Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: EMmXPHAY5s/Vu4Hhz562NNPWAws4DMnh1Bm0xWRVJ9U=
Subject key identifier: 2D:E6:8D:F3:51:32:17:A5:D5:F0:58:0C:DC:4F:D3:E7:1A:76:EE:8B
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 7A61496E1D349B274468A2203B4CADD047A75021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 0580
Signing time: Fri 17 Apr 2026 02:34:02 +0000
Manifest this update: Fri 17 Apr 2026 02:29:02 +0000
Manifest next update: Sat 18 Apr 2026 05:28:02 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: ZzN1jfZYR8HDOVpATO0JkFVEn4ngSY6pxsqYpHpZTdk=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:28:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:61:49:6e:1d:34:9b:27:44:68:a2:20:3b:4c:ad:d0:47:a7:50:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Apr 17 02:29:02 2026 GMT
Not After : Apr 18 05:28:02 2026 GMT
Subject: CN=2DE68DF3513217A5D5F0580CDC4FD3E71A76EE8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:62:5f:11:dd:0b:9e:0d:7a:90:bd:56:71:3e:
34:04:ea:4e:66:36:7e:77:b5:0f:96:68:d1:9a:4c:
1e:21:57:31:c9:c5:ed:85:c0:4a:4e:44:35:bb:e8:
77:c1:02:4c:0e:c9:31:0c:92:aa:1a:6e:51:e7:eb:
29:86:8e:af:27:4e:95:8a:10:b7:79:9c:df:e2:60:
91:7f:ac:ef:7d:ce:d7:8e:66:37:18:35:d1:e5:ea:
21:4d:15:01:f6:49:e7:46:c9:c4:29:66:be:15:94:
3c:bb:3b:a4:6f:16:0d:f8:17:35:91:fd:e6:6f:df:
ed:84:9c:41:1e:3f:01:b0:c5:08:83:d4:b2:0e:c0:
a6:c2:53:9d:00:d5:63:e8:2c:94:7f:50:80:cf:ab:
7a:7d:04:9e:aa:e1:86:d9:35:05:d9:1c:05:a6:da:
89:d0:42:42:e2:33:60:43:79:9d:77:56:ee:99:23:
33:d0:a5:f6:ee:8d:5c:fd:bc:a4:ac:48:f1:61:f2:
2c:61:ab:3a:91:b3:44:a0:e4:11:6c:e5:3a:67:de:
29:f3:92:52:ac:03:47:2c:2a:2c:be:54:14:b8:d8:
0f:cf:83:d4:91:6d:46:3e:03:d6:dd:0a:20:08:65:
a1:8c:ae:fc:03:f2:e3:2d:8e:b7:7c:fc:dd:c6:f1:
bb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E6:8D:F3:51:32:17:A5:D5:F0:58:0C:DC:4F:D3:E7:1A:76:EE:8B
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:6b:4f:23:c6:6f:c4:88:33:6a:07:99:42:6b:7f:85:b9:ef:
30:74:5d:a2:2d:25:42:73:d9:8b:32:09:1e:9a:d4:a2:a9:49:
c2:9b:ac:c0:5f:8c:cb:ed:15:62:cf:b8:74:96:39:7b:80:37:
aa:8e:06:e8:a7:60:ff:8b:10:c1:6a:24:78:e6:7b:8a:60:0e:
a0:98:26:0e:05:66:db:c6:d0:bb:a9:e0:81:26:c4:1c:95:ac:
45:c4:6e:cb:66:40:13:5f:eb:fa:b2:1f:cc:59:da:bd:72:d5:
8c:fc:38:6c:42:37:01:0e:f2:93:f8:2e:bc:83:60:2f:99:76:
b0:c8:d5:89:9c:77:1f:6c:47:cb:52:4d:d9:24:26:de:81:31:
d2:61:11:17:ba:8d:b4:a5:8d:20:2d:8c:db:01:9b:83:b2:98:
aa:25:22:d2:4b:8c:f6:9f:b2:e0:c6:37:6b:d4:ee:44:fb:a1:
3d:0e:7d:a1:a7:40:d2:94:6a:0e:15:f6:70:ca:2c:77:31:04:
1b:00:83:88:6b:2d:9e:92:b9:7f:56:f1:08:20:a8:c1:23:3c:
8b:f8:e0:65:e3:5a:df:81:70:a4:1a:79:49:c1:1e:b4:13:c1:
cb:0a:a2:d3:94:ee:11:cf:6d:3f:55:40:03:43:86:69:32:a6:
6c:6b:fc:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:45:48 2026 by rpki-client