Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: Gmn5c3odS2dC45KSNTjI7T/xVc4yLF17vIzSxzUwhuA=
Subject key identifier: 9B:54:DE:7B:1E:15:05:2B:C5:52:20:39:40:DE:56:22:FB:C4:A7:E0
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 0198D65FF5A916995285A47105C56A8975AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 01C9
Signing time: Sat 23 Aug 2025 10:01:09 +0000
Manifest this update: Sat 23 Aug 2025 10:01:09 +0000
Manifest next update: Sun 24 Aug 2025 10:01:09 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: baj//eRMWwHTd46+oDNkPevTiD8DIRcCCvl4iwpxNME=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f5:a9:16:99:52:85:a4:71:05:c5:6a:89:75:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Aug 23 10:01:09 2025 GMT
Not After : Aug 24 10:01:09 2025 GMT
Subject: CN=9b54de7b1e15052bc552203940de5622fbc4a7e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:00:1f:43:31:a3:e7:0c:e6:2e:fe:e5:a0:52:
76:32:ef:37:ac:e8:d7:57:71:b4:57:c4:13:22:67:
93:33:17:e0:95:9c:04:d8:b8:5c:6a:22:ae:df:35:
74:cb:a5:5f:12:c4:5c:42:9a:46:5e:35:2a:7b:01:
ee:fb:fa:90:de:d4:6b:c3:65:5b:79:cd:35:72:f7:
46:ca:4b:37:23:f9:41:04:9e:7c:6f:2e:91:41:b0:
9e:a5:7a:55:41:0a:b0:5c:c4:91:9f:ee:0f:5e:23:
e4:ad:d1:8f:b9:81:ee:fd:d1:be:7e:21:75:c1:1d:
06:77:dc:87:11:8c:a2:8d:0d:2d:37:01:41:4b:f0:
27:6b:af:86:12:7c:eb:0f:35:ff:ed:a9:2e:4d:9b:
98:5d:03:de:ef:ef:e4:f0:f8:72:8a:c9:f2:bd:ae:
ab:06:6e:34:43:53:87:a4:bb:ce:6e:d6:64:e6:3f:
a5:57:21:dd:ae:2f:ef:28:7d:ef:b7:da:9e:49:96:
14:5c:01:eb:ec:5b:da:bd:51:0a:a6:eb:81:2a:6d:
c7:e3:c9:bb:a6:03:fc:25:50:59:e1:84:7d:3f:3e:
20:7b:da:4a:9a:7a:05:06:2c:6b:6c:7b:be:93:d1:
b2:97:d0:b6:35:32:20:d7:f7:61:42:64:a2:78:07:
8c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:54:DE:7B:1E:15:05:2B:C5:52:20:39:40:DE:56:22:FB:C4:A7:E0
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:63:4a:3e:88:8b:d5:89:0b:f5:11:18:de:bd:7b:d1:d8:85:
c7:41:df:82:1e:59:f6:d6:4a:3b:3b:59:63:fd:0c:86:d4:81:
11:13:67:9e:24:03:fa:50:d1:26:a6:d2:1a:5a:0f:0a:7c:27:
68:e2:ea:27:85:3f:31:d4:c7:18:db:e4:89:e5:ae:09:d6:f3:
c3:b7:7c:f3:4e:9f:89:f6:bd:91:e4:7b:76:6f:58:6e:92:41:
36:c7:14:b8:d7:42:66:85:81:4d:ec:6d:8e:58:61:21:e4:55:
fa:cb:f1:43:8a:37:27:5d:65:94:37:a9:08:ee:b7:2c:0e:6f:
b7:90:5a:1c:24:e5:28:3c:93:1f:03:34:16:95:e9:e9:30:4b:
e0:27:e7:73:cb:19:38:da:2f:4f:37:9d:a1:4d:f4:12:35:3c:
db:b3:bd:b7:a9:be:2a:52:24:27:e1:3c:75:f4:46:6b:85:d8:
0a:52:82:b4:68:4d:bb:6b:04:cb:85:6c:6b:6e:53:cf:43:37:
22:78:af:83:c2:ab:bf:37:7c:05:75:e2:b0:75:22:9f:78:3e:
34:68:bf:1b:5c:2d:4b:46:b1:06:f1:af:84:5f:91:45:ab:5e:
02:b4:02:37:11:13:04:80:51:b8:0f:9d:bb:6d:d4:cc:c3:74:
56:7b:ec:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX/WpFplShaRxBcVqiXWqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NDhiMzM4MzM5OTAwZmY3ZjNiNTliMjQ2ZDI0ZDI2ODdj
NjM2N2MwHhcNMjUwODIzMTAwMTA5WhcNMjUwODI0MTAwMTA5WjAzMTEwLwYDVQQD
Eyg5YjU0ZGU3YjFlMTUwNTJiYzU1MjIwMzk0MGRlNTYyMmZiYzRhN2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowAfQzGj5wzmLv7loFJ2Mu83rOjX
V3G0V8QTImeTMxfglZwE2LhcaiKu3zV0y6VfEsRcQppGXjUqewHu+/qQ3tRrw2Vb
ec01cvdGyks3I/lBBJ58by6RQbCepXpVQQqwXMSRn+4PXiPkrdGPuYHu/dG+fiF1
wR0Gd9yHEYyijQ0tNwFBS/Ana6+GEnzrDzX/7akuTZuYXQPe7+/k8Phyisnyva6r
Bm40Q1OHpLvObtZk5j+lVyHdri/vKH3vt9qeSZYUXAHr7FvavVEKpuuBKm3H48m7
pgP8JVBZ4YR9Pz4ge9pKmnoFBixrbHu+k9Gyl9C2NTIg1/dhQmSieAeMPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtU3nseFQUrxVIgOUDeViL7xKfgMB8GA1UdIwQY
MBaAFAZIszgzmQD/fztZskbSTSaHxjZ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQt
MGQ5MThlZWRjMjZmLzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQtMGQ5MThlZWRjMjZm
LzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuWNKPoiL
1YkL9REY3r170diFx0Hfgh5Z9tZKOztZY/0MhtSBERNnniQD+lDRJqbSGloPCnwn
aOLqJ4U/MdTHGNvkieWuCdbzw7d8806fifa9keR7dm9YbpJBNscUuNdCZoWBText
jlhhIeRV+svxQ4o3J11llDepCO63LA5vt5BaHCTlKDyTHwM0FpXp6TBL4Cfnc8sZ
ONovTzedoU30EjU827O9t6m+KlIkJ+E8dfRGa4XYClKCtGhNu2sEy4Vsa25Tz0M3
Inivg8Krvzd8BXXisHUin3g+NGi/G1wtS0axBvGvhF+RRateArQCNxETBIBRuA+d
u23UzMN0VnvsqQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:42:23 2025 by rpki-client