Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: oUrl1xQLB3Mkbv8mORMnghdUOhVGSGJT1m0ZtisTGX4=
Subject key identifier: 05:14:55:9E:CC:4D:BF:22:62:9F:E0:D2:78:76:FC:D2:9F:23:B3:9A
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 019D26CCE3990B7DC199DCDC69A83C109AAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 09B7
Signing time: Wed 25 Mar 2026 21:00:54 +0000
Manifest this update: Wed 25 Mar 2026 21:00:54 +0000
Manifest next update: Thu 26 Mar 2026 21:00:54 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: 4jxN0ujA4R3q/u9w4RH42s/tTOqHtQfGrxyD5D6/LGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:e3:99:0b:7d:c1:99:dc:dc:69:a8:3c:10:9a:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Mar 25 21:00:54 2026 GMT
Not After : Mar 26 21:00:54 2026 GMT
Subject: CN=0514559ecc4dbf22629fe0d27876fcd29f23b39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d7:af:a9:5f:be:01:45:65:cf:3e:02:57:b1:
27:7b:39:a3:96:90:7d:0c:35:fd:bd:a0:87:36:51:
ad:4a:15:a0:c2:98:65:8d:c4:8b:3c:7a:83:78:48:
b9:f5:96:a7:30:42:22:31:a1:b6:28:73:c4:ab:0b:
b2:c1:ed:c9:92:f7:a1:0b:26:62:a6:10:68:e9:3e:
df:c8:d7:30:67:4f:de:70:57:05:7a:2b:e9:20:76:
57:0d:ef:e4:f1:8f:65:34:be:62:be:c7:80:a4:08:
4c:a6:e1:18:e6:ea:ed:e7:da:4c:81:21:ae:1f:d2:
e9:c5:25:5b:9a:55:24:08:f9:7b:d0:f1:01:c0:70:
d5:fc:f2:78:11:eb:46:e8:5d:38:f5:bb:24:cb:1b:
ce:6a:8e:b7:b2:08:92:6d:99:ac:d7:90:7f:78:b8:
2a:f8:81:c6:a3:7d:d7:fc:9b:8f:86:40:4c:c5:74:
2a:5d:30:54:02:d5:62:61:1a:01:d8:58:00:17:9a:
fc:f2:fb:55:00:16:b6:a0:5c:38:26:16:eb:87:5c:
a2:62:c5:1f:ff:6a:f2:5a:bb:df:8a:44:fa:7f:ae:
e0:ed:b4:77:4d:84:9b:ca:44:90:96:0f:e1:41:33:
b2:87:83:08:8b:5f:70:10:80:0e:c6:a7:4f:94:89:
19:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:14:55:9E:CC:4D:BF:22:62:9F:E0:D2:78:76:FC:D2:9F:23:B3:9A
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:1c:1d:55:8b:f8:ca:bd:2e:32:b7:d7:62:7c:4c:1e:4c:3f:
a2:52:9b:7e:f2:98:b2:98:c1:db:e4:0e:86:2c:80:0d:0d:f1:
84:61:b6:51:51:7f:c7:ab:68:28:40:a2:9e:8f:a4:d0:23:23:
d3:a0:f6:1b:50:22:83:87:19:db:bd:3b:1b:20:43:e4:61:b5:
e3:8c:d2:40:c2:70:a8:33:77:1d:47:d4:22:90:ea:5b:e1:b6:
24:a5:c9:fd:02:e7:13:0f:51:8f:38:0b:9c:ec:b9:3f:a6:2d:
8a:44:15:49:de:71:5c:93:39:05:2a:b6:d4:6a:d0:04:ab:79:
c0:75:41:45:f9:83:1d:80:a6:c3:2c:af:68:eb:12:e5:8a:16:
ab:24:79:27:94:03:fb:3e:a7:c1:f2:fe:6e:49:2a:de:c4:f9:
8f:8b:87:64:db:44:b7:87:63:e3:62:d7:84:1f:9f:f0:88:f0:
6b:48:1f:3e:89:86:06:2e:04:99:bf:b3:26:3c:bc:11:77:14:
b2:22:be:fe:2d:ec:2b:31:04:8e:60:30:bf:28:21:6e:d6:3e:
5f:2a:fd:4d:e9:35:29:61:16:0c:4a:0f:31:83:d9:0f:6c:4b:
0f:fb:78:11:32:fb:cc:8b:d8:cb:11:90:03:7e:e7:a1:5d:b0:
c6:67:73:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:49:01 2026 by rpki-client