Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: qMDUDFkpKIKyG9A1VlkklH9m6l3n0Gbf1VyyuFt3gL4=
Subject key identifier: E9:30:22:F9:E1:19:40:CD:1A:00:09:B4:FC:4E:AD:34:7B:55:17:3D
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 0199FBEAC68BFF52790B2A4D1E4DE1EC7BE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 0813
Signing time: Sun 19 Oct 2025 10:01:31 +0000
Manifest this update: Sun 19 Oct 2025 10:01:31 +0000
Manifest next update: Mon 20 Oct 2025 10:01:31 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: XhvQE5LVjpsOSY6DzWnms4E2WIod03UaYDQk/xsGSiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c6:8b:ff:52:79:0b:2a:4d:1e:4d:e1:ec:7b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Oct 19 10:01:31 2025 GMT
Not After : Oct 20 10:01:31 2025 GMT
Subject: CN=e93022f9e11940cd1a0009b4fc4ead347b55173d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5e:69:0b:aa:eb:41:10:cc:8a:37:68:1d:37:
4c:70:6d:3a:cf:65:35:d1:04:7f:d8:8f:f7:65:34:
d5:71:e9:31:20:11:5e:4f:22:93:8b:66:c9:f1:8f:
8f:c6:cc:df:dd:2e:a7:76:99:cc:3f:86:d3:77:b1:
3c:1e:b0:65:d1:c3:85:53:bf:ec:fb:59:d4:b7:7b:
54:5d:66:ef:32:df:52:36:79:de:d9:98:a2:be:7c:
41:ca:fd:2d:bb:7a:c6:bf:84:d6:76:4b:07:ae:e2:
7a:fa:02:de:e6:81:88:c5:50:98:47:59:21:a7:78:
a7:24:0c:cb:8d:25:32:84:c9:79:a2:86:e3:14:c9:
c0:56:92:58:b2:04:dc:c1:05:27:ca:96:fc:93:02:
1f:25:dd:99:42:a4:e7:68:9f:11:4e:f5:64:99:fc:
0a:e0:f9:43:6b:ca:50:2b:57:af:6e:af:c5:c5:64:
5f:d6:9a:5e:a6:3d:a6:b2:59:4b:20:4a:f2:5f:ac:
f6:26:d0:0b:9a:78:b5:a8:67:0c:9c:f0:69:12:af:
05:91:46:9a:f6:d1:b3:4d:a3:a1:95:f9:9e:45:13:
96:11:e9:bc:4f:8b:0d:69:39:28:a9:89:87:e7:7c:
32:57:26:72:7a:6d:d8:d0:dc:bd:c9:ee:84:13:6f:
74:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:30:22:F9:E1:19:40:CD:1A:00:09:B4:FC:4E:AD:34:7B:55:17:3D
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ee:15:ca:7d:41:66:24:f0:77:22:1f:ec:d7:3d:0b:a2:b3:
90:b4:16:05:86:76:68:1b:2a:aa:0f:e2:67:0d:69:c6:a3:78:
7d:dc:35:d4:52:fc:12:dd:67:85:72:22:f9:2d:f4:d2:82:15:
f5:ce:86:c0:b3:88:54:ab:47:e7:4e:e9:dd:e3:ce:0b:06:c0:
ca:4e:4b:f7:07:ae:62:24:c5:7b:a0:a6:6c:cc:57:08:29:c3:
69:41:9c:81:7f:97:2a:e5:36:fa:e3:a2:a1:af:9d:79:6c:70:
13:2e:07:97:ad:33:53:47:ac:88:55:1c:25:7e:51:45:a3:ab:
e1:9f:19:c5:d9:ac:8b:50:47:00:e2:06:e0:f6:45:01:52:d7:
27:26:0c:93:d2:d8:50:80:c6:93:ec:91:bc:e7:22:26:c4:f4:
c0:7e:1b:87:61:5d:d3:0f:94:73:e9:ee:3a:c2:45:fb:17:a5:
1a:92:6d:e0:38:dd:0d:9b:bf:57:ff:9e:fe:f9:22:7c:cd:72:
a9:b4:79:39:60:27:4d:59:e8:bd:5a:55:35:9d:1b:c0:ac:68:
43:ca:89:de:0a:e8:b7:bb:22:0c:ab:50:b8:cf:83:55:87:f4:
1a:67:dd:1b:19:c2:ef:6e:2e:c2:d4:25:1b:5b:b2:1b:c8:03:
03:f9:07:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:24 2025 by rpki-client