Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: 8M/qHAmemE4VRrWie9nKolWDfdHKLO7DxxJnt5M2E/s=
Subject key identifier: 40:87:67:4E:F8:A3:EC:E8:5B:E8:6D:CB:AA:26:AF:8C:05:29:09:FC
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019EC337A838CDE76C6785A581C748F1E08B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 05BA
Signing time: Sat 13 Jun 2026 23:01:04 +0000
Manifest this update: Sat 13 Jun 2026 23:01:04 +0000
Manifest next update: Sun 14 Jun 2026 23:01:04 +0000
Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: 5lnnrNE91+uWoI76r97lCU8kjV8OpIrAILKEz/q7CgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:a8:38:cd:e7:6c:67:85:a5:81:c7:48:f1:e0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Jun 13 23:01:04 2026 GMT
Not After : Jun 14 23:01:04 2026 GMT
Subject: CN=4087674ef8a3ece85be86dcbaa26af8c052909fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:32:58:77:b4:7a:39:97:d6:63:3e:ad:08:1f:
98:31:29:b8:4f:c6:a4:9c:7f:34:ca:68:30:93:46:
52:83:b8:22:d8:63:5a:6d:a0:76:37:17:7e:67:5e:
9a:e3:ac:ca:86:45:cd:28:4f:84:8d:e3:fc:9f:42:
06:50:e8:25:67:01:22:c4:4c:5f:24:7d:b8:52:bc:
dc:ab:1c:04:6e:e5:45:2d:e8:37:31:85:71:d7:74:
01:66:3c:25:6d:87:14:3b:57:44:62:99:59:bb:c7:
a5:bd:80:b1:38:e4:86:9b:43:ad:88:5b:30:b7:cc:
ba:37:6c:a2:6b:9d:53:85:18:a0:37:b2:91:9c:8e:
f5:37:2d:5a:59:61:54:3b:02:63:60:21:d7:b0:7c:
21:f2:a4:f8:e5:11:1c:54:be:27:87:ec:c3:64:5d:
65:c2:74:70:8c:c1:65:10:66:82:8a:f3:f4:cc:bd:
96:07:95:be:60:29:6b:7e:44:da:27:bb:4d:22:02:
90:51:bb:c4:73:21:26:c6:fb:14:85:5b:80:a5:90:
f7:cd:de:dd:d1:70:cc:95:72:6f:53:95:10:1e:1f:
74:c6:a6:3a:d8:e1:5e:0c:bd:c4:4d:d5:b4:26:6d:
ae:cf:00:85:fe:02:9a:23:48:69:ea:16:03:27:1b:
20:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:87:67:4E:F8:A3:EC:E8:5B:E8:6D:CB:AA:26:AF:8C:05:29:09:FC
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:56:82:da:3e:45:c5:14:32:75:ae:87:1a:e6:34:9d:f1:73:
45:bf:72:d1:2f:af:c3:5d:bc:a6:df:aa:54:25:94:2c:92:6d:
94:75:81:6d:05:3a:f2:d6:ce:a1:4b:8e:8f:10:ff:5c:7e:3b:
8e:46:d7:dd:f6:48:3f:68:79:62:87:37:8a:b6:2e:26:c5:17:
a1:80:c5:22:f4:4b:3f:0f:17:f6:e6:f6:fc:ba:5b:5e:4d:4c:
d1:31:f2:3f:08:30:0e:c3:81:cf:0b:fa:c9:ef:70:47:b9:db:
22:86:d6:71:75:4c:c1:81:4b:00:c6:ae:47:b0:26:65:f6:43:
d0:bf:9b:63:fe:11:3c:5b:41:90:21:81:f1:bc:31:72:37:a3:
bd:fe:e4:23:88:c0:85:a3:e3:f3:22:e1:62:64:ee:a4:db:80:
43:0a:1b:63:97:4f:83:e8:27:63:1b:a3:f2:12:1d:4b:e4:ac:
40:dc:de:27:62:e4:e3:e4:31:d8:85:4e:69:8d:d9:b6:9e:c0:
a1:fb:51:3f:d5:34:e8:05:87:a4:95:f6:b4:50:6c:d5:0d:aa:
1f:4a:54:8f:a5:c2:fe:9f:d4:68:5f:71:7a:ae:95:fb:25:0a:
ec:39:26:97:b9:9b:c4:a2:e9:4c:22:5b:f5:53:cb:b5:81:25:
8d:f1:d3:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:31:52 2026 by rpki-client