Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json)
Hash identifier: Tdr6PzzBm4kfzKIvBiDNqG66EgyKunz6T3TAe5i88Dw=
Subject key identifier: B3:4B:05:8C:B8:2B:26:8F:3E:10:C4:6A:DA:7F:DA:48:8B:72:37:51
Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Certificate serial: 019D382E8AEA785B3E6374D140B759470238
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
Manifest number: 09C0
Signing time: Sun 29 Mar 2026 06:01:07 +0000
Manifest this update: Sun 29 Mar 2026 06:01:07 +0000
Manifest next update: Mon 30 Mar 2026 06:01:07 +0000
Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: bMGrjfgwPbWExOZvS4/qTq5ruongspsihlWl0pW3HuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:8a:ea:78:5b:3e:63:74:d1:40:b7:59:47:02:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5
Validity
Not Before: Mar 29 06:01:07 2026 GMT
Not After : Mar 30 06:01:07 2026 GMT
Subject: CN=b34b058cb82b268f3e10c46ada7fda488b723751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:24:24:d3:15:b7:16:17:61:89:aa:3a:65:21:
23:e8:74:8a:0d:cc:14:b1:2b:92:f5:72:cb:b6:1a:
36:2d:c4:ef:b4:b7:92:b3:7d:a5:e5:db:a0:25:d0:
c8:18:79:63:87:c1:e0:09:86:2e:13:ac:f9:92:2c:
09:ae:1f:39:bf:87:e6:44:cf:a2:e9:85:09:25:95:
59:58:0f:0b:31:34:fd:95:43:42:ea:92:89:f3:9b:
b8:02:76:f3:de:51:3c:ad:71:04:7b:5d:b2:0a:24:
61:ab:5b:30:71:56:c7:b8:a8:61:fc:8b:cf:9c:eb:
86:e2:2b:d0:ba:46:9a:9c:14:66:c0:1a:a6:03:b9:
2b:3b:11:0f:10:de:ad:05:b9:62:18:78:e6:7b:02:
16:bc:4d:b4:ed:a9:7b:c3:51:07:2c:86:81:90:65:
4c:c6:d8:01:9e:d9:56:bb:e0:7f:81:dc:64:f8:7d:
0a:ab:07:0b:61:9f:6e:88:d0:a9:8a:44:be:aa:5f:
38:26:5a:bd:b5:bb:d1:7a:91:9f:2b:bd:a4:ea:5c:
6f:50:85:e9:43:29:6f:25:05:48:9c:ef:ad:65:22:
16:cd:b1:51:d1:38:b6:56:84:60:b5:a5:6e:7f:57:
4a:9d:86:9d:07:e1:14:f6:b5:61:b4:82:7e:85:9a:
bd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4B:05:8C:B8:2B:26:8F:3E:10:C4:6A:DA:7F:DA:48:8B:72:37:51
X509v3 Authority Key Identifier:
keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:a9:a3:11:4e:f1:86:f1:d5:31:46:65:4c:31:bf:97:01:54:
ff:25:36:f6:78:45:1d:d0:34:de:73:cd:65:20:a3:bf:89:24:
10:fc:b7:05:c3:28:a1:67:4f:e4:07:57:85:c0:26:2d:18:3b:
b0:e5:29:0a:43:14:a2:96:04:11:b2:a7:c4:0e:86:8f:6c:be:
be:6e:1e:c5:c4:46:27:e8:fb:76:99:84:08:1c:81:a3:3b:c7:
3c:ae:52:fb:ee:02:ff:78:0c:e9:04:c8:00:ad:d1:37:60:64:
64:77:0d:ed:80:a1:c9:64:b6:04:52:7b:f9:12:70:1f:6d:3a:
47:ab:ca:a1:8d:7c:65:57:26:c0:2b:be:44:21:1a:06:8c:b1:
11:b2:c8:34:43:0d:39:b7:60:12:b0:8c:eb:72:b5:53:6c:bc:
99:40:a8:8a:e1:6a:f9:bb:ac:77:cb:7c:8c:58:60:01:8a:36:
c3:84:fb:c7:93:72:78:36:d9:3c:21:75:66:ce:ee:f6:9e:ab:
11:30:89:5f:a7:d7:18:eb:3a:b2:e9:0c:17:6e:1d:44:4e:71:
cb:05:61:f4:4c:3e:83:5e:62:76:54:21:bd:58:1c:a5:9f:7b:
8d:12:f6:99:d4:b3:e7:49:29:11:63:60:1d:ab:0e:b0:98:26:
3a:0d:34:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:13 2026 by rpki-client