Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
File: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft (raw, json)
Hash identifier: HvQgqtrrq80/lChdqxlOIKADScm11s/t0FqRIdQkdNU=
Subject key identifier: 78:03:4D:F5:80:C8:BB:10:A8:DD:E1:ED:A3:F8:63:0B:FB:D9:A0:A6
Authority key identifier: 63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
Certificate issuer: /CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Certificate serial: 4AC9E450C95F680D1853F86B74786A1FFE66C8DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
Manifest number: 0294
Signing time: Sun 07 Sep 2025 05:25:55 +0000
Manifest this update: Sun 07 Sep 2025 05:20:55 +0000
Manifest next update: Mon 08 Sep 2025 05:50:55 +0000
Files and hashes: 1: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl (hash: Y0FtnKPuLsmYeolO8IuJ6Gbc8FRIWm1TmaDbMPuwufs=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:c9:e4:50:c9:5f:68:0d:18:53:f8:6b:74:78:6a:1f:fe:66:c8:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Validity
Not Before: Sep 7 05:20:55 2025 GMT
Not After : Sep 8 05:50:55 2025 GMT
Subject: CN=78034DF580C8BB10A8DDE1EDA3F8630BFBD9A0A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:aa:52:3c:55:e1:6b:19:aa:61:e2:d5:4e:65:
54:27:15:7a:72:45:55:87:07:a4:67:de:f8:a2:3f:
6d:69:3a:ea:76:d8:84:79:11:73:4d:59:08:45:80:
74:78:1b:d6:1f:a1:35:28:d0:3c:70:b8:e8:5f:bf:
ed:31:9c:2c:25:34:ef:e4:af:f6:24:8c:99:84:ba:
9c:a8:5e:01:c8:83:74:79:31:c1:9c:b8:f7:2a:00:
c6:9b:c1:44:07:6d:6b:d7:6e:46:0c:39:80:04:b5:
b2:a9:e6:e4:af:e6:7b:64:68:21:d0:47:0c:82:df:
4d:bc:13:0c:c4:9c:f9:44:e5:bd:3a:f2:ed:4c:2c:
ee:98:29:33:c2:b6:f2:3d:99:63:d0:16:e5:10:f5:
7a:a1:0c:c9:d2:9f:81:82:81:62:c4:39:bb:18:70:
22:8d:97:54:95:d4:ea:ce:c1:5f:aa:7a:a7:30:32:
f4:51:98:cf:00:1c:71:ae:2c:d6:54:a1:d1:8f:33:
81:35:dd:d1:67:42:6e:55:c4:13:9a:87:7b:c4:73:
ed:50:30:c1:ec:3b:ce:59:df:c2:8e:28:a9:08:43:
dd:66:01:e8:17:c1:f6:6f:d6:f5:ad:f6:56:d5:d9:
fe:27:ea:a6:4d:21:ad:f4:d2:30:96:a9:92:dd:f5:
38:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:03:4D:F5:80:C8:BB:10:A8:DD:E1:ED:A3:F8:63:0B:FB:D9:A0:A6
X509v3 Authority Key Identifier:
keyid:63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:98:b9:df:d5:f3:2b:ce:41:87:0e:62:a5:50:8e:6f:e6:99:
96:b5:40:22:b7:2c:8a:22:e5:59:ab:77:98:c1:c1:21:f2:ba:
2a:9e:1a:79:2c:e7:8d:1f:d5:91:06:f5:62:fb:59:1b:a6:5f:
