Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: 4EzCFcHMlfoJoL1Y5/axT8MotKthua1C9lSTjR8zKVM=
Subject key identifier: 98:BC:0A:4D:86:84:4E:A7:52:6D:0D:93:C3:15:1F:A0:AE:31:6A:43
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 0199180934620A63530DDF8BFA9E2FBF063A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 01EB
Signing time: Fri 05 Sep 2025 04:01:20 +0000
Manifest this update: Fri 05 Sep 2025 04:01:20 +0000
Manifest next update: Sat 06 Sep 2025 04:01:20 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: JFxpr0tgHQQMOVdS5QVC2lD5tC+HT/cxOumOUtx01ng=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:34:62:0a:63:53:0d:df:8b:fa:9e:2f:bf:06:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Sep 5 04:01:20 2025 GMT
Not After : Sep 6 04:01:20 2025 GMT
Subject: CN=98bc0a4d86844ea7526d0d93c3151fa0ae316a43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:04:cb:b0:50:2f:04:ee:6a:c4:14:ce:9c:f7:
94:57:f1:78:98:bf:aa:ca:1e:2f:28:48:ad:e8:70:
91:fc:3e:33:db:c9:da:c8:88:0b:27:9b:fb:52:5d:
7a:ef:74:e5:db:fb:a5:e4:2c:ba:b4:d7:8b:05:a5:
39:03:83:65:d2:37:e7:0a:6c:36:62:dc:a0:77:af:
2e:70:fe:bc:fe:40:39:29:d1:0d:b2:67:bb:e7:4d:
af:ad:77:27:a1:7b:7a:6f:9d:fc:83:81:e3:d7:d5:
7c:1d:6a:76:16:4f:37:8b:ca:f9:08:61:a4:13:44:
54:4b:15:be:b8:15:53:b5:a0:53:5b:7a:33:57:f1:
3f:9e:d7:24:75:29:90:51:af:67:9a:27:ce:61:80:
0b:22:06:d4:e1:e4:d2:32:dc:81:6e:04:48:29:2b:
13:28:2d:e8:9f:08:89:bc:d8:d6:14:d7:7d:1d:e2:
ea:ef:78:7f:99:3b:56:db:14:cd:ef:cd:2e:63:10:
69:3a:72:37:90:6e:96:df:53:ca:ec:b6:92:97:34:
16:43:82:8d:22:3b:2e:42:13:41:45:5c:02:75:c8:
c0:b7:07:82:ac:6a:b3:72:f6:d7:0c:29:ae:c1:63:
9f:c9:02:9f:c0:ee:77:15:26:8d:53:ae:d8:ab:e9:
bd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:BC:0A:4D:86:84:4E:A7:52:6D:0D:93:C3:15:1F:A0:AE:31:6A:43
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:53:2f:3c:0e:47:a8:c5:b1:1a:31:e2:e4:cf:dd:1f:80:08:
2b:a3:65:69:5f:4c:33:24:b7:06:85:f6:f0:f0:17:ff:8e:c0:
ac:5f:8f:b3:c6:b7:da:fd:95:e4:d3:b0:5f:c2:94:1d:de:a6:
35:c2:b5:5c:73:91:10:fd:6d:02:a4:76:43:03:4d:ae:aa:e4:
e8:5c:ca:f6:f0:88:c5:1d:9b:b6:8a:56:f1:a2:18:cf:b5:45:
12:69:3b:b5:04:c1:df:1e:33:f7:75:25:a1:c8:aa:32:4c:a0:
77:d2:3c:27:3f:46:68:0f:f9:23:03:d9:6f:6e:77:be:70:1f:
d3:e1:4d:cf:15:84:3f:97:34:ac:96:8c:b0:db:64:3a:4d:d6:
bb:99:79:ed:ca:8d:c5:d8:4f:2a:ae:4e:22:a0:2a:09:b7:63:
26:77:9e:cf:c7:48:d1:f0:49:ad:cb:32:55:5d:03:6c:56:e2:
97:2a:fe:2f:60:78:02:64:da:70:65:c8:93:76:46:6d:48:19:
09:c5:16:07:ed:30:74:f2:33:af:96:ed:b3:05:14:db:a2:1d:
ef:de:55:c5:d9:4c:58:15:f7:92:76:0f:9a:87:2b:6c:b1:fd:
27:2c:7a:32:22:66:91:7b:20:72:ec:4e:53:74:6c:b8:9b:10:
fd:d2:04:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:23 2025 by rpki-client