Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: MGK6xiAf6HAyh1WPAfE2oXgpI6nDIONnzKwgcNKWLVs=
Subject key identifier: 18:21:D8:BF:E0:2C:3C:7C:61:6D:EA:E8:75:91:90:7B:EF:07:7E:60
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 30E06F1639C090CDC6A3FBFF293E3366379985A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 0485
Signing time: Sun 19 Oct 2025 07:48:15 +0000
Manifest this update: Sun 19 Oct 2025 07:43:15 +0000
Manifest next update: Mon 20 Oct 2025 09:32:15 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: Qfeh6XPMaWW8Sv+OzlERdHhB2C3TPGhA880HdMH/8oU=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:e0:6f:16:39:c0:90:cd:c6:a3:fb:ff:29:3e:33:66:37:99:85:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Oct 19 07:43:15 2025 GMT
Not After : Oct 20 09:32:15 2025 GMT
Subject: CN=1821D8BFE02C3C7C616DEAE87591907BEF077E60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7f:a0:61:36:47:62:10:52:09:f9:2d:cc:3a:
a9:6f:c1:c4:d5:62:9b:3f:9e:e5:b1:6a:2c:e0:91:
2d:d6:89:51:21:cf:8d:d8:22:28:fe:52:99:4a:d6:
7d:2c:b5:cb:d3:d1:ce:66:26:13:3c:7f:45:60:cb:
75:1a:e4:7d:e9:07:77:0a:30:8a:9b:87:09:31:d9:
67:ad:b3:9f:d5:eb:67:0d:4f:42:de:8c:ac:e6:1e:
70:e1:ed:16:47:cc:fe:bb:07:37:47:12:be:bc:d4:
41:e9:3b:e9:d3:a3:4f:9e:c6:f2:36:16:1d:67:81:
97:c3:b9:eb:8a:05:27:00:e6:e1:97:79:ff:47:b9:
03:a2:47:67:3e:4b:1b:3e:c6:df:3e:f9:98:a8:25:
1c:7c:a7:2b:7f:6b:fd:ba:2c:7d:fb:a3:b0:97:2a:
b8:74:ad:3e:86:19:f8:19:36:46:a1:d8:6a:74:be:
fb:17:50:66:61:dc:8b:d3:ec:04:68:b8:43:96:69:
8a:a6:a8:1e:4e:50:b9:7d:fc:90:74:2c:63:45:aa:
be:56:8b:b2:84:4e:62:84:36:88:b0:6e:ee:ca:6a:
c8:6b:92:9d:a5:1a:ff:87:cb:2a:61:90:4a:fd:b0:
08:47:fb:9a:a0:58:6d:86:b2:7b:65:66:3d:a4:21:
87:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:21:D8:BF:E0:2C:3C:7C:61:6D:EA:E8:75:91:90:7B:EF:07:7E:60
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e2:08:03:01:ab:02:f3:a0:cd:7b:cc:a2:0e:a0:4b:38:24:d3:
19:ef:cd:f3:9d:d2:1f:c3:e9:0f:bf:08:50:b2:17:3a:87:32:
e2:ce:aa:2d:85:52:ac:ad:58:fb:c9:32:3d:46:de:b0:c2:23:
db:f2:2b:96:94:1d:43:fb:c6:76:45:b8:35:fc:7a:09:b7:bc:
e1:58:25:fb:97:7c:96:2b:ac:68:21:05:11:10:f3:00:4a:32:
d5:6a:62:30:b7:59:cf:58:fe:6c:71:91:3d:e4:10:7a:88:b8:
b6:4e:d4:ea:77:fa:00:8a:06:67:4c:f5:32:eb:2e:83:e9:0d:
90:f5:59:c4:9f:f0:90:62:3d:c5:e5:a2:54:95:a4:5e:af:92:
7c:b6:f6:7d:f6:b8:05:0c:97:a3:03:3a:13:25:d6:aa:aa:bd:
7e:a2:44:46:0a:22:52:90:d7:d0:f4:ed:2f:78:df:53:3a:6c:
de:7a:13:01:4a:19:4f:5c:16:00:21:7f:43:66:ad:fa:02:a6:
1b:69:52:b6:36:15:b8:e2:3c:aa:a9:a8:2e:95:f6:b8:98:e5:
cd:b7:64:5b:eb:c7:87:00:0b:4e:46:d0:08:d1:65:5d:af:61:
39:33:87:f4:24:22:4e:be:f1:68:d8:59:85:1a:c3:6c:ee:49:
5d:63:2c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:27 2025 by rpki-client