Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: vEpMnQuMD5iHYq9SQTLLwFuoSAaV6Ao/3tErU7YqyaE=
Subject key identifier: 57:C2:3F:9A:B8:36:E4:24:6A:B8:EB:29:C0:52:32:30:CB:54:7A:AF
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 1405720CC903E3E760956BEB0DCC494D64B71F32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 038F
Signing time: Thu 03 Apr 2025 07:17:14 +0000
Manifest this update: Thu 03 Apr 2025 07:12:14 +0000
Manifest next update: Fri 04 Apr 2025 08:57:14 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: 6tXbM1TCWInR0D1Gchc0N72WahlzSWjWNIJ2YXZ9Cyc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:05:72:0c:c9:03:e3:e7:60:95:6b:eb:0d:cc:49:4d:64:b7:1f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Apr 3 07:12:14 2025 GMT
Not After : Apr 4 08:57:14 2025 GMT
Subject: CN=57C23F9AB836E4246AB8EB29C0523230CB547AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:af:c6:8d:1d:51:b8:26:af:b0:13:15:58:34:
a7:b9:8d:61:01:46:b5:ba:9a:e4:13:29:78:97:ad:
de:51:14:08:bb:8d:e4:53:34:46:c6:d7:f6:55:50:
28:22:dc:3f:50:85:69:1e:e5:4b:3d:c6:1b:d3:63:
e6:67:92:13:24:74:f2:3f:b6:53:e3:dc:d9:83:0c:
b4:05:86:e0:a0:8d:5b:69:8e:9e:a6:ca:b4:96:b1:
74:0f:af:65:38:02:81:c7:ee:cc:28:40:c3:65:9e:
3c:13:1e:c9:14:ed:0c:07:99:70:74:a5:a1:81:34:
14:5c:c2:88:79:ee:2a:c7:b2:df:93:53:71:07:c1:
9d:31:1b:82:ab:9a:68:79:7a:1a:72:70:a0:74:fa:
de:cc:2a:a6:72:6b:f7:69:9f:94:e4:32:92:5c:8a:
6a:a4:e0:c7:dd:e5:7a:29:73:97:4a:40:10:05:ac:
36:09:ac:db:95:3b:da:7f:0b:71:d5:48:86:a1:34:
90:40:87:db:55:d6:48:c7:4f:12:dc:2d:fc:43:f9:
cd:0c:94:fd:bc:93:81:0f:84:2d:62:80:d3:2f:c2:
95:9a:43:71:a6:33:68:c3:3c:54:39:5b:bb:d6:40:
a5:45:0f:c0:17:d9:8e:5c:c8:3d:05:5c:79:cf:b8:
cb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C2:3F:9A:B8:36:E4:24:6A:B8:EB:29:C0:52:32:30:CB:54:7A:AF
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6b:c0:43:b8:0f:58:ec:7f:84:ec:e6:d5:3b:70:5c:3e:aa:
6b:f1:50:c3:d0:df:47:4a:8d:97:f7:67:eb:b9:38:9e:07:2e:
05:16:24:61:88:bb:46:f1:3d:82:85:80:31:37:53:ce:0a:64:
67:04:f1:27:3c:37:1d:0f:46:a7:93:ee:0b:d6:19:f7:24:4b:
7e:33:07:fb:1c:d8:45:da:bf:05:91:0e:2a:66:ae:72:dc:91:
40:f7:d0:08:f4:b6:31:a3:a0:ce:62:e8:05:92:c1:08:43:37:
c5:1f:a4:f2:f9:a4:a5:ce:78:60:95:28:74:69:9a:bc:3b:c6:
5c:dd:32:32:78:8d:db:a5:4b:af:73:a5:5c:46:0f:9c:48:dc:
62:1a:08:c7:95:40:b5:8a:38:01:bf:e3:34:6b:f6:8f:5f:7e:
ab:4d:74:74:93:8c:2e:ab:cc:23:e5:64:ab:1b:4b:30:15:53:
ab:69:8c:a2:c8:37:c8:c2:8f:47:5a:c1:95:c1:21:4b:eb:f7:
f9:f0:ce:38:b8:c9:64:fe:f9:25:d9:52:4e:7f:2e:e0:3e:b7:
9d:15:9a:c2:df:1e:3a:47:46:a3:7e:5f:62:dc:8b:ee:8e:5c:
c8:3a:5e:8b:75:95:e3:b1:5b:40:3d:a9:3a:ff:54:20:81:dc:
d8:c0:c0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:01:59 2025 by rpki-client