Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: 2lny/92XR/R4C07u+SiQYb2gutXhKz/EkAud7V8uDvE=
Subject key identifier: 27:CD:D0:E8:0F:CD:DC:90:94:B8:2F:B5:96:5F:BF:2C:50:44:7A:34
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019CAC46EAB55243F8589415CE58E78CD0E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 04A5
Signing time: Mon 02 Mar 2026 02:00:54 +0000
Manifest this update: Mon 02 Mar 2026 02:00:54 +0000
Manifest next update: Tue 03 Mar 2026 02:00:54 +0000
Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: hOknpjYL0B68DiCmk7viQ+q8dMYBIyvajD9SzsYZd/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:ea:b5:52:43:f8:58:94:15:ce:58:e7:8c:d0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Mar 2 02:00:54 2026 GMT
Not After : Mar 3 02:00:54 2026 GMT
Subject: CN=27cdd0e80fcddc9094b82fb5965fbf2c50447a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d0:71:43:8f:2d:a9:2a:14:4d:ad:0b:70:88:
6d:00:95:56:9a:de:22:8a:05:52:bc:73:b3:cc:75:
e8:a6:1b:59:c7:98:65:9f:f3:8e:17:24:f2:dd:39:
f4:6c:46:bf:8a:47:e2:63:1f:d3:f1:83:d2:1d:8f:
7b:46:54:13:e8:9a:65:71:6d:dd:72:5d:6c:f2:fa:
58:27:3c:ae:b9:1c:b6:8d:54:d2:a5:f5:7b:39:36:
35:5c:8b:b0:0e:5a:d6:f7:37:9b:d9:67:3b:be:a3:
43:dc:57:84:c5:fe:34:c5:e3:66:87:25:9e:3c:70:
db:c8:87:32:ef:64:a8:fe:b6:ec:fd:67:e6:63:26:
c9:c1:37:e2:04:34:2f:d5:75:7d:20:08:86:3f:a4:
da:ed:51:da:15:59:c2:5c:24:84:27:6e:83:67:26:
46:0b:8d:a3:84:6a:38:11:9d:26:e4:f9:b2:3a:42:
d7:61:0a:17:70:b6:5d:fb:e2:2d:f1:fe:8f:3b:63:
a1:a7:e6:e5:10:95:7d:b0:a0:24:e5:05:ea:22:a2:
bc:cc:02:01:f9:80:66:56:36:09:7d:ea:a7:4f:db:
d6:22:94:d8:fc:1d:90:37:91:c0:85:04:f6:b7:90:
1c:94:c4:73:35:99:d9:94:f5:54:ed:ea:9d:6e:db:
ce:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CD:D0:E8:0F:CD:DC:90:94:B8:2F:B5:96:5F:BF:2C:50:44:7A:34
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:24:e3:f4:d8:10:4d:92:6b:ee:71:5c:b4:00:69:6b:b8:34:
5b:c2:5a:45:79:b5:f2:77:8d:75:8f:29:a1:d5:cf:51:d4:d7:
0b:06:ae:86:e9:d3:fd:ba:3b:ca:f3:4f:84:71:c8:2e:69:08:
b8:8b:2a:0c:4e:1b:f4:5e:94:0a:8b:0b:3f:df:cf:fb:e3:2d:
74:c6:fe:20:34:ac:9f:0d:60:19:e3:e5:cd:7a:5e:9e:7c:48:
29:97:00:5d:6e:a3:0d:d5:98:0d:61:fb:eb:24:27:6c:80:a8:
8c:8e:ca:6b:f3:a2:c0:c3:d2:cb:af:c7:71:4b:01:8e:d2:d7:
64:93:bc:b7:48:64:9c:f4:41:aa:20:19:e0:b7:b5:07:ac:f0:
ac:5d:7f:1e:3f:2e:34:d6:96:63:16:ac:7c:d4:48:2e:9e:ad:
aa:e0:a0:c7:8f:39:63:c3:f6:42:e2:d5:9d:a0:a5:93:c5:fc:
d1:94:a9:e2:04:5f:d4:3f:6f:f6:f0:3b:01:2b:c3:93:31:85:
35:29:e1:c2:4e:93:91:f3:5a:5a:73:7f:67:12:2a:8f:fa:54:
73:89:75:c5:e2:ff:13:42:c8:e2:69:86:a6:0f:02:a9:82:b1:
de:82:94:01:44:ba:3e:df:41:67:48:e6:bb:65:da:5c:b2:e4:
e8:8b:0d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:35:38 2026 by rpki-client