Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6cfd9a2c-87f1-48a9-b6ea-28ad097b75d3/0/D0E968AC84894210B3D280EF43830657F28075D6.mft
File: D0E968AC84894210B3D280EF43830657F28075D6.mft (raw, json)
Hash identifier: B5VYgIcgQMXHFYl7R34zT2sS/MzlzjylZcgttQOrr60=
Subject key identifier: 97:B9:9D:5A:EA:EB:A9:C0:4E:1F:B9:02:EF:93:90:1B:0F:B1:85:41
Authority key identifier: D0:E9:68:AC:84:89:42:10:B3:D2:80:EF:43:83:06:57:F2:80:75:D6
Certificate issuer: /CN=d0e968ac84894210b3d280ef43830657f28075d6
Certificate serial: 17EE25ED969CE4F884221B47FB4728CCDD5B8BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OlorISJQhCz0oDvQ4MGV_KAddY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6cfd9a2c-87f1-48a9-b6ea-28ad097b75d3/0/D0E968AC84894210B3D280EF43830657F28075D6.mft
Manifest number: 34
Signing time: Tue 12 May 2026 07:19:19 +0000
Manifest this update: Tue 12 May 2026 07:14:19 +0000
Manifest next update: Wed 13 May 2026 08:08:19 +0000
Files and hashes: 1: D0E968AC84894210B3D280EF43830657F28075D6.crl (hash: bySjmHmCT7JIKqQKTIWzexHGOyvlbfi/uSoqkQECZXM=)
2: AS201398.asa (hash: n2wkwGrf3QROcsDyInpQ0Xfd7WdYDokAiwGbN4VXzkE=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6cfd9a2c-87f1-48a9-b6ea-28ad097b75d3/0/D0E968AC84894210B3D280EF43830657F28075D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/6cfd9a2c-87f1-48a9-b6ea-28ad097b75d3/0/D0E968AC84894210B3D280EF43830657F28075D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OlorISJQhCz0oDvQ4MGV_KAddY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 08:08:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:ee:25:ed:96:9c:e4:f8:84:22:1b:47:fb:47:28:cc:dd:5b:8b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e968ac84894210b3d280ef43830657f28075d6
Validity
Not Before: May 12 07:14:19 2026 GMT
Not After : May 13 08:08:19 2026 GMT
Subject: CN=97B99D5AEAEBA9C04E1FB902EF93901B0FB18541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3d:b3:4c:27:23:11:61:a6:f3:32:93:aa:e3:
16:c3:d8:80:22:fc:59:96:b3:5d:0e:29:e0:bf:64:
79:e2:57:21:9f:1e:f0:b9:f9:ee:e2:2f:5e:e1:1f:
86:c0:79:f2:48:9d:77:a9:75:b0:4b:f2:ff:04:22:
00:82:b6:be:7c:49:f4:06:75:28:91:34:3e:40:8f:
f6:74:1f:87:d0:c1:64:de:92:de:d6:87:48:0e:43:
5d:f8:9b:0f:b1:53:d0:68:81:3d:d7:07:2e:54:81:
25:8f:2d:5d:4b:5d:67:e5:f4:f2:15:b3:03:50:76:
23:82:6f:69:e9:50:46:9d:06:af:d8:b8:70:3d:eb:
1b:61:46:77:07:73:a1:33:e8:b5:50:97:de:b3:97:
96:ed:cd:14:ae:fc:44:a0:87:24:71:ac:cd:56:cd:
d5:ae:58:bf:04:ac:45:59:51:36:7f:9f:95:00:38:
ab:1e:54:8d:71:60:ba:dd:2d:31:39:6b:a5:35:10:
ad:4e:96:4c:f5:88:ab:5c:ce:8f:f6:bc:57:6f:23:
38:8a:82:72:e2:76:60:a0:95:64:42:ba:2f:85:6b:
0b:f1:03:44:9d:59:b8:d1:44:ef:fd:55:72:27:d2:
a6:70:32:3b:e7:b5:9a:f9:74:f9:ae:8c:86:40:75:
95:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B9:9D:5A:EA:EB:A9:C0:4E:1F:B9:02:EF:93:90:1B:0F:B1:85:41
X509v3 Authority Key Identifier:
