Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: PrZljH8lFjkaJuKx7/2oufT3emKTm4NCooa4FX4xM+U=
Subject key identifier: A5:DA:2C:FA:47:8C:2F:40:3E:1B:BB:C4:53:E0:08:E4:BC:1E:9D:1C
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 0198D472A600687E193B6C6FD28F1A2CAC2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 077A
Signing time: Sat 23 Aug 2025 01:02:20 +0000
Manifest this update: Sat 23 Aug 2025 01:02:20 +0000
Manifest next update: Sun 24 Aug 2025 01:02:20 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: kC72yjVgAkg2I6d67pwbWLbBWtUrC+o4sxv53jHvrWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:a6:00:68:7e:19:3b:6c:6f:d2:8f:1a:2c:ac:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Aug 23 01:02:20 2025 GMT
Not After : Aug 24 01:02:20 2025 GMT
Subject: CN=a5da2cfa478c2f403e1bbbc453e008e4bc1e9d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:95:d4:ea:05:98:31:f2:e4:46:67:fd:46:13:
36:fe:97:85:eb:84:32:21:5f:5f:00:76:01:61:fd:
86:71:c0:b3:40:53:79:81:ff:29:f2:ce:fa:c2:66:
5b:6a:b0:dd:37:37:73:c5:b3:4f:e8:8e:1e:ba:7c:
3c:36:49:86:0c:a8:e3:d2:ae:df:b1:12:3c:cc:47:
a2:df:1c:60:23:11:36:ab:79:08:f7:8c:62:3c:ef:
3f:13:df:17:2a:61:5d:9c:11:3c:6c:37:3f:bf:5a:
d7:35:02:02:1e:e8:f6:41:ee:a6:8a:b2:83:65:73:
84:b7:47:24:c9:ba:40:bf:b5:b4:95:68:79:e5:a8:
23:e6:54:5e:28:83:0d:55:c3:0b:3d:fd:bb:3e:54:
c2:22:7c:46:37:16:fb:27:68:9d:7a:be:cf:d8:e5:
f2:f6:21:ea:b8:55:0d:8c:2e:8f:ee:14:23:81:cc:
4f:db:56:75:69:05:70:6a:75:88:1b:70:b6:28:24:
11:29:41:ad:65:2c:23:90:3a:85:3b:6a:19:5a:aa:
ca:d6:80:5e:31:46:36:10:f3:2e:83:2b:fd:f4:05:
ff:7d:f9:28:d2:bd:ee:d1:0a:aa:0a:97:96:e7:bf:
e2:89:c9:4a:6d:e6:b3:10:9a:40:92:56:64:27:26:
b1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:DA:2C:FA:47:8C:2F:40:3E:1B:BB:C4:53:E0:08:E4:BC:1E:9D:1C
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:6b:07:dc:5a:dd:70:47:53:d4:70:a0:42:5a:6f:75:53:7f:
53:64:da:2e:9f:fb:19:8d:06:ad:b5:f8:b5:93:46:70:1f:8f:
a6:b4:c3:b4:42:0e:30:37:54:f1:a9:04:07:9a:5a:cb:dc:bb:
68:23:a1:47:e9:ff:c5:14:f9:67:e0:8b:76:3a:84:fc:db:f7:
90:ca:27:40:2b:b2:0b:e4:47:5f:29:ba:ee:88:5c:15:51:90:
e8:3b:38:fc:c8:ee:53:5f:f8:84:e3:9e:10:53:0d:89:13:24:
00:ef:57:c5:d8:c2:ce:9a:91:68:ce:6e:6a:25:07:24:89:08:
da:68:fd:88:a9:bb:7e:9d:31:18:15:04:e9:41:fa:9d:60:c8:
0a:ab:ca:4c:64:23:03:4b:d9:2c:f3:21:9e:bf:00:1d:14:6d:
91:89:05:2d:a3:a5:b1:27:29:87:ff:85:2e:2f:58:09:27:a2:
72:f8:50:7d:b0:3f:85:5e:f9:60:78:e9:e3:8b:ae:5c:28:4b:
d6:86:48:19:00:9b:3d:25:e1:40:18:d7:fe:d5:7b:90:9c:d9:
d2:cf:a1:db:f6:30:f1:73:e0:46:9e:42:93:fb:b8:2d:45:81:
b9:28:b4:a2:fe:0e:49:2d:56:ad:37:46:c1:95:95:3d:85:af:
2b:dd:67:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:00 2025 by rpki-client