Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: Q6EtiFsXSq028ESxy4q7fWmLn1kUY4hsVPqJoSo4l24=
Subject key identifier: 6E:AA:57:78:35:06:A6:D9:E0:F0:1E:69:04:D5:B3:DE:0F:3F:F6:89
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 73551E37BAA17E8B6E83A1E95FBBACA1DAD8C105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 03D4
Signing time: Fri 06 Jun 2025 15:04:30 +0000
Manifest this update: Fri 06 Jun 2025 14:59:30 +0000
Manifest next update: Sat 07 Jun 2025 19:03:30 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: LZ2ZqetLX/prKJpg72eXlVlkgLfj3OJB61rH+YeMRN4=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:55:1e:37:ba:a1:7e:8b:6e:83:a1:e9:5f:bb:ac:a1:da:d8:c1:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Jun 6 14:59:30 2025 GMT
Not After : Jun 7 19:03:30 2025 GMT
Subject: CN=6EAA57783506A6D9E0F01E6904D5B3DE0F3FF689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:9f:bb:df:d0:98:0b:2b:a5:a4:e1:c7:49:
6d:2f:43:fe:c1:f2:f6:fa:02:81:d3:a0:e1:a4:82:
f1:71:05:c1:6f:4f:88:b7:4e:e4:02:c3:d9:17:d1:
ce:ae:92:94:cf:e4:0f:16:f4:e3:f5:ad:71:3d:f2:
f8:89:93:74:24:57:8a:6e:5d:f4:d3:aa:1c:f9:52:
0e:23:1b:9f:31:ca:c9:7e:da:cf:2b:b3:f3:73:a8:
1c:52:64:e1:9f:92:f7:eb:ab:38:fc:22:b9:dc:ed:
f0:b7:28:03:5b:1d:ad:d5:b5:9d:7d:b6:74:97:d4:
3e:4c:50:63:66:ca:f4:05:ff:5b:cd:d4:e9:e0:25:
1f:8f:39:66:06:dd:da:1b:d6:d7:ab:c0:06:a0:1c:
91:f7:72:0a:a5:d3:b4:03:b3:03:41:af:e2:76:40:
46:73:03:a1:ad:39:2e:13:74:5a:08:c7:cb:82:a2:
ea:76:52:02:99:7b:1d:01:7e:2a:4f:3f:66:b0:f7:
52:92:11:f8:ad:86:3e:a9:fa:2b:59:ed:ab:f7:b2:
91:38:ad:e8:52:b1:de:18:9e:56:7e:b4:cb:84:0c:
26:ed:12:01:80:03:3a:1f:38:94:07:d2:f8:5c:70:
76:09:f0:80:e3:5f:ac:b2:1d:11:02:a1:4b:38:82:
8b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AA:57:78:35:06:A6:D9:E0:F0:1E:69:04:D5:B3:DE:0F:3F:F6:89
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:6a:13:1d:df:93:77:41:db:6c:d1:68:d7:b8:ae:77:19:81:
88:72:c4:ec:2e:52:a2:05:43:c5:c5:04:43:df:af:a6:55:4c:
de:ef:41:bc:52:3d:0e:01:2b:a0:c7:e6:79:5f:f4:75:cc:d8:
54:80:04:2f:94:93:2f:5d:a2:ca:96:6c:d4:1e:6d:de:2e:45:
38:0d:6a:7f:50:30:dc:81:1a:00:85:f6:43:14:2d:3b:ca:35:
8d:92:af:7a:e7:cf:87:96:0f:1b:ca:39:12:78:bd:98:75:8c:
7f:48:e8:05:2c:a3:9e:d7:81:f2:f3:8c:34:b0:bf:77:aa:90:
55:16:36:e6:bd:49:97:d9:e7:8e:9a:b8:6b:d4:08:7a:1b:ec:
cf:06:05:8d:ec:d6:c6:18:43:61:68:7f:a1:33:23:79:45:40:
a6:41:2d:bf:d9:88:c2:e7:b3:ae:2e:5c:2b:f9:a5:78:af:3e:
23:94:fa:63:9c:85:d4:30:0a:c5:e1:e1:f0:03:47:28:c3:93:
09:90:be:a5:e0:94:45:3f:ac:a3:0e:d0:57:d4:51:18:c3:cc:
72:84:ee:a0:b7:fc:ef:d7:c1:12:c2:45:d9:b3:a5:0e:8b:cd:
7f:fd:5c:b0:e0:8e:cd:43:63:c6:c6:d0:3d:0c:8b:89:2d:78:
ca:ea:80:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:17:47 2025 by rpki-client