Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
File: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft (raw, json)
Hash identifier: MW5TUjahCxYmpElXPm0EVp0IONcISzvvzkbOmi8Ct1U=
Subject key identifier: 34:EF:E4:3D:93:65:E2:6D:FB:76:F4:CB:69:1B:DC:94:60:D3:65:D1
Authority key identifier: 5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
Certificate issuer: /CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Certificate serial: 4AE596E25638C4FA1F95B25B210D8857545B4E45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
Manifest number: 0236
Signing time: Tue 04 Nov 2025 10:44:01 +0000
Manifest this update: Tue 04 Nov 2025 10:39:01 +0000
Manifest next update: Wed 05 Nov 2025 13:09:01 +0000
Files and hashes: 1: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl (hash: VOpQZcVn8QRO12fpR2BjFqS7lSjiFq+kdvCSBIrlUqw=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:e5:96:e2:56:38:c4:fa:1f:95:b2:5b:21:0d:88:57:54:5b:4e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Validity
Not Before: Nov 4 10:39:01 2025 GMT
Not After : Nov 5 13:09:01 2025 GMT
Subject: CN=34EFE43D9365E26DFB76F4CB691BDC9460D365D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2d:dc:b4:71:68:35:19:36:b7:6b:e8:2d:48:
ac:94:69:90:a6:46:4a:53:7a:b4:ca:58:a8:58:6a:
c7:3e:3f:b9:b0:09:d0:5c:7c:05:34:ad:df:1e:64:
91:e8:7b:19:19:06:86:22:8b:d3:35:e8:5c:39:b1:
18:1a:ce:da:49:ab:09:1c:bc:d9:d2:db:06:e3:36:
27:6c:07:a8:f3:48:a5:76:2d:ce:17:79:17:fe:8d:
5b:3a:80:71:16:5e:f3:bf:ab:9e:97:ad:47:e0:51:
6d:cb:60:b8:90:59:d9:75:1f:e2:09:db:a8:7f:a8:
74:2c:f8:df:4b:76:d8:da:a7:86:83:62:52:0d:1f:
98:d7:d1:59:33:27:57:d5:5a:d8:a8:53:3e:39:5b:
00:dd:06:34:b9:7a:4e:17:e2:7a:9b:f4:c8:cf:20:
19:11:37:d6:16:43:82:38:5c:c7:9f:6e:f9:df:6a:
16:92:4a:61:db:1d:61:15:58:2c:40:3d:68:7f:2b:
a9:5b:42:0c:3f:0b:23:d1:85:43:b7:af:a0:bf:57:
fa:ec:fc:50:12:e4:13:db:98:96:c8:55:ce:32:a9:
3d:d5:be:d2:f3:da:ef:56:4d:dc:e1:f9:57:0b:64:
13:c4:23:c3:47:a5:00:0a:88:b2:64:3c:a2:9f:b2:
25:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EF:E4:3D:93:65:E2:6D:FB:76:F4:CB:69:1B:DC:94:60:D3:65:D1
X509v3 Authority Key Identifier:
keyid:5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:55:e8:49:52:c9:55:3d:20:bd:d1:34:ce:30:67:3c:9d:eb:
df:7c:d8:d8:e9:98:65:39:97:d9:62:9b:91:a8:a0:fa:fd:39:
ba:15:80:b3:79:4b:ae:23:68:21:61:b3:14:6b:bd:fe:2a:71:
55:88:54:ac:3f:c6:20:dc:82:05:ef:a1:e1:d2:6a:fd:f0:a7:
d5:2f:6c:7a:ff:f3:95:dc:4c:67:ac:25:02:94:f1:b6:b7:8d:
8b:fb:c2:a2:15:95:04:fc:d3:98:96:3d:46:15:94:d0:74:17:
b0:25:df:79:77:5e:07:58:25:e7:e6:a1:25:10:87:3a:a9:a3:
d0:ed:4b:d5:f7:0a:5d:40:d0:ba:19:69:58:2b:e8:d0:19:50:
39:19:33:20:76:94:48:7f:25:a2:1d:43:f9:9c:fb:f7:7d:10:
2f:1f:81:9f:71:dd:82:1c:ba:f3:43:0f:4c:2d:08:8f:39:d5:
1b:7a:17:d0:fe:32:ea:04:e7:48:30:fb:7e:33:7a:80:b8:da:
d7:88:f5:78:0b:44:ed:fa:c8:0a:e5:3f:0c:bb:a0:db:65:f6:
a0:3c:9f:91:56:5d:59:21:dc:95:e1:54:e6:7f:81:02:1a:e3:
7a:dd:02:38:61:c5:4b:20:31:5b:2f:e2:17:cf:75:55:33:77:
11:e4:b9:5f
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUSuWW4lY4xPoflbJbIQ2IV1RbTkUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRiZjgxMWU1MDRhNGZhMmMyOWQzYjRmMTFkZmI3MTM2
NDI4NzNkMzAeFw0yNTExMDQxMDM5MDFaFw0yNTExMDUxMzA5MDFaMDMxMTAvBgNV
BAMTKDM0RUZFNDNEOTM2NUUyNkRGQjc2RjRDQjY5MUJEQzk0NjBEMzY1RDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDELdy0cWg1GTa3a+gtSKyUaZCm
RkpTerTKWKhYasc+P7mwCdBcfAU0rd8eZJHoexkZBoYii9M16Fw5sRgaztpJqwkc
vNnS2wbjNidsB6jzSKV2Lc4XeRf+jVs6gHEWXvO/q56XrUfgUW3LYLiQWdl1H+IJ
26h/qHQs+N9Ldtjap4aDYlINH5jX0VkzJ1fVWtioUz45WwDdBjS5ek4X4nqb9MjP
IBkRN9YWQ4I4XMefbvnfahaSSmHbHWEVWCxAPWh/K6lbQgw/CyPRhUO3r6C/V/rs
/FAS5BPbmJbIVc4yqT3VvtLz2u9WTdzh+VcLZBPEI8NHpQAKiLJkPKKfsiWhAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUNO/kPZNl4m37dvTLaRvclGDTZdEwHwYDVR0j
BBgwFoAUXb+BHlBKT6LCnTtPEd+3E2Qoc9MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz
Zjk2LzAvNURCRjgxMUU1MDRBNEZBMkMyOUQzQjRGMTFERkI3MTM2NDI4NzNEMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hiLUJIbEJLVDZMQ25UdFBFZC0zRTJR
b2M5TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82NWVhZTc0NS04
YWM5LTRlNzEtYmM5NC1mY2IyNjE3MDNmOTYvMC81REJGODExRTUwNEE0RkEyQzI5
RDNCNEYxMURGQjcxMzY0Mjg3M0QzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoFXoSVLJVT0gvdE0zjBn
PJ3r33zY2OmYZTmX2WKbkaig+v05uhWAs3lLriNoIWGzFGu9/ipxVYhUrD/GINyC
Be+h4dJq/fCn1S9sev/zldxMZ6wlApTxtreNi/vCohWVBPzTmJY9RhWU0HQXsCXf
eXdeB1gl5+ahJRCHOqmj0O1L1fcKXUDQuhlpWCvo0BlQORkzIHaUSH8loh1D+Zz7
930QLx+Bn3Hdghy680MPTC0IjznVG3oX0P4y6gTnSDD7fjN6gLja14j1eAtE7frI
CuU/DLug22X2oDyfkVZdWSHcleFU5n+BAhrjet0COGHFSyAxWy/iF891VTN3EeS5
Xw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:02:22 2025 by rpki-client