Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: hwwlK2EgqJrLJvMDW9/jig3DOqKaj0keqHQ2R8sqeMQ=
Subject key identifier: 58:CE:62:AD:FA:A3:1C:54:F4:C6:71:3D:7F:4A:26:D9:8B:AC:C3:3B
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019D27E0781F2E387BCF92CFF8DA9215C4A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 04E5
Signing time: Thu 26 Mar 2026 02:01:55 +0000
Manifest this update: Thu 26 Mar 2026 02:01:55 +0000
Manifest next update: Fri 27 Mar 2026 02:01:55 +0000
Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: msqmAtriAHlVmg/kC4vc2KVgXKjIl1/3WI4afTz/TYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:78:1f:2e:38:7b:cf:92:cf:f8:da:92:15:c4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Mar 26 02:01:55 2026 GMT
Not After : Mar 27 02:01:55 2026 GMT
Subject: CN=58ce62adfaa31c54f4c6713d7f4a26d98bacc33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d4:09:5b:d4:5d:1d:8a:ab:5d:77:3a:f7:ec:
eb:80:3b:3a:f4:85:71:0f:a5:63:dc:b3:46:e9:42:
36:30:14:4c:df:09:52:a9:53:a7:b1:ad:dc:60:77:
79:19:52:aa:ec:ca:a6:e1:f6:a3:39:17:04:ef:0f:
77:a3:e7:c9:3e:25:19:45:90:bd:fe:8d:54:e4:d5:
e6:cc:75:ce:de:3b:f7:57:cc:06:d3:76:11:47:50:
da:34:98:49:ea:27:2e:17:19:17:c5:83:b5:19:f3:
4b:e8:80:bf:2e:51:63:37:32:21:70:07:69:dd:54:
ff:00:87:1c:ba:43:df:c0:b5:c1:e7:00:24:45:7e:
94:68:86:96:3c:f8:2c:e2:03:97:82:57:bd:2c:50:
41:57:40:55:42:56:9e:db:e6:30:2e:26:92:4e:31:
45:82:7e:91:34:28:11:bc:8e:f7:47:d9:7c:8e:3a:
77:e7:f3:71:35:64:5d:df:b4:54:8c:fb:84:e2:0a:
5a:8d:14:c5:ea:c9:4c:ad:d1:ac:db:76:d3:c9:30:
ba:d3:32:a8:4a:55:21:e4:1d:d3:97:fd:4c:56:44:
a7:fd:fd:c4:52:30:b6:98:4c:d1:4d:57:36:04:a2:
7e:ad:df:80:f8:ed:70:6c:2c:83:7d:fa:5c:f1:d2:
17:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CE:62:AD:FA:A3:1C:54:F4:C6:71:3D:7F:4A:26:D9:8B:AC:C3:3B
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4f:b4:be:b3:6b:32:72:be:cf:ed:52:ba:1d:74:bc:c4:b5:
1e:90:99:9f:4f:87:b1:4a:05:7f:57:1b:dd:7f:41:4b:f9:c2:
ce:f0:ae:db:9e:b5:ae:40:f5:de:1c:7d:ca:34:36:e2:d7:0a:
c6:d9:3b:d4:ab:52:cc:da:42:22:8c:7d:3f:6c:3a:7d:09:c1:
98:83:0b:a6:ff:7b:ea:80:81:0e:74:e1:20:40:b9:0c:34:94:
73:c6:dc:f2:e5:b3:d5:1e:14:c0:3c:32:21:73:d8:ac:aa:01:
27:4f:9e:c2:df:fd:bc:91:f1:76:e1:5a:05:b5:46:70:e8:e6:
40:59:d3:b5:83:2a:be:49:63:64:19:19:9a:9d:40:f3:ac:b0:
98:c1:ca:c7:bf:ca:21:98:f9:6e:eb:f3:2a:b5:bb:f0:ad:51:
ac:8b:c2:f8:c5:4e:3b:06:36:3f:af:63:f2:1e:da:c6:fa:01:
ce:af:fe:f0:f2:94:6f:88:7d:45:d5:07:7b:17:68:35:97:e7:
47:ad:36:24:f5:4b:67:ae:db:b1:3e:f2:5d:51:53:75:9c:81:
02:af:f6:0c:4c:bc:f4:e2:90:02:d8:e8:10:5c:27:c4:4c:f2:
f1:91:9d:b6:e9:1e:a5:62:f1:c2:ef:49:2c:99:15:1c:54:b5:
40:05:4e:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n4HgfLjh7z5LP+NqSFcSoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm
NTVkNzUwHhcNMjYwMzI2MDIwMTU1WhcNMjYwMzI3MDIwMTU1WjAzMTEwLwYDVQQD
Eyg1OGNlNjJhZGZhYTMxYzU0ZjRjNjcxM2Q3ZjRhMjZkOThiYWNjMzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdQJW9RdHYqrXXc69+zrgDs69IVx
D6Vj3LNG6UI2MBRM3wlSqVOnsa3cYHd5GVKq7Mqm4fajORcE7w93o+fJPiUZRZC9
/o1U5NXmzHXO3jv3V8wG03YRR1DaNJhJ6icuFxkXxYO1GfNL6IC/LlFjNzIhcAdp
3VT/AIccukPfwLXB5wAkRX6UaIaWPPgs4gOXgle9LFBBV0BVQlae2+YwLiaSTjFF
gn6RNCgRvI73R9l8jjp35/NxNWRd37RUjPuE4gpajRTF6slMrdGs23bTyTC60zKo
SlUh5B3Tl/1MVkSn/f3EUjC2mEzRTVc2BKJ+rd+A+O1wbCyDffpc8dIXcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFjOYq36oxxU9MZxPX9KJtmLrMM7MB8GA1UdIwQY
MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt
OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi
LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANk+0vrNr
MnK+z+1Suh10vMS1HpCZn0+HsUoFf1cb3X9BS/nCzvCu2561rkD13hx9yjQ24tcK
xtk71KtSzNpCIox9P2w6fQnBmIMLpv976oCBDnThIEC5DDSUc8bc8uWz1R4UwDwy
IXPYrKoBJ0+ewt/9vJHxduFaBbVGcOjmQFnTtYMqvkljZBkZmp1A86ywmMHKx7/K
IZj5buvzKrW78K1RrIvC+MVOOwY2P69j8h7axvoBzq/+8PKUb4h9RdUHexdoNZfn
R602JPVLZ67bsT7yXVFTdZyBAq/2DEy89OKQAtjoEFwnxEzy8ZGdtukepWLxwu9J
LJkVHFS1QAVO4A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:48 2026 by rpki-client