Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
File: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft (raw, json)
Hash identifier: CgGwnJVSXe+B0umXXy7BNHti+rDqdK3PTxFM/zaDvJE=
Subject key identifier: D3:95:5B:83:ED:05:B4:5A:EA:59:EE:64:35:CC:55:9A:27:F8:18:76
Authority key identifier: 63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
Certificate issuer: /CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Certificate serial: 7AE02EDC91510C6BD5A3A33EE6F2A412B9312BB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
Manifest number: 0241
Signing time: Fri 06 Jun 2025 09:10:38 +0000
Manifest this update: Fri 06 Jun 2025 09:05:38 +0000
Manifest next update: Sat 07 Jun 2025 10:16:38 +0000
Files and hashes: 1: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl (hash: Aa6bSSFQ6P7m+tl6iefs7opmT4w+bsw3ueqJEZVCPMc=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 10:16:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:e0:2e:dc:91:51:0c:6b:d5:a3:a3:3e:e6:f2:a4:12:b9:31:2b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Validity
Not Before: Jun 6 09:05:38 2025 GMT
Not After : Jun 7 10:16:38 2025 GMT
Subject: CN=D3955B83ED05B45AEA59EE6435CC559A27F81876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8d:d1:59:8c:e0:66:2e:22:35:2e:9f:7b:cf:
06:b2:de:fa:55:5d:85:27:9f:13:4c:e5:ef:2e:09:
b0:17:d0:6d:45:4e:0e:83:b1:31:05:43:13:a2:88:
11:90:49:b3:31:d1:0c:29:4c:04:64:b7:3a:c8:50:
3f:51:76:7f:b5:ff:23:c3:3d:04:c6:fb:04:ba:65:
d0:9b:c3:d3:e7:2a:c9:d2:79:f8:01:ea:7a:92:d6:
3d:d3:96:ff:99:42:1a:e4:72:fd:1f:66:25:42:42:
cd:8b:4a:a0:1d:af:0a:5e:0b:a6:a9:72:15:41:db:
56:9c:9c:ec:aa:25:b6:6d:58:a8:77:f6:69:ea:8d:
3c:30:ba:be:40:8a:e2:fe:31:10:d0:70:73:19:b5:
cd:ce:74:6a:9c:97:c0:a3:3b:63:46:86:45:0f:57:
eb:91:da:d3:04:65:bf:74:7e:89:8f:5a:34:01:dd:
69:2e:95:c7:93:af:a7:20:5a:27:95:78:14:82:30:
5a:f0:93:dd:7f:00:8a:cf:0e:70:69:af:c4:89:6b:
6a:58:b0:65:dd:d1:76:6f:a0:ce:2e:87:6e:fa:27:
31:cb:ed:82:e5:5a:7a:f2:51:b4:69:d3:1d:d6:73:
10:7b:59:cc:91:dd:87:9d:49:5c:a6:2d:7b:ee:34:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:95:5B:83:ED:05:B4:5A:EA:59:EE:64:35:CC:55:9A:27:F8:18:76
X509v3 Authority Key Identifier:
keyid:63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:26:71:85:23:32:0c:af:23:81:9d:a2:40:6f:5a:e2:fc:4d:
f1:9e:f7:49:d7:a9:2a:78:20:57:fb:ec:9e:b5:59:fa:94:ea:
49:d2:d4:9e:c0:11:4f:79:96:6f:96:47:7e:33:fb:2a:94:e1:
1e:32:4d:71:b3:b6:0d:7f:c3:f1:8f:f1:4d:4a:4f:3f:dd:5b:
7b:38:ab:8d:9e:bc:55:cc:d6:65:76:3a:c7:f4:a3:e8:5f:1c:
f3:db:62:72:d5:bd:e0:6f:5a:ae:42:e8:16:b2:71:69:05:a3:
de:83:21:db:e2:96:ef:fc:f6:75:f9:7d:f6:13:fa:5c:2e:71:
ba:79:f8:8f:0b:ec:42:1d:b9:f4:f1:0d:c7:ed:b7:61:99:c6:
04:37:a9:5e:0e:a5:a4:da:8a:ff:3a:c7:53:4f:7b:6a:b8:2d:
8a:19:a9:5c:1a:2e:58:df:c9:c4:0a:ae:df:16:7f:33:0a:95:
45:fa:13:63:ed:34:ad:bf:01:6b:2e:10:e7:f0:31:58:42:be:
13:b6:d9:41:91:be:99:df:48:8a:e8:b6:03:15:0f:50:6c:ac:
cf:9e:cb:67:50:db:9f:fb:06:ab:05:55:f5:e0:1a:0b:d7:95:
98:20:4c:51:b9:13:ee:36:d2:68:44:ac:b8:55:14:1b:36:6a:
b6:d2:43:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:23:59 2025 by rpki-client