Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
File: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft (raw, json)
Hash identifier: Nf1QeNvlAW6armVW3pvyzlkS0OWwvlk7McC6sxmES3g=
Subject key identifier: 12:5C:32:A3:DA:67:37:5B:D1:60:D5:FC:E6:77:A8:4B:DD:6F:AF:04
Authority key identifier: 5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
Certificate issuer: /CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Certificate serial: 58DA712EC39C2F2749FA25CF4B1D87E03D411365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
Manifest number: 030F
Signing time: Thu 16 Apr 2026 23:57:52 +0000
Manifest this update: Thu 16 Apr 2026 23:52:52 +0000
Manifest next update: Sat 18 Apr 2026 00:50:52 +0000
Files and hashes: 1: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl (hash: JcO2EPyG/3Iqt9IGa2P+xFQQQCZFiRFSEH+CNC55z8Q=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:da:71:2e:c3:9c:2f:27:49:fa:25:cf:4b:1d:87:e0:3d:41:13:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3
Validity
Not Before: Apr 16 23:52:52 2026 GMT
Not After : Apr 18 00:50:52 2026 GMT
Subject: CN=125C32A3DA67375BD160D5FCE677A84BDD6FAF04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5f:0e:10:70:eb:3c:79:6e:18:9f:87:65:65:
1c:ef:7b:7a:0e:45:15:a3:35:bd:7f:45:2c:f1:33:
00:de:6d:64:43:52:81:7d:db:ed:43:ba:80:7c:a4:
5b:55:70:a9:52:3b:4a:be:6d:eb:7f:5d:49:9f:03:
8d:ba:88:1a:08:3e:63:e8:25:ab:80:4d:fb:e2:0f:
5f:80:9c:c2:6b:8b:a9:ff:b4:d2:2b:97:e3:71:e2:
4f:46:51:74:6d:a6:6a:e8:ad:f8:9d:16:5a:32:53:
39:d0:58:cd:29:77:9a:2e:40:d8:b7:41:a3:53:63:
9e:ef:d5:71:fe:3f:58:f7:87:be:48:c6:59:e6:df:
be:68:ac:c2:af:ba:f8:ee:2a:4f:f9:1d:35:88:bb:
66:75:ac:00:98:8e:87:ec:86:bd:dc:c9:a2:3a:0f:
39:ad:f6:b7:a1:c5:cf:73:43:ac:87:16:68:d7:43:
0c:5c:1c:32:85:fb:2f:55:fb:d2:67:bb:80:75:b6:
bf:06:2d:47:a1:f2:7f:05:13:88:bc:fa:9f:35:2d:
19:20:e6:71:d5:e0:0d:3c:2c:6c:79:66:04:ad:cb:
fc:f5:5c:bb:96:e8:2b:57:9b:bb:27:3c:c2:18:0c:
f3:f9:55:25:60:74:4a:ef:61:26:9e:98:2a:23:fa:
e9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5C:32:A3:DA:67:37:5B:D1:60:D5:FC:E6:77:A8:4B:DD:6F:AF:04
X509v3 Authority Key Identifier:
keyid:5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:4e:fa:7b:cf:97:a6:17:67:76:6d:36:cd:d1:20:5d:68:04:
98:fa:63:35:1c:1c:4c:23:71:f1:9f:e8:21:ff:db:51:ed:cd:
4b:e4:66:80:b5:0c:bc:63:c4:56:fa:b7:c5:ab:da:6a:08:ec:
34:0d:14:01:8e:de:5e:8a:e1:67:fb:ed:77:c5:87:86:7b:3b:
2c:45:b9:3e:6e:25:90:64:b3:7e:b0:9b:61:64:ad:28:26:67:
95:7b:90:a8:9a:fd:0a:a6:f5:61:b0:59:16:b0:a9:d5:be:1a:
23:77:a0:61:a3:df:9b:8c:3d:47:70:2c:19:82:87:a6:94:d8:
9a:9e:5f:68:75:d1:8f:ce:70:ad:99:21:35:8d:a5:52:e5:2f:
26:29:30:c4:d9:7e:0d:12:38:45:00:7e:21:46:1a:49:8b:a2:
66:fa:95:45:98:57:6f:94:c8:ca:22:9f:77:57:d5:6c:61:86:
fb:17:61:8a:26:a8:75:ee:8e:af:0e:ae:dd:84:12:b7:da:bf:
6f:35:25:17:1b:b6:8f:84:42:38:6a:e2:ec:ea:bd:0d:97:d9:
73:8c:2e:3d:3e:ce:c1:02:6b:45:24:d2:cb:06:75:01:ec:1b:
10:95:7e:84:3a:89:d6:c4:b8:73:9c:bd:b8:18:13:a3:16:8b:
e2:e3:56:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:10:34 2026 by rpki-client