Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
File: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft (raw, json)
Hash identifier: D/3CfKQkMjL/eFMTpMfbtqcmRV1SaH6o6mCClIUinRI=
Subject key identifier: 81:0F:F8:81:D1:2A:0F:80:13:CC:E4:F2:3B:C0:D7:93:FB:B3:F9:D8
Authority key identifier: 5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
Certificate issuer: /CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Certificate serial: 428F7F914249405FA3DB0A7C094FB8CB6085A2A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
Manifest number: 02D2
Signing time: Sun 01 Mar 2026 22:07:45 +0000
Manifest this update: Sun 01 Mar 2026 22:02:45 +0000
Manifest next update: Mon 02 Mar 2026 23:46:45 +0000
Files and hashes: 1: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl (hash: SugW48BkrmDApFnHI1g/yLGhhlI0Qg7ZnLfxDINnI4I=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:46:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:8f:7f:91:42:49:40:5f:a3:db:0a:7c:09:4f:b8:cb:60:85:a2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Validity
Not Before: Mar 1 22:02:45 2026 GMT
Not After : Mar 2 23:46:45 2026 GMT
Subject: CN=810FF881D12A0F8013CCE4F23BC0D793FBB3F9D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:4a:fa:73:42:bd:53:c3:6f:71:9c:02:d3:
10:b1:b6:b1:34:01:d4:07:99:eb:e9:d1:48:d0:78:
2a:78:c1:30:4d:42:11:29:a6:41:51:02:ff:b8:ac:
e6:7e:0e:11:f7:20:23:82:b3:9f:42:fa:b4:39:92:
3b:27:54:84:49:d2:ec:d3:84:12:14:fb:72:8f:7f:
81:e3:6a:01:ef:1d:8f:ba:df:4c:51:fd:e1:9c:6e:
1f:94:b6:61:12:78:21:b5:da:02:44:a2:21:40:89:
61:84:ab:66:e6:4b:72:12:51:3c:d1:07:c9:97:55:
85:04:39:ad:ee:a6:44:46:29:10:7e:c6:f1:e0:47:
7b:ee:cd:bb:e7:fb:ea:ff:31:06:87:3c:64:20:6d:
b6:9e:73:af:4b:1d:ef:20:1f:15:fa:e4:eb:6c:a7:
1c:6a:fa:1b:03:f9:63:d1:f0:8d:91:ca:f2:d6:e3:
7f:31:5d:42:39:ba:e7:25:d6:ed:6f:57:b6:b5:8f:
83:06:78:82:17:fd:89:d8:06:e9:f2:d8:04:92:83:
e3:39:f8:6b:13:d0:c0:47:3e:ba:d9:9f:e0:3c:12:
13:6b:a0:3e:08:46:98:53:be:ab:65:69:08:99:d5:
04:04:6b:66:2f:bb:97:15:81:a5:b2:d9:24:5d:44:
ac:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0F:F8:81:D1:2A:0F:80:13:CC:E4:F2:3B:C0:D7:93:FB:B3:F9:D8
X509v3 Authority Key Identifier:
keyid:5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:a8:31:14:85:1e:38:ee:46:e1:ca:d7:d3:d5:a7:2a:ec:f3:
f8:4b:a0:de:d7:ba:41:e7:8c:75:08:b5:a6:a3:e8:91:7f:c8:
5c:aa:76:3b:c7:53:90:30:e6:e5:3f:b9:2c:31:dd:cc:ef:a3:
52:1d:7a:6e:54:72:74:cd:19:ee:36:3d:d7:9a:95:cc:94:60:
64:7d:72:1d:9e:ab:b9:42:ba:b1:70:f5:79:ee:3b:31:87:b6:
6e:ec:2e:8f:36:7c:54:98:9a:13:1b:0e:59:4d:75:cf:76:0f:
f6:af:61:66:84:6f:16:bb:9e:0e:a3:89:78:a0:e4:fb:3e:55:
5d:5e:51:e4:1f:51:bf:bf:9c:ba:29:5d:76:e8:13:b1:14:cd:
45:b8:eb:f1:0c:f2:62:44:24:37:c5:e1:f0:0c:08:01:f6:fb:
cc:87:d4:09:8c:b7:5e:2e:1f:2a:83:36:44:70:c0:a1:fb:90:
81:5c:e0:00:f7:47:09:6c:7c:ba:4b:a7:54:7a:3d:31:e1:e0:
e6:cf:37:31:36:76:9a:03:c0:7a:cd:9f:5d:05:20:a5:3d:95:
04:be:8e:8f:d6:ae:67:b6:91:58:bb:0f:f5:9e:f9:be:c4:39:
a4:88:4d:08:71:16:63:3e:7a:ad:6d:70:34:00:6d:68:fa:5f:
19:0c:72:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:24:56 2026 by rpki-client