:39:6c:b9:20:67:ae:7e:3a:0d:03:c6:
86:25:48:c2:72:47:38:f7:4c:c3:c7:7d:fb:3b:c9:e9:ab:5e:
8a:9d:4f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:17 2026 by rpki-client