Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: vkwFhR1B5faqPBuWYA10E1Wa5J4Zft4SngI7u5iJhsc=
Subject key identifier: 71:28:5C:1F:06:A1:65:40:E4:C1:67:A7:E9:58:AC:9D:9B:C0:17:30
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 58F43B9BCD70E48C3929561C3F0AB608DEB10AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 03A0
Signing time: Sun 27 Apr 2025 19:15:22 +0000
Manifest this update: Sun 27 Apr 2025 19:10:22 +0000
Manifest next update: Mon 28 Apr 2025 21:58:22 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: hyLfg/NgGjdZfn9XrZJ+xHnpQiuTiXFEk1DRjjkN8p8=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f4:3b:9b:cd:70:e4:8c:39:29:56:1c:3f:0a:b6:08:de:b1:0a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Apr 27 19:10:22 2025 GMT
Not After : Apr 28 21:58:22 2025 GMT
Subject: CN=71285C1F06A16540E4C167A7E958AC9D9BC01730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1b:ed:71:83:78:43:16:da:2d:f4:b4:b5:05:
7a:a0:db:a2:12:81:86:d1:37:db:ef:78:b7:fb:73:
bd:40:0b:bf:63:3a:ed:22:68:34:ca:1e:e1:1b:0a:
27:86:b9:b7:f5:91:65:5d:9b:32:8e:29:5b:72:22:
1e:63:df:85:46:26:b3:d4:91:12:38:59:e9:28:91:
d8:ae:c2:ce:8b:8c:2e:b3:28:e5:ac:d2:13:a8:52:
37:16:a6:69:e1:ec:40:5c:81:68:67:6c:47:a6:5d:
77:cd:62:d1:0e:41:b7:a9:52:c2:2b:5d:de:b1:fa:
d6:fc:df:41:8b:aa:68:fd:b9:f5:b6:42:d5:90:06:
b6:01:be:be:02:01:5d:4d:5d:e1:73:c6:bb:5e:41:
e8:73:74:ba:54:a2:4a:52:fd:ec:81:34:39:49:bb:
63:f6:0d:79:69:23:09:d9:99:32:0b:66:1f:73:1c:
a2:20:b1:61:94:01:e3:27:09:a6:4b:92:ae:5d:60:
59:af:bf:d9:06:23:e4:06:d3:b6:9a:f7:e0:78:7f:
54:3d:6b:21:b4:53:aa:a2:26:10:10:6c:c7:6f:1c:
12:57:70:38:8f:55:11:22:e6:38:76:8d:73:11:7a:
b3:b9:ec:8d:cf:59:ae:ad:0a:ad:ef:54:ac:a7:6f:
94:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:28:5C:1F:06:A1:65:40:E4:C1:67:A7:E9:58:AC:9D:9B:C0:17:30
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:cd:7d:12:7b:88:3a:ce:00:18:23:2a:a1:08:99:9c:9e:2c:
17:49:0e:0b:0a:ff:45:22:91:fd:92:00:d8:21:47:16:73:80:
0e:de:1d:21:8d:1e:0d:79:c5:34:95:fc:60:cd:98:2b:44:6b:
b1:06:49:84:db:41:ab:89:92:36:37:95:83:8f:dc:1c:8c:c6:
c9:04:9c:e5:fd:d0:b7:96:2c:58:0e:8a:3a:ce:ad:1e:1f:30:
e0:20:0c:1f:ce:00:b4:55:16:6e:65:97:06:3d:60:03:f5:0b:
aa:83:dc:28:4b:4d:9a:cf:3a:e9:32:4c:77:a0:f4:d2:67:c5:
03:22:01:3c:91:46:aa:18:7c:37:e8:e4:83:44:2a:ae:4c:bc:
a0:6e:a8:c5:4d:d3:32:a5:12:fc:97:20:36:27:3b:57:4a:ee:
94:93:e6:36:8e:c5:cb:1b:17:1f:db:15:65:aa:4e:8a:31:6a:
5c:11:15:ba:31:e4:54:9f:57:a3:7a:16:ff:ae:b6:7f:39:d7:
b2:c6:92:85:28:28:31:8c:05:b3:5b:71:25:00:3b:b1:d9:70:
d1:2c:15:5f:ed:1c:f9:71:fe:6d:67:85:a1:a8:eb:9d:5c:df:
18:db:fd:a3:ae:23:d1:18:78:ef:80:01:06:4b:b4:83:8d:68:
23:70:63:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:59:15 2025 by rpki-client