Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json)
Hash identifier: wxpmSVbPQYt6YCUdsby1gwha+kcdNvVadGARkoAaKxQ=
Subject key identifier: D0:CD:8D:06:3A:38:D8:35:6D:93:2A:79:D6:F3:5D:81:9B:7D:4D:03
Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Certificate serial: 09129F394E469BA7BB12C83FB31ECBC8D4C5477C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
Manifest number: 03B1
Signing time: Thu 25 Jun 2026 04:40:16 +0000
Manifest this update: Thu 25 Jun 2026 04:35:16 +0000
Manifest next update: Fri 26 Jun 2026 05:27:16 +0000
Files and hashes: 1: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: GUcsBTvASJcZyhJ84htfolDKHcHPYMWfL25SmOpIyg4=)
2: AS215171.asa (hash: gdJa6WG2GERDZaDbnz7OAqIN3lLaJy+y5wFkZsKkjzo=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:12:9f:39:4e:46:9b:a7:bb:12:c8:3f:b3:1e:cb:c8:d4:c5:47:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Validity
Not Before: Jun 25 04:35:16 2026 GMT
Not After : Jun 26 05:27:16 2026 GMT
Subject: CN=D0CD8D063A38D8356D932A79D6F35D819B7D4D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c7:94:2d:26:11:eb:91:47:28:19:df:e5:53:
5c:1c:56:a4:1e:de:4b:11:50:ac:94:d7:28:39:29:
b9:04:d3:f4:39:4b:57:84:54:8c:67:29:1d:dd:19:
05:4c:9a:ea:7b:bf:8d:2a:f7:99:6c:12:e5:be:8b:
63:8f:a1:be:b9:05:77:c2:bf:42:c1:34:f7:42:e5:
72:a5:62:e8:68:c9:48:e8:50:e3:40:a9:6a:5f:15:
f6:2e:bf:ba:a0:b0:f2:d9:34:d1:16:96:8e:2f:f6:
db:be:d6:3a:3e:0c:f4:52:bc:3f:93:03:57:4e:ae:
e5:23:c1:82:c3:be:f4:3e:7e:89:ba:57:84:d8:05:
91:06:9d:ce:32:f7:0d:8e:ba:88:2b:36:9c:dd:74:
b1:72:4b:31:6f:fa:2a:2c:0f:61:fb:98:31:91:9e:
03:69:e0:0c:1f:84:a2:55:9b:43:d6:f4:23:37:65:
82:b6:15:8a:8f:20:12:2b:8a:e7:2f:ae:d7:54:47:
4a:27:5a:72:7a:54:e4:53:ac:73:55:78:13:49:82:
1a:40:a7:90:c3:80:3c:2e:0f:de:a4:73:76:98:6f:
08:f7:3f:0c:5b:81:0e:25:89:2c:65:e0:e1:87:89:
61:8f:b2:86:ec:3f:17:b0:ac:f5:ef:c0:d8:35:db:
06:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:CD:8D:06:3A:38:D8:35:6D:93:2A:79:D6:F3:5D:81:9B:7D:4D:03
X509v3 Authority Key Identifier:
keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e9:e9:00:da:e7:94:08:b6:3b:6b:85:b2:21:75:83:36:e0:
77:4e:95:31:88:9d:8b:2e:2f:f5:af:92:27:55:8f:fc:e5:24:
31:90:d2:a9:11:71:ca:bb:ff:6c:45:78:7b:ce:b5:a2:36:68:
08:90:78:e5:ad:e9:d5:93:91:86:61:a9:3a:2e:3c:8f:79:e6:
43:e5:1c:73:35:9d:31:64:84:09:8b:e9:ff:61:b4:85:e8:5b:
b1:08:b2:7c:4d:fd:77:b4:cc:51:5f:f7:6d:c9:1d:2f:8e:29:
db:46:f4:2a:b1:d0:63:29:63:b7:fc:d4:a9:d2:49:d6:67:18:
60:fc:88:3e:a9:2f:b0:ea:93:e4:a7:dc:47:e9:90:72:94:62:
77:3d:85:df:d0:4e:2b:3e:c8:c7:c9:b1:89:64:87:79:f1:04:
2f:a9:23:19:e0:bd:ca:4c:e7:18:07:48:c5:bf:5e:2c:f7:03:
16:14:64:02:b1:3c:32:d2:7c:c9:eb:fb:3a:9b:9e:6e:a2:da:
70:70:30:fb:c4:60:c6:10:92:9a:ae:b6:19:9b:b2:13:45:8d:
18:25:6d:6a:20:ed:34:0d:30:30:b4:12:7e:f5:a0:f3:28:da:
ca:fb:fd:30:26:df:3a:31:cc:6d:bb:0e:25:e5:cb:4b:9d:bd:
c5:b4:64:6b
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUCRKfOU5Gm6e7Esg/sx7LyNTFR3wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTNhMmFhMTYwMWNjMDkyMTQ0NjFkMDNjYTc3MWVkNTBl
YzFkNjMyNTAeFw0yNjA2MjUwNDM1MTZaFw0yNjA2MjYwNTI3MTZaMDMxMTAvBgNV
BAMTKEQwQ0Q4RDA2M0EzOEQ4MzU2RDkzMkE3OUQ2RjM1RDgxOUI3RDREMDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIx5QtJhHrkUcoGd/lU1wcVqQe
3ksRUKyU1yg5KbkE0/Q5S1eEVIxnKR3dGQVMmup7v40q95lsEuW+i2OPob65BXfC
v0LBNPdC5XKlYuhoyUjoUONAqWpfFfYuv7qgsPLZNNEWlo4v9tu+1jo+DPRSvD+T
A1dOruUjwYLDvvQ+fom6V4TYBZEGnc4y9w2OuogrNpzddLFySzFv+iosD2H7mDGR
ngNp4AwfhKJVm0PW9CM3ZYK2FYqPIBIriucvrtdUR0onWnJ6VORTrHNVeBNJghpA
p5DDgDwuD96kc3aYbwj3PwxbgQ4liSxl4OGHiWGPsobsPxewrPXvwNg12wbLAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQU0M2NBjo42DVtkyp51vNdgZt9TQMwHwYDVR0j
BBgwFoAUU6KqFgHMCSFEYdA8p3HtUOwdYyUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4
NzU1LzUvNTNBMkFBMTYwMUNDMDkyMTQ0NjFEMDNDQTc3MUVENTBFQzFENjMyNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1U2S3FGZ0hNQ1NGRVlkQThwM0h0VU93
ZFl5VS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMTFlNDdjNC0w
MmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNS81M0EyQUExNjAxQ0MwOTIxNDQ2
MUQwM0NBNzcxRUQ1MEVDMUQ2MzI1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHOnpANrnlAi2O2uFsiF1
gzbgd06VMYidiy4v9a+SJ1WP/OUkMZDSqRFxyrv/bEV4e861ojZoCJB45a3p1ZOR
hmGpOi48j3nmQ+UcczWdMWSECYvp/2G0hehbsQiyfE39d7TMUV/3bckdL44p20b0
KrHQYyljt/zUqdJJ1mcYYPyIPqkvsOqT5KfcR+mQcpRidz2F39BOKz7Ix8mxiWSH
efEEL6kjGeC9ykznGAdIxb9eLPcDFhRkArE8MtJ8yev7OpuebqLacHAw+8RgxhCS
mq62GZuyE0WNGCVtaiDtNA0wMLQSfvWg8yjayvv9MCbfOjHMbbsOJeXLS529xbRk
aw==
-----END CERTIFICATE-----
Generated at Thu Jun 25 08:29:21 2026 by rpki-client