Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: lqnqwAbXbr4XpVnlCDS+d8PhdV123AceLpjcDfj1BMM=
Subject key identifier: 08:5C:ED:D4:CE:1C:ED:8F:E1:28:69:3B:73:7A:97:8A:A5:9E:9F:40
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 4B8467529A19D67467A90DDAEC5E13EF4F318FC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 040A
Signing time: Tue 22 Jul 2025 03:42:21 +0000
Manifest this update: Tue 22 Jul 2025 03:37:21 +0000
Manifest next update: Wed 23 Jul 2025 05:40:21 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: iuyGA54D/2gJzu96DV0BIedzUhyeNgelrtGjlLL8A+k=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 05:40:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:84:67:52:9a:19:d6:74:67:a9:0d:da:ec:5e:13:ef:4f:31:8f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Jul 22 03:37:21 2025 GMT
Not After : Jul 23 05:40:21 2025 GMT
Subject: CN=085CEDD4CE1CED8FE128693B737A978AA59E9F40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8c:3c:85:fb:e3:78:6b:27:0a:ac:73:33:f2:
9e:21:de:d0:9a:ee:e7:3b:f8:7f:79:1b:53:df:85:
c6:78:be:40:cb:0b:70:d6:d4:78:50:c0:e5:f8:81:
32:d5:e4:9e:10:b8:7f:35:0b:fd:d8:79:a1:a5:3f:
53:49:6b:26:5d:b7:8c:9b:f2:96:5e:f6:8f:97:85:
0d:e5:1c:62:9e:40:83:fd:30:bb:c4:89:3b:53:8f:
c6:44:96:5c:42:ed:43:5f:fc:9d:92:18:9b:4c:09:
63:02:e0:0c:31:18:dc:1a:1d:0c:39:a2:f5:21:51:
18:97:39:ac:00:e5:94:25:23:61:e4:3a:16:fb:0d:
20:f7:63:61:af:6c:d9:40:be:2f:fd:a9:ae:13:cc:
e9:89:66:3a:08:9e:6a:7b:cc:67:c0:c5:0a:85:6a:
c7:5e:15:ff:18:83:74:0e:e6:c3:9e:e0:93:b2:bb:
db:9c:7c:b2:b6:82:52:2e:89:cc:95:de:8c:28:8b:
d7:b2:eb:55:97:39:53:3b:ba:af:48:a4:aa:e2:6c:
f4:20:87:d7:03:5d:42:30:2b:8a:3a:82:26:08:c5:
fd:b6:97:ae:27:62:cd:52:9a:fe:70:8e:bc:0c:fb:
92:43:ed:60:bd:e9:d4:fa:f2:d6:90:5c:10:32:61:
ca:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5C:ED:D4:CE:1C:ED:8F:E1:28:69:3B:73:7A:97:8A:A5:9E:9F:40
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:59:16:24:98:53:59:a0:3c:f7:0a:31:8b:cd:15:e9:80:d5:
ee:9a:c0:87:2d:a2:c3:e6:c3:88:8d:d4:14:03:a3:86:27:be:
02:4a:ea:47:3b:d6:5f:bb:97:00:af:82:ef:7f:57:1a:4a:bb:
01:94:99:a4:aa:53:3c:fe:26:2c:62:a0:72:ae:73:2e:6f:3d:
8e:2b:c0:61:14:e8:9b:7a:39:e6:72:d5:11:ba:28:2a:c2:9d:
56:8c:e8:9f:6e:39:45:bd:51:18:f0:f2:92:2b:80:50:08:08:
b3:eb:c4:5f:cc:6b:6b:76:f6:8c:f1:26:54:52:af:b1:8b:35:
cf:d9:dd:da:49:f1:55:34:20:13:a4:96:e9:32:54:26:71:db:
e8:83:ae:c7:ac:dd:0a:be:32:30:8e:54:ac:5d:61:10:07:c2:
47:ad:dc:2c:de:8a:13:01:9f:a4:62:a8:5b:63:6c:d4:0c:fd:
2a:1b:e3:93:00:4d:32:f6:e5:48:1a:b8:42:11:88:4b:77:3d:
bb:45:8a:06:75:15:e8:db:e7:6b:e5:f3:98:a4:3c:fa:b4:b6:
1f:5d:cc:1d:5e:e0:85:de:f4:0e:9f:a4:5c:e3:98:06:65:2d:
5b:a6:36:00:ae:82:30:3f:06:db:0f:a5:ea:c0:10:46:bd:32:
5e:01:1a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 21:05:10 2025 by rpki-client