Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: SuO407AwZ45aAQDIZXRzoK57FYDPlJcjgjAyFyupzxU=
Subject key identifier: FA:BA:04:6D:3E:3D:97:25:49:A5:BE:51:80:D0:C6:D2:74:E2:6E:E7
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 01974C325F7C1844FD3B196785F0EACFA09A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: FD
Signing time: Sat 07 Jun 2025 21:00:58 +0000
Manifest this update: Sat 07 Jun 2025 21:00:58 +0000
Manifest next update: Sun 08 Jun 2025 21:00:58 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: rBGcJxg+HuatJ5O2Tzsy4CiuqFZL6g/OEu+Tvtphat8=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:5f:7c:18:44:fd:3b:19:67:85:f0:ea:cf:a0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Jun 7 21:00:58 2025 GMT
Not After : Jun 8 21:00:58 2025 GMT
Subject: CN=faba046d3e3d972549a5be5180d0c6d274e26ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:e8:b0:38:5d:6c:9c:17:f2:db:84:a0:8c:
f3:00:db:47:9c:f5:d9:5d:b6:15:91:85:d5:bd:fc:
fe:3b:c4:ba:17:a4:cf:ae:4f:ef:ec:28:cc:0b:71:
00:6b:a3:b9:9d:33:14:fa:c8:c2:7b:c9:ca:85:6a:
0a:a6:fa:a3:c0:a5:01:1b:ae:7a:9e:31:04:3f:21:
d1:c3:5a:cb:d4:e1:0a:aa:f6:68:38:50:83:f5:bb:
30:94:20:33:90:cd:b9:a5:b3:f7:85:df:eb:14:74:
ea:80:d6:f6:40:d9:e3:f8:be:5c:cb:b5:f2:d2:1d:
43:02:4e:10:b4:f4:e5:87:8d:6d:6c:de:e1:50:3d:
8d:6e:b0:c4:55:12:80:61:00:0f:92:e4:39:3f:e2:
fb:08:84:de:da:fd:4b:b0:92:6c:33:23:08:6d:7e:
cb:0f:bd:a0:fa:f9:38:78:06:bd:e1:63:dd:2d:97:
c0:28:41:01:d8:8c:4a:d4:94:1b:43:33:a0:39:20:
c4:2f:b3:3d:4a:b4:f7:5f:f3:43:b3:f6:93:d3:8f:
85:06:78:10:d9:cd:de:28:df:a1:9a:0a:95:07:32:
95:9f:59:1c:07:4e:a9:d4:e4:bc:6b:a3:50:29:c0:
9d:93:2b:d7:9d:2c:43:ef:55:84:a9:23:e4:ae:63:
d7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BA:04:6D:3E:3D:97:25:49:A5:BE:51:80:D0:C6:D2:74:E2:6E:E7
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:31:7b:2a:18:04:08:a2:4a:34:73:12:3b:13:37:89:e1:79:
92:04:b6:ca:2c:fe:13:4e:58:6f:34:c4:ce:c9:f9:af:dd:90:
ae:57:4c:b8:07:91:46:2b:ee:38:4c:29:93:f1:2e:f2:57:5d:
42:93:bc:0f:51:91:f1:25:70:f5:ee:9d:7f:59:90:19:2d:00:
e2:e7:2c:9a:ce:3a:fc:da:be:af:06:98:5a:df:38:51:3d:c6:
6b:0e:f9:aa:61:f9:08:f3:30:bd:52:26:1a:a7:67:25:4e:bf:
0d:68:08:12:42:1e:e5:f4:a0:ff:93:46:67:38:5b:cc:06:0a:
c6:86:97:f0:81:2a:d4:be:2b:63:00:11:c1:f3:55:27:cb:ae:
cd:6b:e5:02:1c:76:ea:d0:5f:01:83:d0:ed:dd:8a:bc:b7:89:
8a:59:11:23:35:5d:57:4a:67:26:5b:2b:fe:08:85:4a:29:65:
50:49:e0:71:cb:1a:f0:50:ed:79:e3:66:01:59:ce:fa:e6:f0:
c2:04:d8:3d:40:c9:c2:eb:75:19:6e:45:a5:20:40:7e:c9:05:
10:30:0c:a8:3f:ef:49:38:32:8b:58:82:85:1c:47:9b:24:f0:
c7:0b:43:29:06:96:08:1c:ae:eb:ed:89:eb:9b:41:47:72:4a:
19:bc:ec:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMl98GET9OxlnhfDqz6CaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NDhiMzM4MzM5OTAwZmY3ZjNiNTliMjQ2ZDI0ZDI2ODdj
NjM2N2MwHhcNMjUwNjA3MjEwMDU4WhcNMjUwNjA4MjEwMDU4WjAzMTEwLwYDVQQD
EyhmYWJhMDQ2ZDNlM2Q5NzI1NDlhNWJlNTE4MGQwYzZkMjc0ZTI2ZWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBHosDhdbJwX8tuEoIzzANtHnPXZ
XbYVkYXVvfz+O8S6F6TPrk/v7CjMC3EAa6O5nTMU+sjCe8nKhWoKpvqjwKUBG656
njEEPyHRw1rL1OEKqvZoOFCD9bswlCAzkM25pbP3hd/rFHTqgNb2QNnj+L5cy7Xy
0h1DAk4QtPTlh41tbN7hUD2NbrDEVRKAYQAPkuQ5P+L7CITe2v1LsJJsMyMIbX7L
D72g+vk4eAa94WPdLZfAKEEB2IxK1JQbQzOgOSDEL7M9SrT3X/NDs/aT04+FBngQ
2c3eKN+hmgqVBzKVn1kcB06p1OS8a6NQKcCdkyvXnSxD71WEqSPkrmPXtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPq6BG0+PZclSaW+UYDQxtJ04m7nMB8GA1UdIwQY
MBaAFAZIszgzmQD/fztZskbSTSaHxjZ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQt
MGQ5MThlZWRjMjZmLzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQtMGQ5MThlZWRjMjZm
LzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkzF7KhgE
CKJKNHMSOxM3ieF5kgS2yiz+E05YbzTEzsn5r92QrldMuAeRRivuOEwpk/Eu8ldd
QpO8D1GR8SVw9e6df1mQGS0A4ucsms46/Nq+rwaYWt84UT3Gaw75qmH5CPMwvVIm
GqdnJU6/DWgIEkIe5fSg/5NGZzhbzAYKxoaX8IEq1L4rYwARwfNVJ8uuzWvlAhx2
6tBfAYPQ7d2KvLeJilkRIzVdV0pnJlsr/giFSillUEngccsa8FDteeNmAVnO+ubw
wgTYPUDJwut1GW5FpSBAfskFEDAMqD/vSTgyi1iChRxHmyTwxwtDKQaWCByu6+2J
65tBR3JKGbzsRw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 07:15:29 2025 by rpki-client