Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
File: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft (raw, json)
Hash identifier: wVZXhHU6/o3cZV1+XDSqlXhctc0aGGo/LpfQZERgno0=
Subject key identifier: F8:13:BA:59:09:E5:63:90:B7:58:E5:E7:02:C5:82:AB:92:40:6B:3A
Authority key identifier: 63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
Certificate issuer: /CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Certificate serial: 4E06819144CDAD8F356D6B743E8776DF379B0480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
Manifest number: 01C2
Signing time: Sun 16 Feb 2025 08:15:50 +0000
Manifest this update: Sun 16 Feb 2025 08:10:50 +0000
Manifest next update: Mon 17 Feb 2025 08:59:50 +0000
Files and hashes: 1: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl (hash: /yDLfbhi/k8nzp6aUWcZfm/eAphIht3nclYnF40a44s=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 08:59:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:06:81:91:44:cd:ad:8f:35:6d:6b:74:3e:87:76:df:37:9b:04:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Validity
Not Before: Feb 16 08:10:50 2025 GMT
Not After : Feb 17 08:59:50 2025 GMT
Subject: CN=F813BA5909E56390B758E5E702C582AB92406B3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:da:29:95:3c:06:b0:6a:fb:d6:ff:c5:01:9d:
59:80:7e:8a:c8:7f:98:04:50:85:6e:a1:1a:af:d7:
a4:24:c3:71:d7:99:42:f2:8a:ad:cd:eb:de:11:4b:
3e:34:35:3c:f5:cd:e2:01:7c:b3:f4:ce:99:8e:c5:
e2:00:f9:f2:d3:fc:66:44:43:22:e9:d5:33:48:6b:
50:74:ce:3d:69:e8:c1:36:33:b4:f5:fb:b6:c3:6a:
f0:0f:3c:db:04:6e:32:67:11:41:b7:62:59:a9:83:
5e:a0:5c:cc:83:94:8b:cc:51:ba:a9:32:0f:2c:ad:
7a:bc:11:6c:97:52:fc:a8:33:ec:30:bd:7e:a5:7b:
49:51:43:b2:8f:8d:33:e4:b8:cd:76:37:4a:7c:a2:
49:6b:76:2b:89:1f:3d:4f:9e:f0:e4:41:f6:13:6f:
a0:fb:7f:fd:25:bf:8a:f0:91:87:32:1a:f4:38:66:
c4:e1:1c:19:a4:c2:84:73:45:68:e1:ce:e7:70:0e:
52:53:82:c8:7d:f8:d7:17:87:c1:8a:5b:bf:42:bf:
2e:8c:46:2c:1f:ea:0a:6b:71:05:21:96:3b:9e:be:
95:d4:e6:c3:93:9b:92:34:57:7f:25:c0:3f:29:f3:
cb:77:f5:22:b7:41:c4:81:30:73:13:15:12:21:ab:
34:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:13:BA:59:09:E5:63:90:B7:58:E5:E7:02:C5:82:AB:92:40:6B:3A
X509v3 Authority Key Identifier:
keyid:63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f5:a9:c5:17:6e:00:47:e2:1f:27:18:0b:ec:f9:2d:7f:5d:
01:ac:c6:f5:74:66:9d:46:54:69:09:ea:b7:25:02:c2:ec:35:
