Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: XUeLL8cXugw0lQyzBvAcK05Bq7nlQ/q326+1I0l1ge8=
Subject key identifier: 34:3D:46:07:10:A6:52:DB:D5:62:91:A1:BD:B4:0F:24:77:0F:12:43
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 0199FBEB27B6329F5B1B5203F14A409E00E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 0261
Signing time: Sun 19 Oct 2025 10:01:56 +0000
Manifest this update: Sun 19 Oct 2025 10:01:56 +0000
Manifest next update: Mon 20 Oct 2025 10:01:56 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: KdJTSh9NLB/06zGrBIv+gct7eMXPvXcC58FhbEhCYqQ=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:27:b6:32:9f:5b:1b:52:03:f1:4a:40:9e:00:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Oct 19 10:01:56 2025 GMT
Not After : Oct 20 10:01:56 2025 GMT
Subject: CN=343d460710a652dbd56291a1bdb40f24770f1243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:35:cb:07:a2:b5:8c:9e:1b:c6:4c:93:31:ea:
c3:e4:68:4e:b2:f5:71:cf:d0:8e:a6:8f:aa:70:c9:
24:bf:e0:27:82:c7:1f:cd:96:aa:b7:05:a6:47:54:
2e:93:7a:58:7a:e7:4d:15:d7:4f:ac:38:42:ef:b8:
28:49:7b:1f:05:3b:58:04:6d:9d:dc:1f:a3:ef:bb:
2f:fd:e6:b9:5e:b6:c4:a7:9d:ec:75:20:95:8a:03:
16:5c:0c:6d:e0:e1:a7:d4:e8:f9:94:a9:ed:37:12:
d2:64:1d:4d:89:4e:8f:e4:e8:50:8d:9b:1a:02:0b:
fe:bf:2d:ac:6c:60:2d:5c:1b:e7:17:53:dd:98:ee:
77:52:36:ed:32:75:4d:b3:c6:04:a8:83:ed:14:d6:
bb:c1:12:6b:76:36:9e:eb:e0:ad:2c:cc:72:9a:67:
aa:73:e1:71:bd:8c:09:eb:1a:bc:f7:77:65:4d:81:
33:22:6f:fe:46:62:11:45:a0:44:e1:08:73:0f:cc:
42:18:4a:06:6d:c5:e9:b5:b2:c7:33:7c:5b:33:dc:
61:ca:14:d7:b3:20:e9:51:43:5f:6c:1d:26:6e:e6:
f3:8d:6f:8a:63:53:c5:74:d6:4a:05:80:f2:0b:55:
8a:17:21:23:d5:d1:29:a4:14:05:85:fc:80:8f:b6:
d3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3D:46:07:10:A6:52:DB:D5:62:91:A1:BD:B4:0F:24:77:0F:12:43
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:b9:60:cc:96:95:a7:f4:9d:68:84:1d:66:49:f2:73:3b:6d:
e9:e2:d1:83:fd:b9:8a:29:eb:d1:8f:f8:b1:be:e9:dc:f2:5f:
79:9a:1a:0b:6f:d0:96:da:60:8e:8d:a8:88:d8:ce:52:05:4d:
5a:bb:c7:e4:20:05:64:4f:2b:9c:b7:20:4b:21:78:e7:d7:90:
72:4b:cf:6f:8f:c2:a4:d4:bb:22:ae:22:e6:cf:ca:1c:10:b7:
71:a7:83:66:71:62:f3:fd:14:ad:15:a2:fc:bc:4e:f0:7c:02:
e1:7c:06:bb:af:0f:dd:d1:2d:7e:fd:36:94:ee:c2:b0:22:41:
e3:ad:e0:cf:b2:fc:7d:57:6a:12:64:71:9b:75:0d:c5:f7:e9:
a2:f9:21:1f:08:95:36:c5:6d:a4:1d:3d:e1:e1:27:7d:2a:dd:
2c:ef:d9:34:d2:5b:c1:fc:84:42:2a:ba:f6:20:a7:09:23:ec:
8c:b5:0f:ee:f0:c5:ef:34:5d:d0:8f:43:a3:c2:a8:00:aa:63:
a7:d8:1e:9e:70:28:1e:90:40:84:d5:44:f7:5c:26:f3:d8:90:
38:04:8b:bb:6a:a9:05:06:96:24:cc:56:df:c3:aa:06:fd:92:
4f:cd:c7:52:13:96:89:19:a3:0f:80:fb:71:e6:01:a5:78:43:
96:bc:07:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:20 2025 by rpki-client