Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: hU69WGxD/6j7y6g1H4f43cSnf8dFE1d4z3J44Pc5ZVw=
Subject key identifier: 8B:54:7F:2F:66:53:A1:CE:8E:CE:A1:59:46:75:1F:03:2D:6C:84:E7
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 60179A913A35C6F422B4DBB62E5BE47019FCB6DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 0437
Signing time: Fri 22 Aug 2025 22:11:05 +0000
Manifest this update: Fri 22 Aug 2025 22:06:05 +0000
Manifest next update: Sun 24 Aug 2025 00:58:05 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: x3fQEYlkoCT4G62aYQ90lC7zJp38gaWeDaMtCysaIxg=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:58:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:17:9a:91:3a:35:c6:f4:22:b4:db:b6:2e:5b:e4:70:19:fc:b6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Aug 22 22:06:05 2025 GMT
Not After : Aug 24 00:58:05 2025 GMT
Subject: CN=8B547F2F6653A1CE8ECEA15946751F032D6C84E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:09:29:79:77:33:9b:4b:8a:a3:20:7e:af:
4e:29:37:d9:57:f5:03:f1:55:a0:d6:72:42:bc:c3:
c6:8c:c9:b2:da:3a:6c:33:65:43:24:be:79:b3:dc:
8b:35:bf:49:bb:5b:c1:92:62:07:11:3e:45:4a:e8:
39:01:72:d4:28:b8:f0:47:66:6c:76:b2:36:ef:aa:
13:a6:d5:9c:f6:63:56:82:f6:17:62:ab:a7:5a:7a:
b7:b2:ff:4f:09:cd:60:bf:90:4f:3c:80:52:65:a9:
e4:d6:fd:53:30:de:7a:3d:c7:a8:0e:92:4e:b2:bd:
b0:2a:31:30:ac:0b:d9:09:6a:dc:5b:f1:0b:69:2c:
20:e9:2c:22:e8:5b:32:3c:4a:01:d3:fc:d7:6a:15:
e0:13:c8:8d:78:81:aa:72:a6:cb:9e:eb:68:fd:90:
9e:27:04:c8:87:c8:e1:ab:c6:90:db:3c:1b:3c:66:
4f:9f:72:5a:5b:52:1d:83:0d:23:8d:89:39:26:56:
3c:ad:07:3e:8e:69:d3:eb:bc:dc:d1:bc:82:87:01:
ae:0f:e5:49:04:4c:f2:e8:b1:1e:a9:cd:4e:05:29:
29:8c:af:0f:08:de:dd:22:18:1e:3f:16:88:bc:9e:
fd:29:30:ae:95:a1:88:2a:16:15:9d:b6:4d:74:55:
18:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:54:7F:2F:66:53:A1:CE:8E:CE:A1:59:46:75:1F:03:2D:6C:84:E7
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:4d:05:af:d8:08:f9:7b:69:f4:bf:e0:95:59:68:20:fc:38:
be:bb:c1:35:38:11:a7:7b:90:4a:89:91:18:26:e1:ef:80:1e:
e9:f8:48:77:b7:aa:db:35:36:91:82:47:f6:c1:05:fb:4f:3b:
6e:23:b9:40:4a:f7:98:98:5c:f6:ed:f2:d4:56:cb:2c:e7:b2:
15:4b:5e:dc:d6:f4:0b:37:fb:dc:4c:bb:eb:d4:26:e3:c9:76:
a7:20:f8:4b:1c:a2:1b:1e:b7:c9:75:ad:9b:54:d8:f1:3b:36:
7a:03:f4:91:9d:ad:b3:e7:3c:26:c2:60:42:89:e4:45:93:88:
62:8f:89:62:82:6a:0c:fc:bb:5b:63:24:7f:c9:85:ae:8f:71:
92:ce:9c:84:2e:94:52:7e:51:a6:de:bd:a9:f2:b6:58:6b:77:
6e:94:58:bd:a7:97:5b:92:8f:3f:46:b5:ce:7c:f6:71:71:69:
96:f1:91:23:76:d1:71:26:f8:9e:48:66:aa:99:e5:a9:c3:c8:
15:7a:0b:62:cf:ce:a6:24:24:78:18:9b:1b:dd:7a:4a:a2:8c:
d5:01:75:93:61:50:4a:b0:bc:cc:a7:cf:8a:24:00:9a:60:23:
af:10:a0:5c:86:7a:94:f8:f6:2e:f6:e4:85:32:6b:e2:05:cd:
a2:aa:6c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:47 2025 by rpki-client