Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: C9do8wC0z6fC5zUi2m5GDKLvXPn6oGhjYQ9Mxda7o6o=
Subject key identifier: 45:6E:05:41:27:6C:08:F5:1A:04:88:9F:88:58:17:F4:AE:09:95:52
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 43F550D4147983C6C6A616C803FD5ECBA0F0D443
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 03B2
Signing time: Sun 11 May 2025 01:26:31 +0000
Manifest this update: Sun 11 May 2025 01:21:31 +0000
Manifest next update: Mon 12 May 2025 01:45:31 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: 25WCb8bAl6yXN0q83b7FdE2uNSL7xwJqTSD/xPK0Ig0=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:f5:50:d4:14:79:83:c6:c6:a6:16:c8:03:fd:5e:cb:a0:f0:d4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: May 11 01:21:31 2025 GMT
Not After : May 12 01:45:31 2025 GMT
Subject: CN=456E0541276C08F51A04889F885817F4AE099552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1c:ca:4d:a4:97:56:6e:eb:ca:ac:fc:50:f8:
d5:d4:e5:ed:bc:27:17:05:c2:95:33:28:35:a4:3f:
54:5f:2f:33:a7:3f:8d:4c:b3:3d:93:41:e8:ca:f1:
a2:85:b1:19:4f:78:6a:99:e8:2a:a9:b3:a8:bc:62:
90:28:70:5e:b4:2d:a4:27:4b:42:ad:9f:b5:70:f8:
a4:70:e0:d1:6f:14:fc:1e:c1:21:a0:53:42:7f:75:
e7:1d:19:af:3b:c2:4e:ae:68:a3:93:d6:ea:61:39:
ff:f1:db:d5:a6:e1:ac:95:0c:a2:90:78:64:7d:f0:
1a:77:dd:c5:de:35:01:86:57:cd:bc:9d:1c:3f:21:
0a:be:7c:1d:9a:f3:f6:20:d6:31:3b:44:f8:1b:1c:
fd:4e:bc:43:22:40:c0:26:bd:74:f2:7c:f3:57:16:
4d:48:1d:5b:bf:f5:f1:00:3a:59:32:67:94:0e:2d:
b6:b2:27:7c:93:7a:a4:d8:4a:aa:3a:29:70:4a:e2:
58:96:ea:8a:78:53:3e:bb:ac:59:5a:00:b8:66:fc:
95:23:09:6c:fd:05:42:d2:a5:40:2e:1c:7b:73:ee:
b8:4d:a0:54:d5:86:86:9f:c4:6b:d0:0d:06:ec:21:
a6:e1:ac:e5:0b:c1:42:09:96:d1:20:ca:84:6c:32:
f0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6E:05:41:27:6C:08:F5:1A:04:88:9F:88:58:17:F4:AE:09:95:52
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:5e:1b:1c:fa:66:0e:38:83:45:74:00:32:c0:25:0e:99:1c:
b3:e1:aa:e2:3b:f8:ea:c2:0b:dc:9d:a8:17:f3:56:d1:66:af:
17:a5:ae:29:36:52:d9:6c:ee:f3:80:7e:3a:df:7a:f7:1e:a3:
e6:e8:99:4a:36:b2:ee:fa:cb:0b:f4:8c:bd:ee:21:00:0c:ce:
75:b1:6f:8c:4d:ba:cc:8b:03:2d:72:44:73:f8:cc:59:22:bb:
d2:4e:e0:27:b8:76:bc:57:5f:e6:df:70:9c:e4:59:7a:2b:87:
42:31:74:cc:77:a3:a9:87:21:dd:fb:78:af:8a:df:8c:f2:38:
c3:55:1b:22:fc:e7:e1:ca:b9:87:39:c7:ad:bc:0b:bd:5a:94:
67:4d:e1:b9:5a:dd:f8:75:32:f4:42:54:5c:1a:f7:30:26:72:
ef:0b:c5:85:a8:c2:78:d2:1e:2c:09:ef:e0:80:d9:70:6d:a9:
0a:f4:71:19:58:a8:20:49:42:7e:bb:79:4d:09:a4:1a:08:e9:
14:5f:e0:36:99:b5:1a:18:ce:82:4e:f2:46:f6:56:60:2a:a1:
0a:8e:db:c0:db:a8:81:c4:2d:96:75:5d:47:70:f0:ee:c2:b3:
6e:8e:20:b3:df:09:d0:1d:bf:bb:7c:69:96:36:41:b5:9f:53:
22:f2:e5:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 04:39:56 2025 by rpki-client