Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: 5fhSUOTGMLbjlJ1oka2EPAUGKPqD6ZqsVp+SWIZ5TKo=
Subject key identifier: 87:9F:E4:16:96:FE:93:E8:07:A2:F0:21:59:D6:B2:FB:AB:61:7D:7B
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 019A28552681318E716FCBC621562BD7EF96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 0278
Signing time: Tue 28 Oct 2025 01:01:00 +0000
Manifest this update: Tue 28 Oct 2025 01:01:00 +0000
Manifest next update: Wed 29 Oct 2025 01:01:00 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: JePG/BzcSoUPNdzKnZwMkX+mgQ1nrI7GkS1B2p4OxJk=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 21:56:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:55:26:81:31:8e:71:6f:cb:c6:21:56:2b:d7:ef:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Oct 28 01:01:00 2025 GMT
Not After : Oct 29 01:01:00 2025 GMT
Subject: CN=879fe41696fe93e807a2f02159d6b2fbab617d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f2:ef:2a:68:0c:e7:8d:95:d3:c5:5d:61:2a:
49:eb:2c:0b:cb:8e:71:ed:78:c8:ce:ea:c2:78:6f:
52:b5:e8:fe:03:78:38:b1:b7:da:f3:38:4f:00:9d:
28:c5:dd:1e:71:16:6e:06:98:d3:4c:ab:07:e8:a9:
37:15:90:93:b4:f1:f6:7b:3c:b5:cd:42:5b:0d:33:
47:22:2d:e6:24:13:fd:d8:a9:24:c5:6a:d0:d4:fb:
83:f5:89:b5:f1:fc:7b:2f:47:9c:88:8e:74:9f:f4:
d3:dd:f0:1d:16:20:74:a5:48:f6:da:7c:16:1f:4f:
f6:85:99:d9:aa:b8:d3:62:70:70:db:70:9d:d5:3d:
8a:82:9c:39:4e:20:29:b4:b0:7d:1e:c8:52:78:2c:
84:39:b8:d3:74:82:43:fa:a0:6f:d7:84:94:35:4a:
04:70:a5:af:bb:7d:1a:ed:1d:52:69:ec:a9:12:d3:
8d:33:96:f1:3d:b3:9a:b3:47:b7:c2:3e:2b:50:66:
95:b1:39:a5:f9:16:2a:4c:86:58:17:be:58:6d:da:
43:d4:7a:21:43:70:f0:d9:6b:63:db:c8:a8:26:1c:
db:43:9c:08:e8:56:bc:2d:67:ae:81:c0:4b:52:b8:
fb:d5:ed:71:ea:60:ad:e6:ef:a7:86:46:56:e6:21:
48:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9F:E4:16:96:FE:93:E8:07:A2:F0:21:59:D6:B2:FB:AB:61:7D:7B
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:50:97:ae:a1:b2:e8:ca:9a:3d:7c:5f:fe:74:7d:bd:cc:76:
1f:85:63:4d:0c:77:a6:d6:62:a9:ee:18:1f:dd:6e:bc:2f:a6:
37:93:d0:56:df:98:ba:ef:75:88:78:52:2b:dc:7f:c9:43:8e:
5f:1d:75:16:eb:96:15:5b:a3:9a:5f:3b:a3:bf:c5:96:0e:12:
21:96:97:b7:4e:f9:54:94:48:d6:a7:8f:6e:b5:40:c3:4e:3b:
20:33:ca:e6:be:32:bb:82:da:bd:3f:24:61:41:6a:b5:36:84:
96:06:a8:ae:4a:a7:7f:70:66:10:f6:f5:1a:1b:13:ce:07:a8:
f2:f8:c4:f2:28:e4:31:14:0d:bc:c3:0c:9b:7a:c3:d8:87:20:
03:8a:56:a7:a5:10:ef:92:df:f2:6b:0a:74:22:ad:ad:87:c6:
73:92:69:fd:c2:ed:3a:7e:ad:95:18:3c:e0:54:f7:29:49:90:
61:20:3f:04:02:ec:fc:89:b7:d1:72:e2:e8:a8:22:cb:1b:55:
1b:63:0d:bf:dc:03:ca:cd:15:27:5e:d0:4c:01:19:92:2d:97:
4b:ed:e0:8d:a7:29:c7:d8:b9:a9:87:d0:28:23:1d:9d:6c:3c:
00:be:a6:90:e1:b2:2d:ae:da:3a:75:e9:6c:be:98:0f:8a:71:
60:96:71:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZooVSaBMY5xb8vGIVYr1++WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NDhiMzM4MzM5OTAwZmY3ZjNiNTliMjQ2ZDI0ZDI2ODdj
NjM2N2MwHhcNMjUxMDI4MDEwMTAwWhcNMjUxMDI5MDEwMTAwWjAzMTEwLwYDVQQD
Eyg4NzlmZTQxNjk2ZmU5M2U4MDdhMmYwMjE1OWQ2YjJmYmFiNjE3ZDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PLvKmgM542V08VdYSpJ6ywLy45x
7XjIzurCeG9Stej+A3g4sbfa8zhPAJ0oxd0ecRZuBpjTTKsH6Kk3FZCTtPH2ezy1
zUJbDTNHIi3mJBP92KkkxWrQ1PuD9Ym18fx7L0eciI50n/TT3fAdFiB0pUj22nwW
H0/2hZnZqrjTYnBw23Cd1T2Kgpw5TiAptLB9HshSeCyEObjTdIJD+qBv14SUNUoE
cKWvu30a7R1SaeypEtONM5bxPbOas0e3wj4rUGaVsTml+RYqTIZYF75YbdpD1Hoh
Q3Dw2Wtj28ioJhzbQ5wI6Fa8LWeugcBLUrj71e1x6mCt5u+nhkZW5iFIVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIef5BaW/pPoB6LwIVnWsvurYX17MB8GA1UdIwQY
MBaAFAZIszgzmQD/fztZskbSTSaHxjZ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQt
MGQ5MThlZWRjMjZmLzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQtMGQ5MThlZWRjMjZm
LzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAflCXrqGy
6MqaPXxf/nR9vcx2H4VjTQx3ptZiqe4YH91uvC+mN5PQVt+Yuu91iHhSK9x/yUOO
Xx11FuuWFVujml87o7/Flg4SIZaXt075VJRI1qePbrVAw047IDPK5r4yu4LavT8k
YUFqtTaElgaorkqnf3BmEPb1GhsTzgeo8vjE8ijkMRQNvMMMm3rD2IcgA4pWp6UQ
75Lf8msKdCKtrYfGc5Jp/cLtOn6tlRg84FT3KUmQYSA/BALs/Im30XLi6KgiyxtV
G2MNv9wDys0VJ17QTAEZki2XS+3gjacpx9i5qYfQKCMdnWw8AL6mkOGyLa7aOnXp
bL6YD4pxYJZxzA==
-----END CERTIFICATE-----
Generated at Tue Oct 28 04:44:07 2025 by rpki-client