Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: KeDlV/NiZ7TMYiYhIhT3VE2ypcMMKMIAM2PHAy14hhc=
Subject key identifier: 54:57:C3:44:EF:A0:DC:7F:5A:47:9D:0E:A0:22:01:6B:42:95:EE:A0
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 019E1FEC806B13DFE1623769A23833D8C347
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 0486
Signing time: Wed 13 May 2026 06:00:53 +0000
Manifest this update: Wed 13 May 2026 06:00:53 +0000
Manifest next update: Thu 14 May 2026 06:00:53 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: qhMpATlrglvRfeByjHVYc5ZaqCUeQtryPa92UDVRpbs=)
2: cfmhFWxRmQMPqxzLZOdLCKBVtII.roa (hash: hnNzoR6kq2MH8dzC1wQ5EZyQAUNnpRqddoSLhzjNpPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:80:6b:13:df:e1:62:37:69:a2:38:33:d8:c3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: May 13 06:00:53 2026 GMT
Not After : May 14 06:00:53 2026 GMT
Subject: CN=5457c344efa0dc7f5a479d0ea022016b4295eea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4f:a9:e9:10:e9:5f:27:78:3a:84:f9:09:96:
34:00:3f:53:ca:69:15:98:76:67:d1:f1:cd:17:3f:
37:71:e5:97:7e:37:cc:02:e0:0f:e8:02:45:47:7a:
9b:29:a5:5d:57:74:87:77:c9:3b:2a:53:42:75:98:
99:e1:51:5a:e0:42:0d:dc:ba:d4:92:a0:16:f9:22:
8b:06:fc:d4:87:67:44:56:aa:ba:39:30:3d:8d:d0:
28:d3:e2:ac:5f:61:7c:aa:3c:5c:27:9b:ab:23:06:
d1:b8:38:a0:6e:9f:d1:9d:77:d1:10:db:fb:b4:16:
57:0f:02:45:b6:c9:d7:40:7e:a9:bf:1b:d9:47:61:
0d:33:13:83:53:53:7b:79:a7:72:9f:6e:8c:b4:70:
1c:37:c4:3b:06:3c:20:28:57:10:60:25:1e:d9:aa:
01:85:ba:d0:3e:8d:4a:5c:9e:d0:a5:05:f0:79:24:
50:14:bc:cd:6f:c9:ab:b5:47:b0:2d:7e:a6:d6:d8:
f8:ed:8f:9d:c6:12:c2:f9:31:c8:30:7c:df:0b:c2:
df:2b:21:37:bc:52:d3:53:29:b5:8a:50:87:a4:ab:
13:5a:75:7c:a6:38:3b:cf:21:60:7e:32:4a:0e:33:
c2:b7:31:75:65:07:00:2a:56:1b:81:47:b4:f3:94:
db:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:57:C3:44:EF:A0:DC:7F:5A:47:9D:0E:A0:22:01:6B:42:95:EE:A0
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:fc:83:85:1f:a5:bf:63:15:86:9a:eb:00:05:02:1a:28:99:
91:a9:4a:b0:70:da:ad:27:cc:e7:be:d5:8f:ee:ed:91:dc:35:
5e:c5:8a:d1:41:63:32:1f:1a:3b:c8:c1:3c:2b:05:e9:f6:5d:
87:bd:28:9d:a0:62:60:c0:77:8d:c6:8b:9d:00:a0:86:9f:84:
75:8c:e2:4c:46:4b:49:43:4d:b3:02:6b:8e:97:c9:ea:4c:f6:
66:51:68:09:68:e5:76:d4:19:60:79:31:17:70:b1:42:07:bc:
12:d7:e3:7b:3b:5e:f7:88:b3:da:2d:94:56:96:48:ec:8c:e2:
b6:b6:6c:1c:32:50:82:39:92:a0:4a:8b:02:f3:37:48:ec:a5:
84:f4:c0:19:2d:6f:29:36:43:7b:d2:5c:57:63:1b:f5:1b:66:
01:d8:1e:32:15:90:aa:29:ff:4c:b5:22:b4:d4:02:82:3d:f4:
fc:ed:6c:85:5a:f9:52:bf:a8:52:ed:66:fb:b6:9e:4b:96:ac:
e3:9b:c7:a9:85:d5:07:cf:55:1c:82:2e:89:d2:ad:2d:81:0b:
0e:95:30:56:74:68:49:ec:19:cc:e4:03:70:26:53:25:f1:5f:
11:f4:8d:18:1b:eb:f7:e9:a1:bc:ce:36:7c:73:2d:53:78:e6:
1f:65:af:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:10:49 2026 by rpki-client