Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: zByKL7LAPEwV2FNZpeSRJ19wyOjKd1A22yIMDoI2eeM=
Subject key identifier: 7D:0A:6E:12:FC:F0:A7:7A:94:C2:13:0A:8D:E1:FE:73:19:26:22:AA
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 0197BA7E78A3954303AE2732693D6C39B780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 0136
Signing time: Sun 29 Jun 2025 07:02:19 +0000
Manifest this update: Sun 29 Jun 2025 07:02:19 +0000
Manifest next update: Mon 30 Jun 2025 07:02:19 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: 7XaPtqjKt9T0qOYmkbh7TeWWNhfevnvc50KN+LjyETY=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:78:a3:95:43:03:ae:27:32:69:3d:6c:39:b7:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Jun 29 07:02:19 2025 GMT
Not After : Jun 30 07:02:19 2025 GMT
Subject: CN=7d0a6e12fcf0a77a94c2130a8de1fe73192622aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:00:2e:76:ff:f1:37:da:e6:2c:5a:03:04:23:
5c:7d:52:ea:b9:60:9d:a7:75:eb:bb:1d:5a:30:03:
42:c0:60:8f:de:a0:29:cc:a0:cc:78:40:ff:5f:71:
66:53:ea:3b:46:f1:8e:45:0c:f3:7d:62:82:51:d6:
40:40:3f:68:90:48:40:00:1e:e7:28:a0:fd:d2:89:
fa:c5:40:82:cb:eb:eb:80:d3:49:2d:2a:4e:23:b6:
25:09:ae:d7:04:05:2b:ea:ee:dd:9d:e7:04:b2:57:
d0:d9:f0:b0:bb:eb:dc:f4:19:d7:74:0f:0e:eb:42:
e1:94:a1:9b:57:b1:31:b6:04:67:ec:6b:ef:8c:a4:
d2:77:2e:04:b8:1e:34:85:29:e5:b9:72:14:72:0c:
51:9a:39:26:ce:b0:1e:58:f2:98:5d:17:e3:72:8b:
86:3d:db:13:64:34:51:1b:c8:72:dd:27:a1:fb:a1:
62:0e:46:b1:c0:42:0e:36:79:6a:5d:70:c1:21:23:
a8:4b:ed:23:b1:21:5f:4e:52:48:68:6d:1f:8d:8c:
30:73:0e:58:a6:ad:f9:ba:f3:97:88:2f:c2:16:9d:
5d:88:be:b1:1a:e8:d4:ee:51:fe:14:df:33:4e:56:
bf:af:bf:53:b2:33:08:85:3a:58:e3:54:1b:aa:78:
a4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0A:6E:12:FC:F0:A7:7A:94:C2:13:0A:8D:E1:FE:73:19:26:22:AA
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:46:ed:2e:72:f1:4d:04:64:92:07:d7:99:5a:ab:5f:52:e7:
6e:4a:bc:30:e5:74:59:e4:1e:f1:60:50:83:77:68:ff:9f:8c:
be:c2:d2:ac:48:a2:97:39:41:ca:00:89:48:b9:30:4c:d7:84:
94:14:1a:17:0d:75:f3:57:37:6f:34:28:1a:f2:9f:5b:93:d7:
70:6b:6c:50:28:8e:17:27:45:73:9e:6c:34:2d:5e:7e:19:08:
91:cd:1b:85:b6:38:dc:eb:f7:1e:76:46:25:01:bd:07:25:c8:
79:0e:00:7e:a8:e6:e7:48:4d:ed:ac:17:8d:41:c8:92:be:cd:
52:a2:d9:5f:97:46:cf:76:75:46:85:4d:4f:9b:0f:1b:c2:10:
17:4a:c4:89:5a:4c:58:b8:c8:52:9d:92:32:bc:d8:fc:6e:a2:
41:69:e9:60:a2:f2:e6:42:a8:70:06:0a:29:61:4b:27:00:31:
6e:73:62:5b:14:de:13:be:51:06:43:c0:9b:f8:bf:64:d0:7e:
4a:8a:a8:92:ab:53:b9:d1:6e:3f:1b:ae:a4:1e:78:49:5f:cd:
2a:4e:e0:55:8d:a0:76:22:c9:f4:08:2c:80:0a:fe:49:8e:bb:
1c:8c:67:a6:01:e0:3d:dd:f5:9b:9d:94:8e:95:38:9e:be:f4:
cb:9b:31:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:45:20 2025 by rpki-client