Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: lXxeUI7Y8Wt9vQ74z2G9mnncMbY8Jdyf5UeHSJA/dGg=
Subject key identifier: 2B:8B:F8:8E:40:9B:96:B0:8A:CE:96:AA:8E:BB:6C:07:86:42:FF:51
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 019A71B8FC8E1DA3005586911E6A60D51615
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 0850
Signing time: Tue 11 Nov 2025 07:02:19 +0000
Manifest this update: Tue 11 Nov 2025 07:02:19 +0000
Manifest next update: Wed 12 Nov 2025 07:02:19 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: raL11ujBF1n4eXf6gLQiLYKwy7Ylf2/TzNmL4L0R3dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:fc:8e:1d:a3:00:55:86:91:1e:6a:60:d5:16:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Nov 11 07:02:19 2025 GMT
Not After : Nov 12 07:02:19 2025 GMT
Subject: CN=2b8bf88e409b96b08ace96aa8ebb6c078642ff51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a0:ac:ae:50:70:9f:80:73:5f:6c:34:3a:e4:
3b:44:f4:5a:38:29:93:1e:6a:dd:dd:99:3d:8e:fd:
1d:c7:9f:f8:fb:d0:bd:33:de:57:e7:80:75:fb:81:
e7:00:08:7e:91:dd:f7:f1:b8:31:8b:ac:31:08:3c:
56:8e:38:da:5d:c7:65:7e:f0:35:b7:12:cb:12:aa:
a2:3c:99:06:35:31:1b:a6:cc:97:b1:57:48:ba:6a:
d9:ca:e2:85:c1:ca:e7:40:20:70:cc:c8:e7:50:7a:
d2:58:4b:f6:21:ee:62:11:bb:c7:99:38:96:e2:d5:
d1:b6:16:e0:6b:f7:f6:42:41:71:9d:57:ee:11:5f:
d2:7b:a1:ea:68:40:6c:e5:8e:a6:86:7c:49:b8:15:
f3:12:39:e2:3a:c9:af:cb:61:42:1c:15:92:9e:18:
8e:8c:68:82:da:12:4a:07:60:50:f3:df:05:66:07:
d3:e2:47:c1:06:b4:a0:4f:57:78:be:b9:c5:cc:ae:
10:aa:0a:05:1a:ec:e5:20:d2:25:54:50:c3:62:27:
8b:7f:1d:1b:d5:e1:14:c4:ba:33:8e:7c:08:b2:b0:
88:fa:1e:97:1f:3b:9c:23:bc:70:3f:ca:c5:fe:94:
d2:73:3f:34:3b:a2:26:ac:dd:ef:f3:70:1c:9a:31:
6e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:8B:F8:8E:40:9B:96:B0:8A:CE:96:AA:8E:BB:6C:07:86:42:FF:51
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:0c:4f:32:6f:96:41:f8:27:7f:2b:32:4d:6c:22:76:33:ad:
e0:57:29:8a:f9:50:38:99:f2:55:2a:42:44:7f:71:22:d6:66:
1d:65:59:4f:ae:df:7b:51:04:38:dd:a6:f6:92:76:ee:63:96:
04:a1:11:e8:98:c5:41:3a:63:6c:13:74:46:c9:07:9e:7c:a3:
72:ef:04:88:15:50:6e:75:a7:77:9b:2b:28:1e:0a:df:c9:e4:
1a:e9:ff:39:f2:b9:e3:f5:f2:3e:7c:12:91:11:e9:82:ca:ff:
09:b9:8d:b5:b5:86:65:f0:88:54:d9:e1:c2:74:a5:10:14:97:
ae:b1:d3:86:15:cc:6e:6c:97:86:95:30:27:5c:09:96:08:af:
ba:7f:71:85:18:92:c3:8d:bd:b5:09:96:02:ae:80:29:a2:9c:
60:8b:ff:4c:eb:39:70:af:19:2d:17:59:84:71:12:e2:99:f7:
1e:bb:13:9e:b4:3c:bd:ba:68:cd:36:97:01:e5:79:0f:1e:27:
ca:36:ab:d8:e7:17:f6:64:99:81:0f:f5:ab:94:07:74:c0:74:
dc:f3:1e:6d:4c:59:06:33:34:42:cc:af:3d:26:57:2a:f0:7c:
0e:ca:1a:90:46:d8:b1:41:43:61:16:09:39:e0:c3:1f:f1:88:
14:61:70:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:36:19 2025 by rpki-client