Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json)
Hash identifier: 05hUuR/E9nXRfNXXQl2nDonI1rr/Ro9uQDRjKQHAZ90=
Subject key identifier: E7:8A:D4:CD:64:03:C3:51:C3:73:1D:8E:F9:85:26:BC:36:FB:D4:DE
Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Certificate serial: 6E1D5492AC750201A24A183BC5B7160B04BACE8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
Manifest number: 0351
Signing time: Tue 14 Apr 2026 07:55:13 +0000
Manifest this update: Tue 14 Apr 2026 07:50:13 +0000
Manifest next update: Wed 15 Apr 2026 11:07:13 +0000
Files and hashes: 1: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: iEHyd9JvRE79M5VYgF8aaEUr15DLkrhD6vPBJGAPBEY=)
2: AS215171.asa (hash: gdJa6WG2GERDZaDbnz7OAqIN3lLaJy+y5wFkZsKkjzo=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 Apr 2026 11:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:1d:54:92:ac:75:02:01:a2:4a:18:3b:c5:b7:16:0b:04:ba:ce:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Validity
Not Before: Apr 14 07:50:13 2026 GMT
Not After : Apr 15 11:07:13 2026 GMT
Subject: CN=E78AD4CD6403C351C3731D8EF98526BC36FBD4DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b9:19:9d:07:23:b3:04:66:89:c9:b0:5e:65:
89:7f:61:e8:b6:1d:ff:bb:36:24:21:2e:9d:08:62:
8f:3f:e2:4c:c4:af:24:c6:c6:68:4c:64:02:92:38:
2c:bf:f0:7e:37:f1:18:5c:4f:a5:3e:a3:e6:77:39:
9a:4d:33:90:e4:4c:4b:ec:b6:b7:20:1f:ed:8a:14:
8c:d5:0d:70:16:6e:55:b2:2f:f2:73:7a:bb:bd:5b:
86:ed:20:87:9c:88:04:33:5d:c8:b1:06:01:da:4e:
1d:20:f9:53:7b:1e:94:ab:42:cd:ef:00:cb:13:d5:
8d:66:93:45:01:33:24:93:f4:b0:55:45:9c:46:9f:
c2:b8:b6:d7:07:bc:19:6b:fc:4b:e1:3b:b8:43:28:
02:54:79:94:95:70:18:01:39:bd:5f:77:f7:00:da:
f0:39:79:8f:ab:5a:96:77:60:0d:cf:7d:ed:7f:8f:
f1:06:0f:30:0b:e5:5e:98:ed:d8:a7:a8:0c:31:0e:
60:81:a1:3c:4d:99:e9:b4:0d:f5:5e:8b:ef:5b:8b:
d5:28:0d:1d:cf:61:b1:7d:88:59:f5:83:be:67:4b:
e1:3e:bf:17:a6:d0:a8:c8:64:83:01:41:6f:17:41:
45:2d:5d:b4:3a:07:70:af:eb:cb:e5:12:80:be:4f:
fc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8A:D4:CD:64:03:C3:51:C3:73:1D:8E:F9:85:26:BC:36:FB:D4:DE
X509v3 Authority Key Identifier:
keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:41:ab:5b:ee:28:f2:a3:e3:0a:4d:c6:fc:48:66:f8:53:5f:
ac:dc:41:02:4d:a9:b2:78:a8:09:6a:72:a9:b5:d4:a8:cf:90:
28:14:f2:65:43:64:0c:13:a0:35:70:8b:46:cf:6e:42:f4:59:
0c:82:f3:e3:24:88:c4:f8:cb:86:a7:32:09:28:ae:64:72:4f:
31:5b:19:16:46:b7:a7:28:db:1a:d4:e0:c3:9c:7d:2f:17:1c:
a9:fa:f9:d4:55:80:e8:1f:b2:c6:8b:8e:11:a7:03:80:8e:56:
2f:eb:8b:fc:99:4a:42:c1:7a:be:63:2c:16:37:f2:f9:ee:5f:
b1:d9:42:55:27:74:a6:c7:9c:0d:64:d6:76:c1:02:39:16:c8:
c3:bf:32:6e:78:12:ae:4f:03:25:2c:17:dd:fd:7a:f0:16:36:
52:f0:17:9a:5b:4e:55:47:3c:b4:4a:85:83:a8:ea:bf:8f:a5:
90:03:04:b7:08:3b:e7:de:05:92:f7:09:1d:72:75:45:8d:48:
ef:2f:30:9c:ac:8b:68:9d:93:35:31:5a:8d:0c:12:cb:bb:c8:
61:9e:c6:3a:4c:46:f9:38:43:a9:24:90:43:01:0f:52:36:3e:
84:5f:7f:cd:41:d2:7b:3f:af:85:9a:18:55:1e:cb:92:52:7d:
eb:01:a6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 14 23:44:29 2026 by rpki-client