Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: GCy9/vAjehaUkVJy9Lk0hY++5rHwGdrkHsnJN1QcPCQ=
Subject key identifier: 95:7A:C2:D4:E7:B0:6A:CE:3C:E4:9F:BC:D9:0B:6D:CE:BB:1C:3E:5B
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 0D9C3B494125607D1CFAA237A0810CF4513607FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 049C
Signing time: Tue 04 Nov 2025 05:37:34 +0000
Manifest this update: Tue 04 Nov 2025 05:32:34 +0000
Manifest next update: Wed 05 Nov 2025 09:19:34 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: ov/EPW/gGS28ZkCsjNoziknhkkEdmHzu9HocCfNQW24=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:9c:3b:49:41:25:60:7d:1c:fa:a2:37:a0:81:0c:f4:51:36:07:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Nov 4 05:32:34 2025 GMT
Not After : Nov 5 09:19:34 2025 GMT
Subject: CN=957AC2D4E7B06ACE3CE49FBCD90B6DCEBB1C3E5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:be:0e:c1:5b:31:9b:ac:ef:75:02:24:ee:d4:
60:25:b0:00:53:1d:50:df:bf:ca:ac:91:ec:33:1b:
b0:fd:26:43:4e:6c:c1:06:79:6c:20:39:fc:82:9d:
d5:ac:97:3f:1f:76:fc:e4:fe:cb:b3:1d:b9:29:07:
26:7d:60:85:29:f7:46:76:c0:d0:50:dd:a9:11:0b:
5c:b1:da:aa:19:61:1b:6e:12:47:b0:8d:92:f7:8a:
ad:db:64:e0:8d:b7:46:48:f7:7f:b4:f0:e1:1c:3c:
56:1b:94:1a:81:91:b2:36:8b:5e:38:59:59:c2:e4:
b3:7d:02:a5:e8:3e:97:c0:cd:6f:b4:5b:ff:4f:5e:
3d:49:da:db:df:cd:37:06:4d:ee:14:4b:35:94:3d:
0d:6a:95:b9:6f:81:7b:f1:37:ce:fa:4f:06:55:4e:
fb:8a:f2:23:e7:94:5a:2a:ff:03:12:b8:c7:4e:37:
a4:c7:39:07:7f:61:58:23:a7:ce:02:9b:59:80:dd:
11:9d:d0:c8:7d:6c:dd:f9:b5:38:c0:b1:60:14:e3:
25:39:25:1d:d1:2b:e1:08:dc:23:be:2c:f6:bb:55:
23:fb:30:94:92:66:39:65:e2:68:f1:f0:6e:2e:6d:
00:03:57:25:69:01:bc:59:60:71:ce:57:95:32:c6:
09:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7A:C2:D4:E7:B0:6A:CE:3C:E4:9F:BC:D9:0B:6D:CE:BB:1C:3E:5B
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:09:2b:71:c1:29:91:16:37:25:59:b4:b4:36:03:ff:c5:d1:
94:2d:d9:36:4c:70:66:8d:5b:b5:59:0b:de:99:56:1f:19:1a:
55:32:f9:1c:c6:63:bf:9a:70:6c:4c:8e:e6:bd:1e:a3:a5:f8:
89:dd:cf:ba:96:b2:0e:f0:82:00:fc:ff:24:d5:65:0a:71:d0:
d1:ed:62:8b:55:f1:4d:3d:cf:82:22:ac:fc:02:0a:19:26:84:
c9:c2:f2:7f:a1:84:a7:e3:87:be:77:a4:c3:50:15:ce:c3:c6:
00:00:88:bb:b9:e9:86:35:c1:85:49:7c:5f:2d:1b:a1:38:bb:
50:46:0c:59:58:38:16:ac:f9:c0:ee:30:71:e5:dd:23:d4:4a:
55:e3:86:d3:b3:3f:9f:d9:b8:63:19:56:28:3e:f3:a3:4f:43:
63:93:96:03:ff:e3:1f:e6:41:a7:11:50:8b:ca:e4:e2:75:d7:
5a:1a:51:4f:a5:97:00:06:5d:48:44:6d:95:8c:c5:40:4a:fd:
26:c6:8a:8e:d3:52:f4:d3:6c:0e:ac:70:dc:2f:eb:9d:3b:86:
e5:7d:98:f9:e3:5a:4f:36:cc:32:bc:78:e5:d6:64:db:ec:96:
f9:d2:e9:39:3f:eb:5d:f1:9c:de:36:e8:16:75:03:1b:f1:53:
e3:4b:78:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:41 2025 by rpki-client