Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: 5Xh7b2bYQhIgGQim1Ra4a9Z18rZynHp6Ea4qc2XgkA4=
Subject key identifier: 77:0E:FC:00:C4:E9:EE:F4:D0:2F:6D:8D:E5:EC:39:D6:A2:7F:0F:4B
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019D0AE7FF9501580FA71F7EBAFF9D7B130D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 04D6
Signing time: Fri 20 Mar 2026 11:01:09 +0000
Manifest this update: Fri 20 Mar 2026 11:01:09 +0000
Manifest next update: Sat 21 Mar 2026 11:01:09 +0000
Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: cVpDpYpnUo9iEg7b07ooZHl2s5xFZpkFYjBFt0v79oM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 11:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0a:e7:ff:95:01:58:0f:a7:1f:7e:ba:ff:9d:7b:13:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Mar 20 11:01:09 2026 GMT
Not After : Mar 21 11:01:09 2026 GMT
Subject: CN=770efc00c4e9eef4d02f6d8de5ec39d6a27f0f4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8b:2d:48:80:2e:1b:29:ed:91:ea:22:4c:60:
90:f4:50:7b:1a:38:25:9d:df:7e:73:a0:16:3e:bd:
72:5b:11:83:e2:2c:40:e4:6a:10:ba:58:9e:b4:9d:
8c:0f:00:d5:37:4d:86:84:be:09:81:aa:39:6a:16:
52:2f:63:68:51:a6:ed:49:07:16:4f:32:f6:0b:87:
55:41:f2:88:c1:f5:44:3d:66:b9:e5:1f:a7:65:21:
26:1c:f5:fd:38:1b:00:80:e6:16:30:68:92:fe:2b:
4d:84:ac:b0:e7:00:14:ee:3a:a9:0d:e5:b6:8c:48:
13:76:51:5c:a3:00:54:87:31:d9:18:d5:03:82:50:
74:3a:03:c9:21:b1:d7:72:5f:6c:72:d4:04:9f:46:
3a:0a:5e:5c:2d:6b:d4:ad:e1:40:d1:98:a4:94:16:
4c:9d:bc:41:49:23:bf:3d:e9:5d:4a:01:44:75:22:
5a:1b:1d:03:b1:68:4d:59:97:b9:7f:28:21:1d:62:
90:df:7e:3c:42:84:55:6a:f4:53:dc:1c:53:d8:70:
23:05:7f:41:e5:e8:9f:11:82:94:72:67:5e:f7:7a:
7a:75:92:c5:0e:01:f8:02:b0:be:43:b4:4e:a3:52:
b9:fd:e7:a3:d1:9a:11:70:ba:03:9a:c0:7c:9e:eb:
0a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0E:FC:00:C4:E9:EE:F4:D0:2F:6D:8D:E5:EC:39:D6:A2:7F:0F:4B
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e4:15:36:3f:c2:f5:55:7c:31:af:2d:db:08:8d:b0:df:c1:
f0:1a:68:61:b1:0e:7a:7e:f7:fe:ea:8e:1a:a0:cc:f8:b4:8a:
f0:4d:c9:06:60:db:bb:37:ac:6c:77:20:d2:7e:32:ca:6b:96:
1b:5a:2b:e0:92:c0:d0:a8:55:2a:fb:d6:ba:ee:29:1b:7a:e3:
9a:a6:7f:c4:db:58:7f:56:89:1b:8e:46:f1:d4:38:41:81:bc:
0e:a6:c2:23:ce:ac:66:94:a2:e6:77:57:83:92:d9:2b:4a:26:
81:aa:90:49:08:08:76:da:10:d9:5b:90:2f:5e:24:41:2a:a3:
f4:f8:04:79:41:76:cc:64:1c:ea:76:37:f3:63:0e:2d:ba:94:
d7:20:10:64:97:7e:c9:cc:40:2d:4c:ce:d0:99:2a:9e:5e:fd:
8b:f7:7a:8e:b7:ca:04:50:0b:59:5c:44:d4:b5:ff:c3:97:0a:
71:63:01:20:5b:50:dc:98:cb:ce:a6:82:d5:54:04:67:e4:9c:
5c:ab:2b:91:66:36:03:e3:57:f6:3a:5b:a8:a6:c1:0e:cf:d3:
06:3f:36:ac:f8:0e:78:94:08:90:69:03:ca:62:05:5c:b0:6b:
70:bb:4c:7a:97:dc:83:cd:3d:66:f5:7d:e7:93:fd:fd:57:1c:
11:d4:da:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 21:38:13 2026 by rpki-client