Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: jczNXvMnCo8Bad3OCqAOjeZ7G3hyHlQvVDxTrB8WReM=
Subject key identifier: 4C:56:9F:32:BE:03:D7:38:03:06:4E:9F:1A:04:A8:A0:4D:34:C4:C4
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019EDC53654242DBC3D60DF375ACB2BF4673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 05C7
Signing time: Thu 18 Jun 2026 20:01:53 +0000
Manifest this update: Thu 18 Jun 2026 20:01:53 +0000
Manifest next update: Fri 19 Jun 2026 20:01:53 +0000
Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: 0qFSxZ2DVl7AgkQs0AR5gGRVkHj1OcZUeSXQ6vriLrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:dc:53:65:42:42:db:c3:d6:0d:f3:75:ac:b2:bf:46:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Jun 18 20:01:53 2026 GMT
Not After : Jun 19 20:01:53 2026 GMT
Subject: CN=4c569f32be03d73803064e9f1a04a8a04d34c4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5c:22:9a:bf:46:63:49:24:f7:53:21:fc:d9:
bb:4a:e4:be:70:00:0d:eb:b9:21:81:33:6f:ea:7e:
b2:2e:9f:c2:50:22:be:68:70:fa:7a:b3:e1:13:55:
4a:55:ea:40:0d:1c:34:07:10:52:b5:7a:3f:94:ea:
d5:ce:fa:e6:ff:1c:3c:3e:52:a0:05:5e:6c:4c:56:
26:30:a4:04:87:1a:3f:5f:42:1f:19:07:3a:e1:c1:
f4:ca:1c:d1:9e:4e:a2:47:15:ae:fb:b8:fa:ec:37:
20:ad:54:3a:b7:22:51:0d:23:9b:9b:5d:57:f7:84:
f3:b8:6b:cf:df:61:f2:f9:93:d0:c7:df:a7:c7:f8:
65:18:a8:30:1b:0c:fc:01:51:25:a0:03:fc:5f:42:
6d:b8:25:98:78:8a:8b:03:7a:f4:5f:c0:93:bc:75:
5e:8b:35:67:51:5f:80:e3:35:cd:aa:d9:67:a4:19:
67:45:81:1e:99:5f:75:88:6f:f9:74:a6:2c:b0:b4:
9d:24:bf:0d:20:ef:d8:20:0a:80:76:56:1a:92:ac:
e3:17:9d:43:dc:d4:ca:0e:7c:69:02:3b:b9:cb:03:
6d:d7:b3:e4:27:65:ef:36:7f:f3:71:a0:2c:69:ac:
11:91:df:5e:76:59:68:03:52:92:97:11:dc:28:61:
f1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:56:9F:32:BE:03:D7:38:03:06:4E:9F:1A:04:A8:A0:4D:34:C4:C4
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:89:18:2c:2a:a7:f5:d0:71:be:48:93:e5:6c:6e:64:16:f5:
bd:6e:f6:0e:7e:d8:c1:44:eb:ef:7b:3a:f5:69:a2:5f:be:33:
d2:f8:19:30:86:77:9d:aa:7d:ae:4a:7b:fc:f1:cd:55:ae:c8:
53:cd:a0:df:e0:14:b7:a0:f3:17:c4:37:4e:73:64:b6:41:13:
4e:0a:8c:f6:23:a5:7f:91:d5:00:3a:21:dd:10:81:60:a1:8a:
f4:90:05:03:86:88:78:a1:c8:77:13:c3:71:af:26:73:55:e7:
11:16:9c:c1:be:6f:8b:b8:05:8e:43:8c:85:0c:ac:be:c6:86:
52:1d:fc:81:1b:d1:98:ff:73:3d:e7:a4:b7:2a:3f:4d:cf:af:
58:cf:55:b8:c9:fa:de:66:a3:e0:41:c2:56:ca:39:ef:39:36:
58:dd:a1:0f:8a:e3:ba:79:e5:45:9e:a2:30:b1:46:d3:d0:06:
10:d0:18:a6:e3:b3:2d:6c:57:db:ea:0d:0d:02:9f:f9:15:8b:
49:d3:f2:8c:be:d8:a4:35:c3:2d:89:10:7d:43:c0:3f:21:32:
ee:b8:3e:7d:e8:d2:2f:65:d6:fa:e3:ce:d9:f6:94:eb:c9:23:
7e:da:b4:cc:fa:96:01:f1:57:14:df:7a:fa:61:ce:ae:07:be:
dc:f3:e5:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7cU2VCQtvD1g3zdayyv0ZzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm
NTVkNzUwHhcNMjYwNjE4MjAwMTUzWhcNMjYwNjE5MjAwMTUzWjAzMTEwLwYDVQQD
Eyg0YzU2OWYzMmJlMDNkNzM4MDMwNjRlOWYxYTA0YThhMDRkMzRjNGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1wimr9GY0kk91Mh/Nm7SuS+cAAN
67khgTNv6n6yLp/CUCK+aHD6erPhE1VKVepADRw0BxBStXo/lOrVzvrm/xw8PlKg
BV5sTFYmMKQEhxo/X0IfGQc64cH0yhzRnk6iRxWu+7j67DcgrVQ6tyJRDSObm11X
94TzuGvP32Hy+ZPQx9+nx/hlGKgwGwz8AVEloAP8X0JtuCWYeIqLA3r0X8CTvHVe
izVnUV+A4zXNqtlnpBlnRYEemV91iG/5dKYssLSdJL8NIO/YIAqAdlYakqzjF51D
3NTKDnxpAju5ywNt17PkJ2XvNn/zcaAsaawRkd9edlloA1KSlxHcKGHxiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFExWnzK+A9c4AwZOnxoEqKBNNMTEMB8GA1UdIwQY
MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt
OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi
LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIokYLCqn
9dBxvkiT5WxuZBb1vW72Dn7YwUTr73s69WmiX74z0vgZMIZ3nap9rkp7/PHNVa7I
U82g3+AUt6DzF8Q3TnNktkETTgqM9iOlf5HVADoh3RCBYKGK9JAFA4aIeKHIdxPD
ca8mc1XnERacwb5vi7gFjkOMhQysvsaGUh38gRvRmP9zPeektyo/Tc+vWM9VuMn6
3maj4EHCVso57zk2WN2hD4rjunnlRZ6iMLFG09AGENAYpuOzLWxX2+oNDQKf+RWL
SdPyjL7YpDXDLYkQfUPAPyEy7rg+fejSL2XW+uPO2faU68kjftq0zPqWAfFXFN96
+mHOrge+3PPllQ==
-----END CERTIFICATE-----
Generated at Fri Jun 19 03:34:32 2026 by rpki-client