67:db:08:00:cb:36:57:d8:af:1f:2c:c3:0d:87:42:51:fd:e5:
8c:a1:13:f3:33:2c:d3:14:35:38:5a:62:39:25:e2:bb:38:2d:
ec:84:35:3c:51:21:c7:ae:6f:b1:c1:e3:ab:a2:ad:87:37:e9:
08:71:3c:cf:b3:1f:8e:57:25:c5:13:9f:ef:25:4f:5b:61:49:
4e:ad:8d:65:e0:16:66:42:ac:5e:02:0f:5d:ba:f7:7e:9c:61:
45:2f:74:0a:ee:a6:5c:91:22:b9:00:62:d5:5a:cd:54:ba:2d:
7d:f8:17:b5:dd:8c:30:e7:d2:06:f7:8a:e7:7b:06:e6:ad:e5:
ea:64:85:cd:15:47:c2:49:22:69:3d:95:56:fd:74:2b:b0:e7:
c7:1e:9b:3a:e0:b7:f9:1b:0c:a2:62:b6:a7:12:df:55:92:2c:
32:39:11:98:af:eb:e1:e4:94:0d:6a:87:2c:4e:e3:dd:b5:94:
c8:f0:4c:8c:04:16:8c:9f:ea:76:b1:03:dd:48:ed:b0:cb:18:
76:b5:98:47
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUSsnkUMlfaA0YU/hrdHhqH/5myN8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjNmN2IyOTM3MWU4MTQzMzZjNTJkOWM0M2QxYWY0Zjlm
YTMzZTg1NTAeFw0yNTA5MDcwNTIwNTVaFw0yNTA5MDgwNTUwNTVaMDMxMTAvBgNV
BAMTKDc4MDM0REY1ODBDOEJCMTBBOERERTFFREEzRjg2MzBCRkJEOUEwQTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrqlI8VeFrGaph4tVOZVQnFXpy
RVWHB6Rn3viiP21pOup22IR5EXNNWQhFgHR4G9YfoTUo0DxwuOhfv+0xnCwlNO/k
r/YkjJmEupyoXgHIg3R5McGcuPcqAMabwUQHbWvXbkYMOYAEtbKp5uSv5ntkaCHQ
RwyC3028EwzEnPlE5b068u1MLO6YKTPCtvI9mWPQFuUQ9XqhDMnSn4GCgWLEObsY
cCKNl1SV1OrOwV+qeqcwMvRRmM8AHHGuLNZUodGPM4E13dFnQm5VxBOah3vEc+1Q
MMHsO85Z38KOKKkIQ91mAegXwfZv1vWt9lbV2f4n6qZNIa300jCWqZLd9TjLAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUeANN9YDIuxCo3eHto/hjC/vZoKYwHwYDVR0j
BBgwFoAUY/eyk3HoFDNsUtnEPRr0+foz6FUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDA2MzMzYzYtOTQ2ZC00YjBiLTk1ZWYtZGFiYTI2MmE0
MmUxLzMvNjNGN0IyOTM3MUU4MTQzMzZDNTJEOUM0M0QxQUY0RjlGQTMzRTg1NS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1lfZXlrM0hvRkROc1V0bkVQUnIwLWZv
ejZGVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kMDYzMzNjNi05
NDZkLTRiMGItOTVlZi1kYWJhMjYyYTQyZTEvMy82M0Y3QjI5MzcxRTgxNDMzNkM1
MkQ5QzQzRDFBRjRGOUZBMzNFODU1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdpi539XzK85Bhw5ipVCO
b+aZlrVAIrcsiiLlWat3mMHBIfK6Kp4aeSznjR/VkQb1YvtZG6ZfZ9sIAMs2V9iv
HyzDDYdCUf3ljKET8zMs0xQ1OFpiOSXiuzgt7IQ1PFEhx65vscHjq6KthzfpCHE8
z7MfjlclxROf7yVPW2FJTq2NZeAWZkKsXgIPXbr3fpxhRS90Cu6mXJEiuQBi1VrN
VLotffgXtd2MMOfSBveK53sG5q3l6mSFzRVHwkkiaT2VVv10K7Dnxx6bOuC3+RsM
omK2pxLfVZIsMjkRmK/r4eSUDWqHLE7j3bWUyPBMjAQWjJ/qdrED3UjtsMsYdrWY
Rw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 09:50:49 2025 by rpki-client