Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: 0FoLr0+Frf9/LLPwv8chsP/RavG7/bZDU1aG5l7dRU0=
Subject key identifier: E0:C9:7D:AD:55:5F:AD:37:67:F6:47:F5:A4:54:4B:4C:12:E5:7F:C2
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 019D26CCC448A05B384D37F725FCD8B614E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 0405
Signing time: Wed 25 Mar 2026 21:00:46 +0000
Manifest this update: Wed 25 Mar 2026 21:00:46 +0000
Manifest next update: Thu 26 Mar 2026 21:00:46 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: ncnKMtRqTX8BIV+MjaU+etAjezs7/hyRUwBhfef8ilE=)
2: cfmhFWxRmQMPqxzLZOdLCKBVtII.roa (hash: hnNzoR6kq2MH8dzC1wQ5EZyQAUNnpRqddoSLhzjNpPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:c4:48:a0:5b:38:4d:37:f7:25:fc:d8:b6:14:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Mar 25 21:00:46 2026 GMT
Not After : Mar 26 21:00:46 2026 GMT
Subject: CN=e0c97dad555fad3767f647f5a4544b4c12e57fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:90:aa:4d:c2:ec:85:59:d4:96:3e:33:b6:07:
ea:d1:a5:f3:5c:42:ae:d2:64:39:97:19:73:51:79:
15:e1:2d:ed:05:df:90:32:5f:c4:2d:06:44:07:26:
6d:e1:41:47:4f:dd:b6:18:b0:aa:e7:40:59:d6:c7:
41:7f:01:f7:03:bf:47:95:26:7a:00:11:ff:e3:df:
f8:6f:76:79:e1:4f:79:e0:4d:14:6f:e4:3c:b8:51:
5f:c8:ab:20:af:55:fe:6d:a3:62:39:d8:4c:c0:34:
d1:2c:74:93:5e:fc:74:57:7f:ba:75:37:76:5f:93:
5d:d5:52:0f:61:5b:f1:25:44:21:1f:72:c4:d3:f8:
07:61:91:90:b4:ad:49:a9:38:f7:70:29:42:27:f8:
f2:f2:53:db:d1:d7:48:41:55:60:4b:6b:2c:6c:dc:
7d:f8:65:a7:ca:5c:0d:b9:b9:c1:cf:d7:39:e1:49:
b5:fc:7b:13:cf:fd:06:cd:62:c5:07:86:19:57:2c:
2b:c3:f0:ec:3b:c6:f7:7b:91:58:c3:d2:db:e7:22:
fe:6f:b1:10:78:c8:44:ba:8e:1b:a6:b8:f6:c2:2b:
d0:26:d7:5c:71:93:ed:16:db:15:a1:f7:dc:a4:29:
4c:fd:3c:d0:f0:65:c0:50:bd:a2:77:74:23:79:f1:
e2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C9:7D:AD:55:5F:AD:37:67:F6:47:F5:A4:54:4B:4C:12:E5:7F:C2
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:8e:e9:38:18:40:54:c0:54:69:a0:5a:bd:e6:ae:d7:64:65:
4d:e5:14:31:e4:f3:fa:da:2b:9a:a0:3c:19:51:08:89:c9:60:
b8:7e:da:92:c0:a2:72:a8:1e:86:40:40:17:73:25:39:8d:34:
a1:59:cd:5c:94:13:07:8f:4b:31:a8:44:70:9d:f0:ab:61:cf:
9e:71:06:9c:14:dd:be:9f:fa:7a:a4:f9:8d:bd:2a:87:46:0b:
da:54:1f:d0:ee:9e:a2:e5:76:0d:35:e5:df:3e:b9:17:f8:cf:
b5:b4:6a:64:3a:f3:66:a5:72:87:b4:c0:b4:7c:3a:41:9b:d5:
8c:53:13:e8:c6:19:46:0a:f1:40:89:bf:5c:77:42:d6:f9:44:
af:7b:39:17:16:2c:e5:7d:5d:e6:c5:49:9f:87:79:2c:1e:0d:
09:43:b3:95:de:7c:13:5f:4c:d4:f8:5f:47:10:d7:99:51:86:
d3:50:99:97:b2:7a:4c:be:59:9d:3d:cb:78:6f:dd:25:fc:56:
67:f0:ea:80:43:35:3f:f3:11:3c:b5:87:67:45:9f:9d:1f:c8:
c8:7a:a6:b3:63:06:6a:dd:d9:80:a8:b0:d0:aa:46:e6:8a:d0:
b9:2c:2c:1b:fa:6f:c1:2a:d1:aa:60:5b:c5:05:07:19:41:6d:
7e:c1:4c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:54:08 2026 by rpki-client