keyid:D0:E9:68:AC:84:89:42:10:B3:D2:80:EF:43:83:06:57:F2:80:75:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfd9a2c-87f1-48a9-b6ea-28ad097b75d3/0/D0E968AC84894210B3D280EF43830657F28075D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OlorISJQhCz0oDvQ4MGV_KAddY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfd9a2c-87f1-48a9-b6ea-28ad097b75d3/0/D0E968AC84894210B3D280EF43830657F28075D6.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:f5:77:88:c6:c4:53:ae:94:6c:21:11:a6:8f:96:4e:a9:69:
80:39:cd:b5:34:16:7d:26:18:67:25:66:9e:4a:86:bc:ff:04:
93:26:8e:dd:f5:b8:5a:b5:dc:a0:0e:55:08:cf:f9:50:84:3c:
de:27:46:df:40:f7:db:e3:39:eb:89:1b:dd:26:e0:66:56:68:
80:1d:09:0c:e8:e7:28:7c:bb:ac:3c:9c:58:15:c7:b3:16:20:
e1:fd:e3:35:a5:9a:df:69:72:6d:ee:27:24:51:86:66:80:97:
52:b4:ef:ee:d5:f6:a0:25:48:49:96:1b:37:b6:1a:b4:bd:bc:
6d:14:bb:2c:85:fa:a5:d0:80:03:9e:cb:1d:8b:23:4f:fc:c3:
21:83:75:1d:ab:69:b0:6d:59:d9:a6:68:cf:24:57:7c:b4:51:
f6:22:84:fe:3c:be:a7:b2:97:05:59:0a:05:ca:98:93:12:31:
29:2e:09:45:88:a2:7d:e2:4b:97:05:69:74:b7:a6:8f:69:58:
bd:02:6e:eb:ec:5a:05:cf:04:47:10:12:27:e1:bd:04:98:3b:
55:dc:89:f9:66:82:e5:b2:6c:75:62:b5:82:3e:63:ef:94:39:
66:c0:0f:d6:b5:d1:c5:c5:67:01:35:a3:1c:fa:e6:6e:66:a4:
20:81:96:09
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUF+4l7Zac5PiEIhtH+0cozN1bi6wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDBlOTY4YWM4NDg5NDIxMGIzZDI4MGVmNDM4MzA2NTdm
MjgwNzVkNjAeFw0yNjA1MTIwNzE0MTlaFw0yNjA1MTMwODA4MTlaMDMxMTAvBgNV
BAMTKDk3Qjk5RDVBRUFFQkE5QzA0RTFGQjkwMkVGOTM5MDFCMEZCMTg1NDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsPbNMJyMRYabzMpOq4xbD2IAi
/FmWs10OKeC/ZHniVyGfHvC5+e7iL17hH4bAefJInXepdbBL8v8EIgCCtr58SfQG
dSiRND5Aj/Z0H4fQwWTekt7Wh0gOQ134mw+xU9BogT3XBy5UgSWPLV1LXWfl9PIV
swNQdiOCb2npUEadBq/YuHA96xthRncHc6Ez6LVQl96zl5btzRSu/ESghyRxrM1W
zdWuWL8ErEVZUTZ/n5UAOKseVI1xYLrdLTE5a6U1EK1Olkz1iKtczo/2vFdvIziK
gnLidmCglWRCui+FawvxA0SdWbjRRO/9VXIn0qZwMjvntZr5dPmujIZAdZVNAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUl7mdWurrqcBOH7kC75OQGw+xhUEwHwYDVR0j
BBgwFoAU0OlorISJQhCz0oDvQ4MGV/KAddYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmNmZDlhMmMtODdmMS00OGE5LWI2ZWEtMjhhZDA5N2I3
NWQzLzAvRDBFOTY4QUM4NDg5NDIxMEIzRDI4MEVGNDM4MzA2NTdGMjgwNzVENi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBPbG9ySVNKUWhDejBvRHZRNE1HVl9L
QWRkWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82Y2ZkOWEyYy04
N2YxLTQ4YTktYjZlYS0yOGFkMDk3Yjc1ZDMvMC9EMEU5NjhBQzg0ODk0MjEwQjNE
MjgwRUY0MzgzMDY1N0YyODA3NUQ2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATfV3iMbEU66UbCERpo+W
TqlpgDnNtTQWfSYYZyVmnkqGvP8EkyaO3fW4WrXcoA5VCM/5UIQ83idG30D32+M5
64kb3SbgZlZogB0JDOjnKHy7rDycWBXHsxYg4f3jNaWa32lybe4nJFGGZoCXUrTv
7tX2oCVISZYbN7YatL28bRS7LIX6pdCAA57LHYsjT/zDIYN1HatpsG1Z2aZozyRX
fLRR9iKE/jy+p7KXBVkKBcqYkxIxKS4JRYiifeJLlwVpdLemj2lYvQJu6+xaBc8E
RxASJ+G9BJg7VdyJ+WaC5bJsdWK1gj5j75Q5ZsAP1rXRxcVnATWjHPrmbmakIIGW
CQ==
-----END CERTIFICATE-----
Generated at Tue May 12 22:02:56 2026 by rpki-client