Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: X0aylbIWtEjVbx8j5SNEhvs5yxDCscHAjfzP87VYWaY=
Subject key identifier: 53:E9:DF:B0:88:ED:DB:9E:F4:E7:45:E4:A9:23:9B:0F:C2:95:EA:18
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019E20FF930609BBA052AA4523B31377A689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 0566
Signing time: Wed 13 May 2026 11:01:20 +0000
Manifest this update: Wed 13 May 2026 11:01:20 +0000
Manifest next update: Thu 14 May 2026 11:01:20 +0000
Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: OaRtp0lNrQOOZW8FflQDpPqI1quucKy5VRuM+qrF3Os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:93:06:09:bb:a0:52:aa:45:23:b3:13:77:a6:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: May 13 11:01:20 2026 GMT
Not After : May 14 11:01:20 2026 GMT
Subject: CN=53e9dfb088eddb9ef4e745e4a9239b0fc295ea18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6c:e7:8d:3b:28:2c:0d:c5:95:96:6f:10:6c:
a3:8e:b0:7f:00:da:b9:02:42:aa:ff:fb:5b:25:3f:
90:3d:a7:0b:75:2a:91:97:d0:b9:76:2b:44:0a:f1:
e7:3f:e1:e1:29:c6:8f:22:bd:f3:31:37:8f:a9:39:
5a:89:24:f6:92:cf:49:08:20:95:aa:08:91:0a:57:
f7:5b:53:14:01:6d:3b:6a:2e:65:ee:9a:66:3e:07:
1b:da:79:dc:bf:6c:6e:d6:e7:43:71:86:e9:80:c4:
55:72:bc:8e:96:06:a6:f5:6e:b0:8e:73:d1:ad:05:
c7:26:c0:22:53:fe:32:4c:43:fb:7b:88:3e:f9:6b:
10:aa:02:4b:91:0f:2b:1a:ee:c2:20:e6:63:61:6e:
5c:24:a8:e6:71:66:19:9d:96:6d:ce:c2:e7:2c:ef:
80:d0:01:3e:6d:4d:5f:32:e2:06:f3:5b:55:1f:c3:
05:03:98:eb:d6:e4:ba:e9:0b:d2:a5:0e:8d:bc:88:
c9:5b:e7:a8:f8:dc:50:db:f5:d7:cc:9e:d3:68:f1:
fd:95:7c:06:65:f5:2c:7b:00:15:0f:12:20:0d:86:
a8:68:15:c0:bb:e5:6c:a2:cb:91:3c:bb:73:0d:4d:
7b:97:f7:50:f8:22:6d:7a:79:a6:8d:50:07:0d:65:
0d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E9:DF:B0:88:ED:DB:9E:F4:E7:45:E4:A9:23:9B:0F:C2:95:EA:18
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:6b:23:d9:94:8f:dd:46:40:7b:63:d2:7a:57:16:97:df:b6:
d9:ef:12:21:f2:42:17:da:e9:78:f9:09:69:65:15:d4:85:cc:
39:52:31:58:dd:27:61:ae:5d:72:3b:70:c0:df:86:49:9b:b7:
dc:5c:4c:5d:fe:78:45:74:46:db:a3:e4:68:64:e6:0a:7f:92:
69:14:6f:7b:2b:32:00:f5:e5:16:56:92:b5:6a:79:3a:11:a0:
ed:ba:0c:c9:9f:1d:94:65:3c:1a:fd:fa:00:bc:3e:87:f8:7c:
9e:e2:52:d5:b7:68:4d:04:0d:d8:01:2a:17:a8:a8:8b:77:60:
e3:d9:36:66:a3:9d:23:93:17:30:e5:29:a9:8d:dd:13:f4:94:
27:b6:b5:05:06:18:13:52:fe:7e:ba:6c:dd:19:3f:7e:c8:f7:
e6:19:00:91:2c:01:83:f2:34:28:3c:ae:c7:d7:44:37:06:c9:
f1:cf:23:f4:c4:85:86:e9:d2:e8:74:06:f8:4a:8f:8e:06:30:
f9:2f:1f:4c:61:46:72:ad:bf:4e:9f:2b:4b:49:93:ad:7c:48:
e2:44:3a:06:d6:3a:c0:d1:1e:00:08:90:8c:68:f0:29:b4:df:
50:a5:ec:6c:75:79:01:0d:b1:bb:df:5f:99:a4:88:f2:f8:cb:
23:16:39:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:21:47 2026 by rpki-client