Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: zGLOtaeqMDcxqHHSwMCSUV+MhICb7qdkk83h9YCl1cU=
Subject key identifier: 43:FF:54:C8:0B:67:70:25:54:9D:16:47:3B:1B:60:77:A8:D3:20:10
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 55AD149A1674AD5C3E6EA514649541854AC5ACFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 0567
Signing time: Sun 29 Mar 2026 02:42:35 +0000
Manifest this update: Sun 29 Mar 2026 02:37:35 +0000
Manifest next update: Mon 30 Mar 2026 04:41:35 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: dTuT8al7S+uCtqss+4xEDkegFGasT0FK6AS2PVhyxNc=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:ad:14:9a:16:74:ad:5c:3e:6e:a5:14:64:95:41:85:4a:c5:ac:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Mar 29 02:37:35 2026 GMT
Not After : Mar 30 04:41:35 2026 GMT
Subject: CN=43FF54C80B677025549D16473B1B6077A8D32010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ee:85:7f:4a:93:66:e4:c3:a4:9f:1d:34:0d:
39:8c:45:b2:ff:15:6b:d5:52:cb:95:cd:a3:c3:4b:
2b:5d:7a:f0:3a:6e:98:e4:2e:aa:20:28:81:e6:fa:
b4:70:49:3b:dc:cc:5f:df:76:6d:31:f3:b8:5b:fc:
1a:36:84:ab:6d:5d:e3:b1:8a:a7:17:aa:4b:c1:89:
cd:95:67:aa:64:32:4d:ce:5b:b9:03:d1:35:96:21:
58:d1:46:f7:fe:34:6c:55:ff:0e:62:7a:fd:55:5e:
d3:74:03:e6:a3:2d:1e:b6:cd:48:e0:da:60:8e:c3:
77:7a:91:15:05:0a:a2:eb:3e:b2:43:18:8e:cf:c9:
77:ed:2c:93:cf:d7:c3:e9:c5:9a:be:74:c8:ca:d4:
cd:dd:b6:aa:08:a6:71:98:22:7a:0a:23:ba:15:f4:
e8:b1:4b:98:93:c2:45:a7:9e:26:2a:7a:c8:41:27:
e2:b6:86:92:7c:ae:ce:1d:a8:9c:42:31:f2:ae:d9:
79:27:6a:45:11:f1:95:e4:bc:9c:af:9f:fb:5a:ae:
12:e9:36:70:e0:ba:a8:cc:3f:a5:a6:bc:99:f0:d2:
59:2e:f9:96:74:21:7a:54:1e:28:b2:e1:d7:7e:34:
d9:47:f3:3b:bc:d9:c9:12:6e:32:aa:c0:05:a1:32:
ee:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FF:54:C8:0B:67:70:25:54:9D:16:47:3B:1B:60:77:A8:D3:20:10
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:03:f1:e9:8c:81:ca:85:aa:9d:bc:22:01:12:06:de:11:e6:
41:34:7d:8a:27:34:4a:44:9d:34:de:8e:d7:95:b6:97:31:fa:
a0:8d:03:34:a5:26:92:05:ec:3c:26:c4:27:09:ed:d0:d0:e6:
55:8f:52:d9:e8:98:eb:ac:22:d5:fe:1a:57:4f:f8:66:be:9e:
00:a3:d6:5c:d1:23:f5:77:d4:c4:c1:91:a8:b3:fc:f0:e1:e1:
21:d8:8e:8e:60:04:73:12:c2:a3:0e:89:59:62:a2:19:4d:e0:
9c:12:6f:d7:fc:90:fe:0f:f2:aa:9c:14:0f:3c:66:82:99:4f:
2b:7c:b0:41:b0:85:ba:fd:3f:a2:28:f8:6f:38:99:dc:a6:f2:
d7:7a:fa:c5:4f:f9:43:bb:35:ae:84:7a:db:2a:a2:2c:41:a0:
d9:0b:ef:6f:01:19:70:9c:8d:f0:1c:45:90:ed:2f:11:53:60:
da:d3:f0:3e:38:47:78:14:ab:d7:25:57:4d:94:cd:0a:48:82:
41:a6:4c:e6:67:d2:9d:51:31:14:fc:7e:1b:e1:95:cf:02:14:
43:cb:4d:79:c4:e1:5f:9a:10:a3:3f:8c:97:96:51:19:3b:30:
aa:c6:f2:08:ce:80:4b:2d:13:04:5a:4b:f8:6f:cc:e4:cb:46:
34:ef:7f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:55 2026 by rpki-client