Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json)
Hash identifier: f7+Y6M//L7MzGnBzYzuim6JwZFv04RCO7FvUNvShVSw=
Subject key identifier: 30:F5:1B:E5:CA:1F:D5:1F:94:90:D3:A5:CB:27:5A:3C:DF:63:71:9D
Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Certificate serial: 6446AB9E5A9202665E7197D4BA0B3A4FF07A20D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
Manifest number: 03E2
Signing time: Tue 17 Jun 2025 07:32:41 +0000
Manifest this update: Tue 17 Jun 2025 07:27:41 +0000
Manifest next update: Wed 18 Jun 2025 08:26:41 +0000
Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: aMnF8Rbx1ZFUYGj4K6VtHS2+mjQu/l693oZq1wAZ72M=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 08:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:46:ab:9e:5a:92:02:66:5e:71:97:d4:ba:0b:3a:4f:f0:7a:20:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Validity
Not Before: Jun 17 07:27:41 2025 GMT
Not After : Jun 18 08:26:41 2025 GMT
Subject: CN=30F51BE5CA1FD51F9490D3A5CB275A3CDF63719D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:94:d3:56:a1:18:08:e1:10:44:4a:74:65:de:
9f:35:1a:a0:95:c8:d7:35:b0:99:e9:ec:d2:2d:35:
0e:d4:bb:ec:51:5e:41:bb:c8:ce:53:6c:1d:97:77:
4b:f7:2d:f4:b6:96:85:d9:71:24:43:b7:2a:c4:20:
67:d7:ab:d7:f6:71:fc:38:84:5b:4a:9f:c2:8f:b9:
33:1b:0a:72:94:c4:7b:51:04:1c:bf:0a:1a:77:7e:
51:87:c6:28:f7:22:29:00:f6:c0:3e:a5:d2:fb:db:
f8:f3:90:f6:51:e2:1e:1d:5a:9c:06:34:11:8f:e4:
23:cc:12:04:bf:34:d5:1b:91:9f:9a:a7:01:8c:19:
58:ae:f7:1e:d3:ff:e6:a1:2a:e6:8c:2d:16:22:55:
8c:00:79:2e:00:95:33:80:c7:18:62:39:b2:2d:24:
3a:8a:d8:86:86:ed:26:e0:0e:5b:0e:01:2c:36:99:
69:5c:8c:cb:e8:66:fd:27:a9:4e:17:c6:17:df:0c:
32:87:8d:2d:5f:7e:b0:d3:e9:0e:66:45:7b:38:6d:
f6:89:f5:46:52:79:cd:1c:0e:71:c3:fb:4b:df:54:
04:f5:bc:30:28:82:b0:bc:ec:83:ec:10:6f:38:78:
ce:29:70:07:4f:25:fb:35:a2:82:de:36:65:56:ab:
4c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F5:1B:E5:CA:1F:D5:1F:94:90:D3:A5:CB:27:5A:3C:DF:63:71:9D
X509v3 Authority Key Identifier:
keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:49:0c:d5:7f:09:5f:e6:6d:39:28:1e:67:47:66:9f:60:a3:
4b:ed:c1:89:21:7e:c6:54:97:8d:c8:9b:3e:1c:e2:82:54:87:
6c:42:12:05:dd:3c:be:e8:45:e6:45:a9:98:01:5f:0b:a3:bb:
71:2c:82:72:2b:85:ef:92:08:09:a0:f2:e7:14:aa:32:ff:18:
88:ac:16:9a:a2:6d:6b:0f:2b:4c:8b:ab:84:51:73:bc:65:c1:
0c:4d:07:58:c4:f9:7b:40:92:10:3e:90:9c:5b:0a:a4:13:5e:
fc:da:a7:eb:69:82:22:a8:04:58:1a:0b:02:6d:57:89:11:f7:
2b:c3:29:aa:9f:f6:6c:ab:4e:f2:e6:39:7d:93:3c:6c:bd:43:
2b:1f:58:81:66:d2:d8:d5:0b:81:78:81:fd:eb:be:ab:c9:c5:
52:da:b6:33:d1:ee:ba:cd:b4:de:a9:22:3f:e9:f0:d5:c5:a1:
25:76:18:81:95:51:53:72:a9:eb:5b:97:db:b4:cb:09:79:c3:
c5:f8:8e:46:42:7a:21:a7:07:c2:3e:c9:fb:27:9a:89:fd:ea:
36:a8:91:1e:ef:2a:25:e8:4d:e7:70:12:1e:41:11:84:ec:ac:
f2:ce:d9:b0:7c:09:4f:71:cd:88:df:08:4e:67:60:9b:96:5c:
0b:7e:3e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 18:05:55 2025 by rpki-client