Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: sQh9lU+R2ugkIyP7rfmvBWeHzHy0Rv8zMrecuVW6Ef0=
Subject key identifier: 8B:35:A9:05:97:F8:7D:56:13:D5:AB:07:72:1F:30:6A:89:29:B7:EC
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 019645C4CE60A632542A42BB5C360F4DF57C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 0627
Signing time: Thu 17 Apr 2025 22:00:47 +0000
Manifest this update: Thu 17 Apr 2025 22:00:47 +0000
Manifest next update: Fri 18 Apr 2025 22:00:47 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: ldyjqvhmfr2/dWqGtM1WF1uiVC1YHNyIAvsE1slNX8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 22:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c4:ce:60:a6:32:54:2a:42:bb:5c:36:0f:4d:f5:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Apr 17 22:00:47 2025 GMT
Not After : Apr 18 22:00:47 2025 GMT
Subject: CN=8b35a90597f87d5613d5ab07721f306a8929b7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6f:4b:cd:31:e6:c6:0e:41:6c:92:97:33:fc:
2b:b3:50:2c:61:66:c6:6c:e1:9e:e0:f1:9f:1b:07:
93:fd:8e:aa:e5:09:70:ed:9d:63:67:ef:4f:dd:54:
88:43:52:ca:22:e2:f4:d1:03:a2:2f:87:25:14:37:
2e:d8:1b:30:5b:f8:88:fa:bd:a4:cf:92:00:fe:b9:
cb:76:13:42:aa:93:43:0c:44:a1:41:11:aa:0d:ae:
2d:2c:e8:e6:a2:89:8b:ea:83:20:f4:46:1c:bd:06:
19:0b:dd:f5:f4:81:0d:68:98:1d:2c:4e:f9:cb:cd:
97:e4:8f:2f:5a:67:d5:66:0c:25:6f:bf:84:f2:e3:
39:5a:86:51:56:21:8c:59:c8:69:f3:87:5d:65:a9:
22:a1:57:8f:5d:b9:83:f8:d0:5c:bd:9e:b7:ab:8b:
29:54:52:ec:78:9a:68:56:fa:6c:65:05:da:32:20:
af:a8:95:76:91:f5:db:08:ed:ce:58:5b:20:3f:a3:
93:43:4d:56:1a:3b:3a:a8:23:1d:66:ca:d5:79:97:
26:f0:8d:c9:f5:c2:26:2f:29:f6:f2:81:55:75:d7:
ff:a7:de:48:52:da:ff:16:ed:a6:34:0f:e3:77:06:
d7:1b:bd:82:a6:25:d6:6a:0c:aa:11:66:ff:39:1d:
ea:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:A9:05:97:F8:7D:56:13:D5:AB:07:72:1F:30:6A:89:29:B7:EC
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:71:6a:d1:a7:30:e8:12:c3:40:a9:53:6c:a9:42:6e:10:7b:
89:79:0d:f5:20:91:41:3d:eb:c8:49:81:cb:86:fd:16:bc:79:
2a:9a:c6:ac:03:f3:0e:0a:3c:73:67:84:14:59:49:cd:a3:3d:
ad:cf:c6:27:3f:f0:65:3d:a3:3e:51:11:be:28:68:9b:c4:fa:
bf:d0:9a:40:e0:0c:12:7e:a9:eb:fa:96:ef:a2:61:e7:f3:e0:
4c:17:9c:55:bf:c2:a0:8e:14:7e:c5:ab:10:65:d1:b1:e6:f3:
ac:66:f9:3d:85:54:f7:5c:50:f7:fc:77:51:eb:fd:c9:c1:34:
25:28:86:2e:33:42:f6:91:b7:59:f5:4f:66:04:50:88:c9:5c:
3e:d9:2c:24:66:a0:ec:be:73:12:be:af:18:83:26:c1:75:3b:
61:1c:b4:f1:32:20:e4:f3:21:51:bd:4d:5a:53:09:03:ae:0b:
d2:57:ce:36:6e:df:a3:02:9d:dd:f3:02:1c:98:71:88:07:de:
e4:79:04:dd:e4:c0:d0:65:ef:cb:b2:3e:8c:f3:5c:ed:62:93:
1c:b9:70:f4:b6:7a:e2:c0:6c:d7:e3:a8:30:02:3f:05:45:bb:
3e:d1:19:d0:09:7c:05:de:e1:de:a4:04:d8:63:64:79:ad:a6:
0e:68:0c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:22:55 2025 by rpki-client