Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/0/CE964F98379F0320A7191E6D6788800535885928.mft
File: CE964F98379F0320A7191E6D6788800535885928.mft (raw, json)
Hash identifier: 7+nCcNKMuY4QUfC4mFrcYRBFREjhzCZgVrx23jHr10k=
Subject key identifier: 80:4B:DD:33:25:A8:75:A9:7B:11:C6:58:C5:52:51:C3:C0:F9:25:F0
Authority key identifier: CE:96:4F:98:37:9F:03:20:A7:19:1E:6D:67:88:80:05:35:88:59:28
Certificate issuer: /CN=ce964f98379f0320a7191e6d6788800535885928
Certificate serial: 0738986D700F7671CC7D7D8DD798EE1AF12AA9C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zpZPmDefAyCnGR5tZ4iABTWIWSg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/0/CE964F98379F0320A7191E6D6788800535885928.mft
Manifest number: 019F
Signing time: Sat 13 Jun 2026 03:14:48 +0000
Manifest this update: Sat 13 Jun 2026 03:09:48 +0000
Manifest next update: Sun 14 Jun 2026 05:47:48 +0000
Files and hashes: 1: CE964F98379F0320A7191E6D6788800535885928.crl (hash: tH/xRChgcOztBMWviq0V2BGDjlOwqSqos7auQLvhuz8=)
2: AS214955.asa (hash: Q8xewUCi/NeJj+8SeKwplh2UruSS6EWahrF4De9gRYA=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/0/CE964F98379F0320A7191E6D6788800535885928.crl
rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/0/CE964F98379F0320A7191E6D6788800535885928.mft
rsync://rpki.ripe.net/repository/DEFAULT/zpZPmDefAyCnGR5tZ4iABTWIWSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:38:98:6d:70:0f:76:71:cc:7d:7d:8d:d7:98:ee:1a:f1:2a:a9:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce964f98379f0320a7191e6d6788800535885928
Validity
Not Before: Jun 13 03:09:48 2026 GMT
Not After : Jun 14 05:47:48 2026 GMT
Subject: CN=804BDD3325A875A97B11C658C55251C3C0F925F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:87:09:23:3f:35:1b:9c:b7:d6:a3:98:5c:07:
45:4b:2f:39:4c:0e:d2:f4:58:56:f2:44:d4:62:48:
15:8d:62:75:37:fa:4c:05:2c:99:7d:8b:99:bd:26:
f6:00:7d:28:f6:7c:18:eb:83:3f:38:1c:66:bc:57:
78:af:67:3c:93:69:19:04:94:4b:b9:f6:73:35:3b:
a8:27:69:07:13:cf:80:a6:a0:3c:d7:15:c1:a3:ca:
bd:2f:d4:41:ac:56:3f:fd:19:9b:76:8b:bd:3a:1e:
ca:b6:de:a6:3f:ff:61:74:10:76:fa:24:41:93:f8:
a3:d9:58:67:1b:77:cb:65:ab:ea:c5:cc:a8:6e:f2:
4e:12:5f:3d:dc:f5:e9:0b:b7:86:74:2d:63:2d:40:
ff:4f:35:23:18:ae:49:31:b3:01:cf:3a:98:60:b6:
80:34:f1:06:3b:30:0f:da:ef:ad:b7:03:ee:dd:21:
60:4e:1a:a0:8a:e4:5e:64:e2:4d:63:4c:89:e3:5f:
7e:b4:92:d9:7e:f1:79:20:83:93:f9:1e:b7:84:69:
5a:f8:f6:ca:92:0c:9f:cf:70:f7:2e:50:6c:00:c9:
90:2e:ac:f6:05:c5:e8:f9:cf:51:3e:cd:45:8a:b7:
6f:22:d4:1d:36:10:60:ab:bc:7f:6a:41:61:21:db:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4B:DD:33:25:A8:75:A9:7B:11:C6:58:C5:52:51:C3:C0:F9:25:F0
X509v3 Authority Key Identifier:
keyid:CE:96:4F:98:37:9F:03:20:A7:19:1E:6D:67:88:80:05:35:88:59:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/0/CE964F98379F0320A7191E6D6788800535885928.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zpZPmDefAyCnGR5tZ4iABTWIWSg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/0/CE964F98379F0320A7191E6D6788800535885928.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:38:87:50:80:6d:e0:eb:93:1f:18:d8:44:20:cc:39:83:b5:
3b:77:b8:a1:b2:fa:86:65:6a:32:8e:68:43:37:51:53:8e:13:
07:73:d0:83:f3:2d:17:b0:28:38:29:52:df:36:d0:46:a7:6e:
bc:73:24:05:bf:c6:08:f6:ed:b3:06:10:c8:2f:9b:e6:77:4b:
3b:ca:56:5b:54:31:2e:8b:d9:62:fc:bb:f2:a0:69:ce:9e:86:
60:55:46:8b:7d:8c:6f:e5:42:13:68:f8:4a:4e:f9:82:4f:a5:
0d:f1:a1:3f:6e:01:a5:11:0e:1b:a1:b8:ef:32:ca:95:b3:1e:
07:6d:a4:a0:a4:6b:16:b6:f7:05:a3:4e:c6:d3:72:8f:68:2e:
c8:89:35:a1:e9:b9:68:50:77:4c:92:bc:e2:1a:2c:8b:9d:a3:
66:e6:88:28:a0:f6:50:72:c4:fc:eb:a0:58:0f:64:32:36:a2:
ab:3f:9a:89:32:0e:5f:fc:33:bd:3b:b8:8c:8c:06:f8:9e:60:
5f:49:17:fc:77:c0:91:05:7c:e1:ae:80:7b:d4:77:cb:db:71:
4f:0d:f2:bc:ec:7b:6a:65:08:32:24:e6:7b:7a:84:71:e0:7e:
d4:a3:f2:d7:ea:f6:ba:80:c1:07:bc:42:43:b9:57:76:87:76:
e0:02:88:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:21:05 2026 by rpki-client