Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: G7P23aqVLE+BrcRF+EAoOGFGOnC9jDjlMh6F1BI0zeM=
Subject key identifier: B6:BE:B2:B6:5D:50:E0:18:E9:C9:05:C0:CC:07:9A:93:50:B5:FD:79
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 3028763CB6584B4A98F9833D5BE81E1084880109
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 03F3
Signing time: Mon 30 Jun 2025 02:17:18 +0000
Manifest this update: Mon 30 Jun 2025 02:12:18 +0000
Manifest next update: Tue 01 Jul 2025 05:07:18 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: qrHOtDrvlOHVgBk8ti4duim3DjbSjy1RGyU2C+fHx0k=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:28:76:3c:b6:58:4b:4a:98:f9:83:3d:5b:e8:1e:10:84:88:01:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Jun 30 02:12:18 2025 GMT
Not After : Jul 1 05:07:18 2025 GMT
Subject: CN=B6BEB2B65D50E018E9C905C0CC079A9350B5FD79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:12:3a:64:f4:46:89:52:a2:5f:50:19:23:d5:
87:2f:30:18:47:4c:ec:88:81:3d:65:f5:91:cc:ab:
75:0c:07:fe:47:dd:6d:96:32:96:2f:0b:ae:ad:8c:
fb:9e:c0:cd:93:5f:af:1e:79:db:60:98:03:4e:92:
87:61:4a:3d:79:57:78:b1:40:b1:c0:2a:7b:6f:aa:
4b:38:1e:c4:66:54:03:00:fe:88:f6:49:d5:1d:00:
91:90:7f:85:4d:9a:a6:ce:0d:19:ee:4e:8f:47:de:
f8:fe:22:0b:ab:0d:bd:b0:80:67:2e:5f:d1:03:7c:
14:93:a7:b4:cd:03:90:56:a4:47:b9:be:a5:92:ab:
ea:de:fa:87:dc:0d:4a:2f:d9:86:37:7f:2d:d3:b8:
2b:43:73:1f:3f:d4:3e:b2:20:3e:8e:bb:93:83:8b:
d2:34:6c:f1:59:34:0c:d9:9e:99:05:cf:c9:7e:37:
02:70:cc:61:e0:09:f1:4f:bb:6e:73:9a:80:8e:a1:
50:7b:b1:56:c9:d2:72:b5:4d:5b:db:fa:94:c7:28:
53:a8:63:75:1b:fa:ac:54:3d:b8:b3:d5:1c:f3:5c:
33:a5:46:17:13:ba:65:07:6b:91:5f:29:51:d3:74:
56:09:39:65:72:b8:91:d0:9f:f0:0f:d6:e6:d7:49:
e8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BE:B2:B6:5D:50:E0:18:E9:C9:05:C0:CC:07:9A:93:50:B5:FD:79
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:54:4b:d1:f4:fc:6a:3c:57:48:b3:fe:a6:1e:66:b7:9f:8d:
ed:c4:81:7d:4c:65:11:f8:e9:d9:bd:88:bd:59:f4:1f:ae:28:
e8:47:a8:8c:79:78:dd:45:2d:0a:0a:af:c7:bc:a0:1c:62:69:
08:6a:11:a8:93:1f:e0:bb:9c:c4:c6:fb:fb:10:fe:53:7f:8d:
74:3d:23:98:e8:1d:79:c5:1f:8c:66:5b:4c:65:9b:49:11:1f:
02:bd:f7:da:df:d8:30:5d:7d:b0:37:31:82:fe:63:a4:8a:5a:
5c:c0:9a:f5:5d:14:54:e4:fd:1b:16:ba:16:d8:01:c1:49:9a:
f3:63:cc:af:23:0b:6a:5e:32:57:01:4d:cf:02:e6:8f:c3:2f:
ba:73:76:df:12:98:34:fc:c1:a3:ec:36:39:b4:3e:04:ef:66:
b6:33:5f:00:54:0c:51:bb:e4:54:35:88:76:a0:19:0b:cc:74:
34:ad:a6:9a:dd:53:85:7b:c2:7b:94:74:c6:ed:bd:75:09:a5:
8b:fd:ed:9c:29:4d:2c:2a:8e:e8:16:5a:ab:fc:d8:a0:d7:42:
5c:f8:77:c6:5b:89:f3:37:9c:7e:99:62:19:3b:ea:db:58:8d:
d4:ce:d6:77:0f:a8:04:23:d3:1c:23:8a:d8:03:32:0b:ab:60:
37:3e:20:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:20:46 2025 by rpki-client