Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: W61FlNaZV7tOcp8PIkmT8AD5v0N67SJLJOQl6fnqJZQ=
Subject key identifier: 57:D7:14:88:55:90:28:2D:5A:00:04:37:4B:9B:35:D8:59:AE:8F:C9
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 489787A7D70ED7800334CF2D31EAA0DC4F5BEDC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 0563
Signing time: Thu 26 Mar 2026 05:33:39 +0000
Manifest this update: Thu 26 Mar 2026 05:28:39 +0000
Manifest next update: Fri 27 Mar 2026 08:40:39 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: PPLx/os4eYzjE6LvdgyvvFWflYswhdD5mKd32M3jljI=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:97:87:a7:d7:0e:d7:80:03:34:cf:2d:31:ea:a0:dc:4f:5b:ed:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Mar 26 05:28:39 2026 GMT
Not After : Mar 27 08:40:39 2026 GMT
Subject: CN=57D714885590282D5A0004374B9B35D859AE8FC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:87:50:6c:83:aa:6c:69:a7:66:e8:4c:97:3a:
be:11:72:23:27:83:28:1a:f9:a1:e6:11:6f:a2:47:
39:11:87:54:a7:0c:a5:19:ed:5c:a0:05:e7:7c:a1:
7f:d9:db:41:c9:bf:b5:08:70:f7:58:c4:33:fa:fe:
6c:2a:22:81:0d:27:04:65:41:b5:dc:9b:fa:3e:0b:
ff:72:b4:01:20:f1:24:1e:b5:fa:9b:f2:f0:c0:a3:
ee:a3:22:90:76:a4:f6:a0:5a:c8:fc:93:9e:b2:71:
ff:3e:be:d8:5a:45:0e:b7:1b:9e:91:d4:ab:9f:c0:
2f:f5:b6:82:e9:dd:78:64:64:8a:0f:e5:9f:0a:8e:
e2:8c:b0:e0:f4:f0:32:8c:e1:85:8f:22:70:7a:ea:
07:49:84:ff:9a:8e:b3:5a:54:bb:6f:69:85:11:55:
7f:b1:3d:79:a4:ed:83:66:68:8e:d3:d3:b1:4e:46:
9f:a7:99:4b:40:c5:43:8e:80:0d:ac:6a:77:a8:b2:
eb:6f:98:c0:ee:da:75:53:b9:d1:db:32:bb:31:b1:
2d:b9:bf:23:d0:1d:48:ba:a9:4a:4a:02:f9:fa:a5:
4e:e7:32:75:75:06:c7:ac:ba:d0:b5:30:15:ad:3b:
ff:2d:15:b0:c5:44:e7:10:b6:a8:58:f2:42:b8:0a:
d2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D7:14:88:55:90:28:2D:5A:00:04:37:4B:9B:35:D8:59:AE:8F:C9
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:e7:56:38:25:a1:77:73:04:10:10:25:4f:91:e5:4c:1f:3e:
d1:b1:28:a5:36:03:a2:d3:4a:bd:d5:49:e1:7b:ea:d1:7d:0b:
57:74:45:70:46:c7:06:bc:19:41:e2:c8:e5:1f:48:0f:e8:82:
0d:ac:27:25:e6:9d:bd:e2:d4:7a:09:3f:82:97:63:72:3e:c8:
73:9c:e5:b8:b8:1e:c4:43:7a:c1:8f:97:8f:46:13:e9:83:56:
38:98:9a:c5:db:42:c4:ad:2e:48:1f:4f:84:9b:a1:d5:c0:6f:
2c:20:8d:e3:d5:66:22:59:be:d9:f0:ae:e3:a2:6b:1c:b5:19:
c3:69:04:46:5c:72:49:b4:19:07:1d:11:2a:9b:68:82:73:7d:
e8:b1:c3:01:dc:b3:b6:23:12:62:cc:d6:04:be:cb:87:71:f5:
61:f2:85:e8:90:1b:a5:72:ce:53:85:8b:5c:6a:08:f9:49:a7:
b2:53:f2:5a:0c:b8:53:a8:dd:ba:62:8c:4a:b9:8a:ee:c6:96:
1b:46:21:35:f1:e8:a0:9a:91:be:20:f7:4c:ed:07:5d:25:0f:
8f:6c:4d:8f:2a:fd:35:fb:16:55:fd:ad:94:df:eb:98:aa:2c:
32:b1:b7:10:56:25:f9:83:ea:86:e7:7a:13:5a:69:23:ae:6f:
d1:93:15:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:10:46 2026 by rpki-client