88:b8:55:24:bf:be:8e:6c:fd:49:f8:df:b3:65:d5:1b:2f:26:
57:e7:e6:8b:e3:0b:73:51:ff:9c:a7:3e:fe:22:42:22:72:c5:
c5:69:01:ec:d3:38:78:ea:a6:48:25:17:c8:a3:7d:72:7d:88:
1e:dd:81:33:46:3f:c6:ed:b5:8d:39:8d:7f:76:83:db:27:62:
a9:42:62:e7:95:77:99:1c:49:83:f3:ee:eb:ba:50:3b:c0:b3:
dd:cb:ee:21:cd:13:11:69:c2:6c:a1:82:0c:1b:5f:aa:78:8f:
d7:1c:ca:f2:25:37:48:88:3f:db:77:26:b9:be:0e:4c:ca:59:
d9:6b:e3:2a:ed:61:03:a3:18:71:ee:70:42:cb:07:28:f2:13:
e4:12:17:30:39:ad:0c:c3:1b:c2:9c:ba:7d:63:a9:2b:65:73:
0b:21:da:3d:ee:32:5b:7d:b4:54:ed:b2:23:3e:78:91:d4:b1:
a8:67:fe:54:80:44:90:18:49:e1:dd:d1:b8:19:79:96:f7:4f:
d1:98:cb:1d:99:67:64:c2:5f:fd:45:bf:0e:82:70:63:78:35:
96:80:06:08
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUTgaBkUTNrY81bWt0Pod23zebBIAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjNmN2IyOTM3MWU4MTQzMzZjNTJkOWM0M2QxYWY0Zjlm
YTMzZTg1NTAeFw0yNTAyMTYwODEwNTBaFw0yNTAyMTcwODU5NTBaMDMxMTAvBgNV
BAMTKEY4MTNCQTU5MDlFNTYzOTBCNzU4RTVFNzAyQzU4MkFCOTI0MDZCM0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC22imVPAawavvW/8UBnVmAforI
f5gEUIVuoRqv16Qkw3HXmULyiq3N694RSz40NTz1zeIBfLP0zpmOxeIA+fLT/GZE
QyLp1TNIa1B0zj1p6ME2M7T1+7bDavAPPNsEbjJnEUG3Ylmpg16gXMyDlIvMUbqp
Mg8srXq8EWyXUvyoM+wwvX6le0lRQ7KPjTPkuM12N0p8oklrdiuJHz1PnvDkQfYT
b6D7f/0lv4rwkYcyGvQ4ZsThHBmkwoRzRWjhzudwDlJTgsh9+NcXh8GKW79Cvy6M
Riwf6gprcQUhljuevpXU5sOTm5I0V38lwD8p88t39SK3QcSBMHMTFRIhqzTPAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQU+BO6WQnlY5C3WOXnAsWCq5JAazowHwYDVR0j
BBgwFoAUY/eyk3HoFDNsUtnEPRr0+foz6FUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDA2MzMzYzYtOTQ2ZC00YjBiLTk1ZWYtZGFiYTI2MmE0
MmUxLzMvNjNGN0IyOTM3MUU4MTQzMzZDNTJEOUM0M0QxQUY0RjlGQTMzRTg1NS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1lfZXlrM0hvRkROc1V0bkVQUnIwLWZv
ejZGVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kMDYzMzNjNi05
NDZkLTRiMGItOTVlZi1kYWJhMjYyYTQyZTEvMy82M0Y3QjI5MzcxRTgxNDMzNkM1
MkQ5QzQzRDFBRjRGOUZBMzNFODU1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQvWpxRduAEfiHycYC+z5
LX9dAazG9XRmnUZUaQnqtyUCwuw1iLhVJL++jmz9Sfjfs2XVGy8mV+fmi+MLc1H/
nKc+/iJCInLFxWkB7NM4eOqmSCUXyKN9cn2IHt2BM0Y/xu21jTmNf3aD2ydiqUJi
55V3mRxJg/Pu67pQO8Cz3cvuIc0TEWnCbKGCDBtfqniP1xzK8iU3SIg/23cmub4O
TMpZ2WvjKu1hA6MYce5wQssHKPIT5BIXMDmtDMMbwpy6fWOpK2VzCyHaPe4yW320
VO2yIz54kdSxqGf+VIBEkBhJ4d3RuBl5lvdP0ZjLHZlnZMJf/UW/DoJwY3g1loAG
CA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:49:08 2025 by rpki-client