Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
File: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft (raw, json)
Hash identifier: d8nsvFcaKw79bKHvx+bCkU6Rl+nyRcv5/43y4M4M41Y=
Subject key identifier: 0B:9C:27:3E:F5:B7:CB:3F:00:18:93:C6:60:E2:5A:A0:79:8C:8E:B6
Authority key identifier: 63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
Certificate issuer: /CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Certificate serial: 47DB5FE85E9F62E3E2951B7C18B2F84B8610007E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
Manifest number: 03AA
Signing time: Sun 29 Mar 2026 10:08:21 +0000
Manifest this update: Sun 29 Mar 2026 10:03:21 +0000
Manifest next update: Mon 30 Mar 2026 12:53:21 +0000
Files and hashes: 1: 63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl (hash: d1Qdn+NEaOT05i9mpuG86mYsn6/CE/HVAex5b80u+SY=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:db:5f:e8:5e:9f:62:e3:e2:95:1b:7c:18:b2:f8:4b:86:10:00:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f7b29371e814336c52d9c43d1af4f9fa33e855
Validity
Not Before: Mar 29 10:03:21 2026 GMT
Not After : Mar 30 12:53:21 2026 GMT
Subject: CN=0B9C273EF5B7CB3F001893C660E25AA0798C8EB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9d:3b:13:3d:82:13:cd:2c:5b:0a:ce:43:17:
5f:aa:03:de:93:39:86:6b:d1:50:cb:80:73:3f:f0:
34:23:bf:a5:3f:02:fa:22:b9:9a:5f:ca:00:cb:64:
83:68:73:a4:21:6f:6e:f6:e3:b8:f3:00:5e:cb:30:
25:ef:49:bd:d3:78:81:c4:cd:b6:62:19:9f:78:e9:
f9:7e:4d:11:78:f7:df:d7:fa:94:d4:45:14:20:f3:
b9:63:41:92:3f:3b:de:b4:cb:e3:3e:3d:35:65:be:
f0:8f:43:66:88:fe:d9:14:bd:a5:36:20:23:fb:8d:
52:85:06:8e:bb:5b:01:23:94:f4:44:68:7e:be:a4:
15:ce:08:05:ad:97:be:03:d4:94:56:09:f8:dc:e2:
2d:34:14:fa:e9:ee:9f:82:03:5a:58:c7:57:2a:3a:
54:37:e4:43:a6:7f:0c:76:45:bb:a1:39:86:5d:13:
cf:3a:c3:65:fa:b5:f8:84:29:9b:6a:e6:56:88:82:
9a:3f:75:11:e0:d4:d1:72:f4:27:8e:23:d4:28:16:
ba:4e:b3:e4:d4:61:a0:fa:ec:08:a0:3d:be:25:3c:
f2:10:15:6d:d2:ff:ac:ef:ad:df:99:27:00:3e:57:
73:c0:84:f9:a9:2b:72:81:5c:d2:1c:8d:c4:2f:56:
be:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:9C:27:3E:F5:B7:CB:3F:00:18:93:C6:60:E2:5A:A0:79:8C:8E:B6
X509v3 Authority Key Identifier:
keyid:63:F7:B2:93:71:E8:14:33:6C:52:D9:C4:3D:1A:F4:F9:FA:33:E8:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_eyk3HoFDNsUtnEPRr0-foz6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/3/63F7B29371E814336C52D9C43D1AF4F9FA33E855.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:27:f7:04:2d:04:e1:35:d7:1f:01:6f:be:43:55:0e:16:86:
77:4e:af:af:82:e9:19:4f:13:1f:5e:a6:84:60:36:21:3d:88:
3e:36:6b:2e:f5:ba:50:8f:ab:31:87:52:ab:65:e0:23:d9:54:
c2:a0:ff:3b:92:2a:f0:e8:2f:2f:11:f7:0b:c1:b3:b4:50:57:
53:db:df:2d:3b:45:38:94:c8:a3:4d:2f:6c:7f:c2:e8:4a:27:
48:65:e3:ad:fe:a8:c4:2b:2f:dc:6b:aa:66:68:01:19:2e:16:
84:2c:a7:01:57:c7:ab:43:e1:55:ad:68:f0:03:df:c8:bc:34:
6d:4a:f4:29:07:0d:ee:2b:9a:42:c7:39:b2:cc:46:9e:a7:08:
d8:3a:0e:8d:e7:c8:99:0d:a3:60:24:82:2e:b3:03:6f:ea:cd:
48:44:0e:41:60:9a:2e:77:93:cb:1d:2f:95:98:74:39:b2:90:
91:7a:2b:15:bf:97:90:22:22:e9:34:f4:a4:1a:36:fb:a4:9a:
0e:35:2a:a3:59:26:dc:2c:6f:96:7c:db:1a:75:dc:cd:e4:24:
31:bc:26:37:3b:88:17:f5:a6:2f:c7:e5:a5:56:b7:51:1e:b8:
24:d1:62:13:ce:51:75:5c:16:7f:3a:a3:28:36:b5:53:04:8f:
9a:85:d3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:11 2026 by rpki-client