Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: djgDSg+bwbtQPMeVLVPmmtsH0ZNpKWpf798IiHoAW+Y=
Subject key identifier: 09:5F:4C:EE:FA:4A:C5:3A:36:E5:7D:F1:1E:2D:21:76:B0:A9:76:A4
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 019EF26C733CCB7B8740332AE7E373A9952C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 04F3
Signing time: Tue 23 Jun 2026 03:00:53 +0000
Manifest this update: Tue 23 Jun 2026 03:00:53 +0000
Manifest next update: Wed 24 Jun 2026 03:00:53 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: xdpB4SZzq6sI38h2swaGXg9Ubsa9/isXw3rMqbOPhUo=)
2: cfmhFWxRmQMPqxzLZOdLCKBVtII.roa (hash: hnNzoR6kq2MH8dzC1wQ5EZyQAUNnpRqddoSLhzjNpPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f2:6c:73:3c:cb:7b:87:40:33:2a:e7:e3:73:a9:95:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Jun 23 03:00:53 2026 GMT
Not After : Jun 24 03:00:53 2026 GMT
Subject: CN=095f4ceefa4ac53a36e57df11e2d2176b0a976a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:fd:46:e4:46:2b:ff:da:df:a6:76:d9:09:
a8:e0:45:c9:b8:f9:b8:d2:be:32:ed:be:39:9a:b7:
92:c3:16:cb:2a:b4:f6:70:30:d8:32:43:23:dc:4d:
26:e1:99:3a:b2:dc:4f:ac:f4:91:ef:32:7d:40:0d:
96:1b:d9:a0:39:70:7b:bd:cb:15:9b:51:c6:ba:5f:
0e:e5:46:e9:f4:5d:1d:ac:3d:4f:d3:29:c9:a4:70:
a3:d8:d7:6c:14:ec:07:39:1b:bf:b2:04:cb:5b:2d:
0a:36:92:6a:5e:2a:ad:65:db:38:d1:aa:ea:f6:fe:
48:17:da:88:ca:bf:74:05:63:2f:ed:05:ea:78:4c:
07:ce:0c:e1:dc:44:1e:07:c7:e7:ca:7e:6f:05:06:
57:ef:30:c1:ad:8f:27:45:cd:77:3c:d3:63:98:99:
2a:7d:81:89:e3:f5:b4:8c:97:b4:b6:cc:e0:b9:bb:
42:da:97:95:55:8e:11:7a:c7:b1:36:ce:75:9b:d7:
ab:a0:d0:00:67:f8:f8:db:a4:27:ce:26:7d:f9:6e:
67:88:11:a0:f8:20:52:b5:ae:19:b8:d9:a6:69:69:
ea:75:c5:45:d0:59:e5:9d:72:ef:b8:5b:3f:8b:16:
85:af:8e:a7:44:73:fb:7d:d6:76:2f:bd:c1:11:97:
f1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:5F:4C:EE:FA:4A:C5:3A:36:E5:7D:F1:1E:2D:21:76:B0:A9:76:A4
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:8a:96:39:a2:55:e2:c1:ef:64:5a:cd:27:5a:38:84:76:0f:
b2:49:0a:20:d1:71:6c:36:29:84:49:4e:2f:c5:76:4d:c5:e0:
cf:f1:e8:ba:06:6c:23:f4:14:ef:8e:22:21:b3:00:0f:0a:80:
51:82:48:bb:80:1c:f3:67:e4:51:61:8f:69:ad:a7:9e:68:b8:
8d:06:a9:1e:03:13:14:60:44:01:3b:1e:26:9d:8b:9e:73:7c:
a7:78:d2:52:9f:9f:4a:82:77:46:09:18:c1:8d:82:02:8e:50:
1a:4a:1b:97:92:7e:27:f8:99:35:7d:ac:4d:41:2e:9c:23:6e:
23:36:98:33:e6:aa:8d:99:2a:b3:7e:d2:f3:13:db:a2:4f:80:
54:94:ce:06:fa:3d:f4:91:17:5e:a9:fa:ed:ce:aa:68:9c:e8:
db:9e:93:91:36:95:f0:1f:fa:e6:55:6e:58:85:03:33:7f:ed:
04:d4:0d:01:76:63:10:3a:09:59:c6:06:53:b2:be:c3:57:ef:
a1:24:d7:62:dd:f2:9a:8a:37:27:dd:5e:30:66:d3:00:92:77:
27:7e:0d:dc:20:97:d9:19:0a:5b:a4:c6:c8:a5:ec:b9:32:d5:
69:90:32:e4:e1:97:32:de:51:46:4a:0c:ea:6f:bd:38:5e:11:
46:f8:ee:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 11:11:31 2026 by rpki-client