Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
File: u03_X665REU6fISwl-V8ccBPEfw.mft (raw, json)
Hash identifier: I4eJgm8FnX7qX62RgCqtU269dZdBi2vtV7S/hEAZctA=
Subject key identifier: D3:5A:47:11:2B:A2:8A:5D:31:56:D4:63:7D:08:AE:B3:0F:0C:B0:66
Authority key identifier: BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
Certificate issuer: /CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Certificate serial: 0198D58353A9276704A86128739B0F32DB2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
Manifest number: 0988
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: bmGSZIhDZ7omF5TcuRC3GMr8vZo.roa (hash: aa2GJMxBcb4lhY3ULNNCLoGJ/YB3WqwaeozmQDkZLmk=)
2: u03_X665REU6fISwl-V8ccBPEfw.crl (hash: vctdgQDUZyA/1Z9BySJJSUBQHeCpi7IDP7lpiGFlMGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:53:a9:27:67:04:a8:61:28:73:9b:0f:32:db:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=d35a47112ba28a5d3156d4637d08aeb30f0cb066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:22:20:4d:b0:0b:e8:ba:e2:2c:64:e1:38:0b:
14:b7:3e:9d:9f:c6:a5:68:99:1e:c0:6d:00:2e:f2:
4c:e9:f3:98:e6:3c:5c:b1:55:b1:ba:f2:39:66:e7:
80:28:03:d0:f9:a4:3a:17:4d:92:7f:d4:ea:fd:06:
10:f7:87:c3:9c:d6:38:f0:26:af:ff:68:de:71:ba:
b4:45:e9:60:66:48:94:25:e7:dd:06:ae:2c:1c:67:
23:ac:64:0b:04:9f:48:fe:92:55:c6:df:4d:ea:31:
05:49:bb:f6:ad:d1:6b:af:5f:7d:c6:e3:51:7d:45:
9b:57:41:be:78:4e:d4:86:82:96:c3:94:30:0e:9d:
58:70:bf:7b:a5:95:77:c2:9c:87:ff:dc:6d:66:35:
33:fc:75:c4:7e:ba:10:0d:68:f2:81:14:37:49:f8:
66:93:d0:1b:3c:37:dc:22:dd:9c:0f:43:be:f4:90:
39:61:92:67:6b:24:72:22:7f:74:11:08:05:94:a0:
b6:6d:73:fe:e1:eb:a4:87:86:8f:7f:dc:03:f2:49:
da:22:a9:c5:8f:01:05:08:90:30:df:cf:f5:b8:d5:
c9:42:90:e3:c3:91:10:01:b9:3f:30:79:09:81:c8:
9c:13:4f:69:9b:76:38:3d:75:d4:1a:a5:b2:0c:d7:
1d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5A:47:11:2B:A2:8A:5D:31:56:D4:63:7D:08:AE:B3:0F:0C:B0:66
X509v3 Authority Key Identifier:
keyid:BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:90:10:b3:22:60:07:cc:1c:70:09:cf:b2:ff:ff:43:a6:9b:
a0:aa:90:fe:45:30:af:d6:80:8e:41:ae:19:73:32:8b:a3:51:
99:aa:bb:20:36:91:30:e8:7d:6d:47:10:c7:ad:81:79:60:21:
d5:f1:59:e4:2c:90:bf:a2:aa:d0:56:c5:15:cd:21:23:b7:29:
19:8e:59:00:59:82:82:d7:e7:37:c8:ae:2e:da:dc:be:bd:df:
ad:3c:be:5d:94:b4:00:84:1b:6c:a8:c0:8c:ec:62:3d:9c:30:
74:67:1f:5f:9a:7b:dd:fa:b6:e6:1e:96:ea:ae:0c:66:a3:6d:
21:72:9d:92:a5:88:05:1a:0a:e8:82:a8:f7:05:a3:46:26:a6:
25:4e:b2:51:62:f2:0e:95:b6:82:67:af:10:76:d7:7d:14:b8:
9c:a8:5c:df:2d:7c:53:12:dc:8a:a9:9d:b6:dc:db:09:21:0f:
56:8a:10:4a:f5:91:df:cd:60:4d:4a:bc:f7:da:b7:ad:9b:c9:
ef:c8:bb:6b:2e:05:a1:2d:53:6d:99:f5:e4:90:4f:94:a0:51:
3d:8d:32:d2:bd:f2:07:95:bb:c2:11:79:50:52:5b:d9:ba:f1:
b0:f9:31:5b:8e:3f:fa:9f:13:82:4e:7b:de:fb:38:95:21:f5:
57:08:d3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:50 2025 by rpki-client