Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
File: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft (raw, json)
Hash identifier: TFATUh6vNA3Cp7K87Rv3K0DovtSjuP7rgPXXTSFzk3c=
Subject key identifier: 8F:66:5D:27:44:67:7B:5A:36:30:89:51:35:F9:D8:8F:23:3A:EE:A3
Authority key identifier: 5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
Certificate issuer: /CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Certificate serial: 2E5E48244A9F8DBC489518C28810C20AB9DB497E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
Manifest number: 01F3
Signing time: Sat 09 Aug 2025 14:07:20 +0000
Manifest this update: Sat 09 Aug 2025 14:02:20 +0000
Manifest next update: Sun 10 Aug 2025 14:54:20 +0000
Files and hashes: 1: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl (hash: 3kHeE8dVv96PjnchiBxiVTto+HQT2W6TXM5jQjsHozI=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:54:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:5e:48:24:4a:9f:8d:bc:48:95:18:c2:88:10:c2:0a:b9:db:49:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Validity
Not Before: Aug 9 14:02:20 2025 GMT
Not After : Aug 10 14:54:20 2025 GMT
Subject: CN=8F665D2744677B5A3630895135F9D88F233AEEA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3a:bd:aa:10:a7:ba:21:87:3d:32:26:00:5b:
f7:10:e3:18:4f:ed:4b:de:f5:a2:20:f6:a0:9a:a0:
a0:27:f8:3b:20:3a:74:d4:d3:ac:c3:1d:40:dd:cc:
2a:a3:f4:97:a9:d3:5b:41:7b:bb:66:cc:9d:9b:56:
1d:9b:f0:10:f1:31:fa:f8:60:49:7a:c2:f3:79:ac:
a3:6d:15:a7:0f:07:db:8b:79:18:76:53:1d:e5:a4:
b4:9d:43:de:88:c3:46:c4:fa:bf:6f:96:87:da:a8:
fe:d4:81:6d:db:36:31:a9:24:cf:a1:e5:f9:73:d4:
03:c5:62:39:1c:e5:10:78:0b:61:bb:ac:c7:25:74:
dd:62:f2:aa:f6:9b:1d:e2:4a:e1:85:5e:4a:e7:33:
c8:6d:be:aa:da:12:ce:76:ee:2f:cb:e7:8b:27:ec:
53:2c:8e:a8:4e:f3:4b:33:4a:00:65:03:41:60:7f:
f2:35:2e:2d:e0:2f:26:c0:bb:29:a5:44:ef:02:9c:
a6:c8:15:fa:b6:e1:5d:c4:70:7b:7d:41:c0:5f:6d:
1c:74:62:d1:2e:42:31:c0:45:c7:2e:4b:2d:01:47:
89:7b:4b:bd:99:00:01:0f:04:d4:14:2f:6d:ca:ca:
a8:d1:f3:8d:07:19:c8:99:94:48:68:76:fc:f1:8e:
5d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:66:5D:27:44:67:7B:5A:36:30:89:51:35:F9:D8:8F:23:3A:EE:A3
X509v3 Authority Key Identifier:
keyid:5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:9b:1c:19:36:62:48:ae:74:1e:be:2e:04:98:d8:5e:be:90:
70:44:28:23:4a:17:93:b9:cf:e5:78:fe:a8:6c:d2:fc:86:1b:
a6:9b:ac:38:3c:50:40:78:2a:bc:8c:fe:13:9b:10:04:8a:71:
e0:ec:89:61:61:ff:e2:29:a2:ed:12:91:a6:32:a5:b7:f0:d2:
16:f3:81:cf:d4:7d:d8:e1:9c:33:f2:d0:0c:eb:95:2f:7c:e2:
e5:85:dc:1c:96:b4:5b:e2:82:0f:5e:3d:ca:ee:1d:08:fe:c3:
c7:9e:ad:21:eb:4d:88:f7:4f:49:c1:95:95:8a:ce:77:60:ed:
2f:76:ab:c0:b9:7b:0b:2c:f0:59:20:f1:08:bc:5b:25:c4:11:
4b:51:d2:43:41:4c:0a:85:ed:92:62:9f:1b:60:d1:6c:b2:5c:
91:c8:88:9c:3f:b1:73:17:ef:8c:c7:a5:b4:12:c4:44:00:e0:
85:87:20:32:3a:0a:c7:ad:9e:6f:25:c5:03:44:df:ea:46:58:
ab:86:a2:32:eb:38:e2:6b:dc:8e:9e:6b:db:5a:1c:a2:df:f1:
21:f2:8d:97:9f:0a:57:97:61:66:f2:85:be:9b:74:2e:a2:b7:
fe:1d:48:d1:16:64:46:9b:73:60:a2:2e:f0:e6:1a:ba:d9:05:
d6:11:72:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:39:48 2025 by rpki-client