Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
File: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft (raw, json)
Hash identifier: rH8dfDvCFqW/Jgb3btMZl8EY0Y92qs2H7xe/KNExiAs=
Subject key identifier: E0:02:B6:C9:7D:94:4E:04:F5:DC:C5:C8:BD:C6:CA:4A:7A:99:7C:8B
Authority key identifier: 63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
Certificate issuer: /CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Certificate serial: 776677306ACA8D3175FBC4AE8CB6CE461D71694C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
Manifest number: 02EC
Signing time: Tue 11 Nov 2025 06:06:02 +0000
Manifest this update: Tue 11 Nov 2025 06:01:02 +0000
Manifest next update: Wed 12 Nov 2025 07:52:02 +0000
Files and hashes: 1: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl (hash: FisFVJ6FTuymTBwpVmMLnZt89uOdUTPnuifLlSU7Aoc=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:52:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:66:77:30:6a:ca:8d:31:75:fb:c4:ae:8c:b6:ce:46:1d:71:69:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Validity
Not Before: Nov 11 06:01:02 2025 GMT
Not After : Nov 12 07:52:02 2025 GMT
Subject: CN=E002B6C97D944E04F5DCC5C8BDC6CA4A7A997C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:98:68:d8:6a:16:2d:5a:28:ac:6b:88:10:fa:
60:b5:4a:ce:ac:0c:1b:5f:c3:bd:40:d7:bc:ae:d6:
ce:c7:e6:00:68:53:12:6d:da:ef:bb:14:c9:54:81:
48:e4:61:dd:2e:8f:1b:7e:3a:f6:d1:e3:36:40:08:
9d:69:fa:b7:aa:0d:80:de:6f:21:d4:1e:28:e3:91:
34:03:bc:7e:6e:50:6c:3e:53:d4:bc:02:4a:9a:c3:
7a:bd:4b:38:70:b9:d6:a1:91:24:2f:fd:3a:d7:92:
7c:2e:76:5c:76:7e:3b:03:e9:62:93:0b:84:e2:ad:
cd:d8:0b:5b:59:1a:5f:56:00:5d:c4:c4:1f:51:42:
a3:d7:d7:c6:53:63:9d:cc:c4:0b:9a:8b:e2:18:f4:
cd:d0:79:57:8e:d9:2b:b1:f5:98:f3:7f:15:4f:55:
63:8e:15:8d:98:69:02:b6:63:65:aa:92:d8:eb:95:
21:2f:1e:45:51:13:55:1a:78:bc:52:dd:03:96:39:
03:90:86:23:5e:a7:15:35:23:8c:cd:83:65:7d:4b:
7e:f9:c0:93:3e:c5:1d:94:74:dc:6b:a2:cc:4a:ee:
39:e0:c1:28:6a:69:ae:2d:fd:14:f0:13:62:1d:24:
57:65:9f:9e:0e:0c:a8:b8:98:6f:6f:3e:6c:33:b6:
4c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:02:B6:C9:7D:94:4E:04:F5:DC:C5:C8:BD:C6:CA:4A:7A:99:7C:8B
X509v3 Authority Key Identifier:
keyid:63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:7e:c1:83:a6:da:fd:18:2d:8f:07:9e:92:44:d8:ce:56:05:
24:33:e2:12:53:0a:56:a7:ab:19:a0:59:af:5a:eb:bd:7b:3f:
79:66:e2:d7:4b:fa:17:15:5a:9c:48:19:15:89:27:00:22:9e:
96:aa:e2:d0:1e:3f:01:eb:ee:9e:c8:1c:70:92:74:70:28:b2:
0b:fe:89:3b:53:c1:dc:4b:d6:9a:80:46:d5:b6:93:ab:d1:de:
69:ed:ca:91:36:af:3d:ff:e5:5a:13:6a:86:eb:fb:cc:68:92:
a6:5d:52:93:a8:1c:d1:d9:cc:54:19:a7:11:b2:9d:d9:43:1e:
09:57:f9:d7:de:42:df:fe:04:9b:6e:4d:35:71:18:68:05:81:
46:cd:ae:01:f5:5a:45:6b:9f:39:08:08:c5:1b:f7:d1:8a:e1:
24:27:7b:06:57:66:5b:56:d5:b1:c1:3b:4c:e1:f3:c8:c7:99:
27:5b:d6:2c:ea:f3:07:22:9b:8a:95:72:13:8e:95:f4:3a:f3:
6d:76:c1:04:fb:77:e0:2b:9a:c9:84:b5:57:91:23:39:34:c5:
14:eb:d9:8f:aa:b4:7f:38:aa:9c:7b:34:e7:be:21:28:09:34:
77:2a:cb:e4:cd:00:36:5a:d7:5a:6a:e0:e0:ec:a4:03:d7:50:
b5:99:3a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:09 2025 by rpki-client