Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json)
Hash identifier: IQXzUY2faqkv4TyFnCzAR1Fam9TwGUNt2VLHU/Z9loQ=
Subject key identifier: 78:DC:85:24:C3:5A:76:69:0D:E1:37:EB:ED:90:03:DC:FE:13:E0:54
Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Certificate serial: 4FA0B7F281F8B6A185492027FA441D7E153973DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
Manifest number: 026F
Signing time: Mon 10 Nov 2025 20:56:42 +0000
Manifest this update: Mon 10 Nov 2025 20:51:42 +0000
Manifest next update: Tue 11 Nov 2025 23:09:42 +0000
Files and hashes: 1: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: G3khch4evLb7sj6ulJldI2SUTWXIs8BzQ1rPYUiOFQI=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Nov 2025 23:09:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:a0:b7:f2:81:f8:b6:a1:85:49:20:27:fa:44:1d:7e:15:39:73:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325
Validity
Not Before: Nov 10 20:51:42 2025 GMT
Not After : Nov 11 23:09:42 2025 GMT
Subject: CN=78DC8524C35A76690DE137EBED9003DCFE13E054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5d:23:e7:34:06:8a:9d:66:69:0e:61:70:d2:
40:ab:5c:6f:ad:85:88:9d:35:b6:09:96:97:2b:40:
1c:7f:a9:35:20:bd:d4:da:04:11:18:79:d4:63:55:
f1:49:e7:46:25:98:1c:60:73:1d:4b:4d:f3:6b:83:
08:a1:c2:e4:26:fa:af:5e:e9:4b:58:30:0d:a0:3c:
30:2d:38:37:6e:63:fa:53:fe:ad:6f:61:8a:d5:64:
e6:42:ea:77:65:7f:44:be:4a:c1:aa:1e:58:1b:a3:
3e:16:4d:8c:ca:d2:72:95:6a:49:85:86:ed:d7:a8:
ed:83:be:21:9e:4c:8c:9a:db:71:d3:92:86:bb:29:
eb:f8:74:a5:8d:b1:b9:1a:6d:c2:ee:e0:32:74:67:
8e:23:ef:66:03:99:96:88:ab:ff:66:83:e1:8f:50:
60:07:62:b5:18:5b:6d:2c:77:47:a1:d5:fa:3d:f7:
e8:a6:8b:fc:6c:d2:41:0b:ca:50:09:21:bc:38:0d:
ef:a6:4e:0c:72:9c:e5:42:ee:83:80:43:10:45:d9:
a4:75:1e:32:89:db:dd:1c:c6:56:e3:2d:93:7c:2a:
82:f7:b0:3b:77:0e:e7:33:12:a1:a4:e3:53:99:7a:
48:36:b5:87:db:68:d1:f0:e2:cf:d5:6e:f4:f2:27:
d8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:DC:85:24:C3:5A:76:69:0D:E1:37:EB:ED:90:03:DC:FE:13:E0:54
X509v3 Authority Key Identifier:
keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:6b:91:71:ed:8f:2c:e3:04:a5:58:ca:45:7a:16:93:37:d2:
5b:e2:ab:49:69:25:7c:76:77:f4:36:6c:84:ee:fe:a2:d3:3a:
87:b8:de:fd:9d:05:ba:4a:4d:3c:d7:08:93:91:3c:3c:0a:f0:
5d:fa:72:64:d0:5e:90:49:72:4b:bd:70:59:28:6f:e2:08:0d:
52:f3:99:59:3e:8f:aa:5f:ac:9e:01:05:ca:8d:d6:e5:61:7e:
2a:55:fa:d8:fd:1d:e1:fc:a6:15:d8:90:48:cc:20:24:60:24:
0d:39:3d:d6:73:2c:d2:1f:c4:db:09:0c:a1:83:f2:b0:a8:e3:
90:09:53:82:cf:94:76:4e:6d:cb:f3:5b:38:18:bd:79:cc:c0:
45:b4:3a:0a:21:88:67:b9:a5:60:6e:59:bd:cd:1c:b8:b3:d3:
18:2e:27:9d:ce:ca:6e:f4:5e:f1:c1:6e:ed:0a:76:c9:57:50:
e5:82:c2:a7:4d:27:e8:ee:cd:b5:01:a7:81:58:3c:7d:ce:39:
3a:ea:bc:a9:d4:2e:d5:d7:ac:6e:6e:1b:24:a0:a7:96:ff:ad:
47:d2:db:3d:13:b8:dc:7d:03:b1:05:fa:35:64:ee:18:0b:f2:
7c:88:5d:43:e9:f9:90:61:21:a4:e5:d3:bd:e0:26:fb:34:7d:
e5:b4:34:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:47 2025 by rpki-client