Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json)
Hash identifier: kPqarsx8ZxaIzi+oL7JKQ/uxYRT8zHZAt3VNlbIYVo4=
Subject key identifier: 80:B9:32:94:75:2A:25:87:30:45:78:39:4C:A7:7B:85:BD:F8:CA:12
Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Certificate serial: 6647280D7FE3692688290B33CBAB42EDC31C9335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
Manifest number: 01DE
Signing time: Fri 16 May 2025 16:39:34 +0000
Manifest this update: Fri 16 May 2025 16:34:34 +0000
Manifest next update: Sat 17 May 2025 17:14:34 +0000
Files and hashes: 1: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: msYhZd5zWe99IeNKfY+X3kWlUvdJ3EU/VmCbg9GQwBI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:47:28:0d:7f:e3:69:26:88:29:0b:33:cb:ab:42:ed:c3:1c:93:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Validity
Not Before: May 16 16:34:34 2025 GMT
Not After : May 17 17:14:34 2025 GMT
Subject: CN=80B93294752A2587304578394CA77B85BDF8CA12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b3:ca:ec:1a:a6:e2:88:37:39:1b:70:f5:02:
0e:45:27:00:d8:ba:be:9f:f9:eb:02:20:05:75:1d:
eb:d7:b9:27:95:9e:2a:20:23:b4:3f:ca:3e:7a:4a:
9a:44:d6:58:54:47:5f:5d:11:65:99:4c:28:a9:f2:
40:a7:d7:ea:d6:06:1b:41:9c:c6:12:27:61:dd:45:
3d:cd:bf:b2:ea:ac:ab:d8:cb:d7:23:dc:1c:6e:86:
33:86:6a:97:91:61:2e:53:7a:2c:5d:b1:7d:3c:51:
7f:32:5e:0a:bf:d4:9a:1f:87:46:43:3c:da:aa:4a:
6c:9d:07:93:2a:3d:be:7d:cf:c7:e4:cf:bb:89:e1:
98:6f:b2:0b:16:09:12:14:fd:e0:10:9e:8d:3e:fd:
d1:56:85:bc:a5:c9:e9:d4:6b:92:0d:cb:bd:37:e2:
f3:c7:d4:83:5f:fa:37:ec:d8:76:ac:5f:0c:53:b8:
af:1b:93:f6:46:37:71:dd:97:7d:de:df:54:ad:9a:
24:20:63:2f:f6:4e:a4:74:c6:5e:47:73:02:27:b9:
75:6d:3b:1b:c0:84:5e:0a:60:24:df:66:cf:1f:32:
e3:88:d1:9d:67:ee:2a:b1:c8:49:d0:c2:e6:f2:9a:
43:33:7e:7a:a1:3d:e9:b2:0d:20:54:98:d8:8f:d4:
07:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B9:32:94:75:2A:25:87:30:45:78:39:4C:A7:7B:85:BD:F8:CA:12
X509v3 Authority Key Identifier:
keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:86:4a:7b:d9:59:3d:5c:f4:9b:b1:a5:6d:e6:22:70:5e:d4:
99:ab:15:bb:1e:1b:cc:b8:3f:31:8d:69:73:8a:7b:d8:3d:16:
14:1a:78:b0:64:38:bf:a1:fc:ec:1a:db:38:36:d2:20:80:a5:
2a:1f:ae:33:f5:ec:36:8e:b2:2b:33:0d:9a:12:54:22:f9:d8:
cc:ec:f2:11:44:80:64:d8:7f:5a:0a:38:57:0b:93:4d:1c:5d:
13:9f:3e:ee:fb:41:1b:8d:56:80:57:82:c9:1f:dd:ae:55:46:
29:68:f0:89:9e:c9:6d:e3:c9:1a:1e:07:8f:88:fe:45:9c:d7:
c0:ce:b8:24:a8:8d:b1:e7:31:94:9a:ab:5d:9f:db:b8:e6:0b:
59:db:32:be:69:69:96:dd:dd:9a:58:06:71:a8:19:89:70:2c:
df:96:d9:26:00:d6:62:66:3c:2c:e4:00:cb:33:7c:c2:ad:9d:
b7:7b:6b:92:d0:76:52:30:86:88:bd:d3:f2:5c:b7:37:0a:5f:
6f:2d:a4:75:d4:b6:a4:4f:c1:57:d2:15:cd:65:53:fa:a9:ef:
d5:d6:1e:35:31:c1:cc:a3:92:76:74:08:44:66:6c:2f:af:89:
49:76:a7:23:06:42:02:c1:c5:6c:a5:39:28:be:4d:32:f7:a3:
0d:7f:1c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:39:48 2025 by rpki-client