Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json)
Hash identifier: REC2aQ9U0IqdlDFuwXtAsYQwoGGHhWvzZHMXVJSapXE=
Subject key identifier: 53:AC:3B:98:6E:CD:69:69:B2:6C:68:6B:BB:2B:EF:9F:4A:2E:95:91
Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Certificate serial: 4F17A8222DC2FC9BA4F2F0006EFF3807E99975CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
Manifest number: 0231
Signing time: Sun 07 Sep 2025 02:28:39 +0000
Manifest this update: Sun 07 Sep 2025 02:23:39 +0000
Manifest next update: Mon 08 Sep 2025 06:18:39 +0000
Files and hashes: 1: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: N1VjM6AVIa1iMfDSdtCOLMyIrEfC5FDudru/5p9aqsw=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:17:a8:22:2d:c2:fc:9b:a4:f2:f0:00:6e:ff:38:07:e9:99:75:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Validity
Not Before: Sep 7 02:23:39 2025 GMT
Not After : Sep 8 06:18:39 2025 GMT
Subject: CN=53AC3B986ECD6969B26C686BBB2BEF9F4A2E9591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:8d:a7:be:77:cb:7b:ae:7f:f4:15:9a:9f:ba:
37:4f:ba:ad:fc:65:98:df:41:32:71:2e:6f:e9:70:
ec:23:61:71:56:33:74:0e:d7:b9:4b:45:60:d9:59:
b4:9c:88:96:94:12:e4:50:75:dc:69:62:cf:e8:a6:
1a:1c:9e:77:a6:04:b1:82:2a:38:32:f6:9d:af:c5:
34:ca:75:08:48:97:08:51:59:e5:da:4c:fd:2a:11:
de:a2:36:12:e9:75:63:4a:29:8e:aa:f6:a2:a0:e8:
55:ca:97:1c:d0:ad:a7:8a:47:8c:80:38:81:5d:cc:
87:99:1d:8a:86:3a:f6:b8:10:d8:3c:76:42:5b:a0:
57:a8:63:56:0f:37:a4:ec:17:15:ea:ce:e0:f4:b9:
f6:fe:c4:33:66:77:7c:a7:f9:e5:76:b0:a7:a4:dd:
7e:b6:7a:39:8e:ae:8f:b8:b9:9f:49:7a:2d:98:23:
43:d0:19:c5:48:6e:d4:90:65:af:2e:1d:40:ce:56:
b1:b6:ec:7b:7c:65:97:17:29:88:13:92:f7:64:28:
44:d5:1e:46:00:ca:fb:e0:b2:17:05:9a:21:50:06:
1f:65:ba:f8:ad:03:44:ed:c2:05:6c:aa:e3:cc:28:
95:4c:40:ca:c9:7f:05:22:07:8a:a0:e5:4b:c4:17:
ba:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AC:3B:98:6E:CD:69:69:B2:6C:68:6B:BB:2B:EF:9F:4A:2E:95:91
X509v3 Authority Key Identifier:
keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:9d:32:bf:41:63:77:ad:6d:13:5d:12:2d:23:2c:c4:1c:da:
f8:e0:c3:72:ea:b4:b1:3a:a9:58:84:80:d4:eb:25:ad:22:1d:
9d:b8:65:a1:dc:6d:73:fe:bb:40:17:f0:14:94:72:3f:24:70:
f6:b5:7c:64:fc:d3:c2:7a:ca:50:61:9c:06:1b:a9:18:99:df:
74:aa:81:a9:9b:0a:e5:68:62:87:cd:c6:05:6e:a9:c0:49:a4:
be:76:19:56:ee:c4:08:2d:39:65:0c:b4:ed:d3:f7:48:6f:db:
da:72:a4:60:33:c1:17:a8:07:61:d7:fd:dd:d3:7d:22:03:ea:
2a:da:64:05:60:58:b6:33:fb:d1:9c:47:13:08:62:db:e3:99:
2c:40:06:a2:fe:34:57:1a:84:6a:ef:30:16:7b:1f:19:4a:3e:
74:b1:7c:26:de:4a:38:ce:37:69:f0:ca:42:24:e4:1f:a5:fe:
f3:e4:9c:f6:35:cc:49:b9:2e:ac:a6:8e:06:5b:b4:b6:ca:a8:
ce:e2:c4:2f:2b:88:b9:6e:ee:34:ff:65:4e:f2:ef:75:de:60:
60:bf:a5:0e:2b:c6:d1:65:60:5c:f6:48:0d:61:e1:71:5f:d2:
f9:b4:47:64:8c:56:b6:f8:f2:d7:b4:2a:9b:21:ed:59:e2:ad:
25:65:b7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:09 2025 by rpki-client