Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: dvFU6zNATHV8QxCG1dnma5oWva64HHMPe7wka26oSQk=
Subject key identifier: AC:ED:15:B2:79:7C:51:5C:23:02:10:92:29:89:2A:7D:34:25:F8:74
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019A1F51E764B0F97F3EE2D3120508985366
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0A8D
Signing time: Sun 26 Oct 2025 07:00:52 +0000
Manifest this update: Sun 26 Oct 2025 07:00:52 +0000
Manifest next update: Mon 27 Oct 2025 07:00:52 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: NF3YOo2A0tVgXMBGBtbhfcXRjGvXjODT7pFvDDdOE6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:51:e7:64:b0:f9:7f:3e:e2:d3:12:05:08:98:53:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Oct 26 07:00:52 2025 GMT
Not After : Oct 27 07:00:52 2025 GMT
Subject: CN=aced15b2797c515c2302109229892a7d3425f874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f5:b8:96:a9:78:4e:88:f1:48:78:9a:b2:25:
2c:7e:1b:9a:35:7d:83:c3:40:8d:f8:6e:95:17:c9:
3f:5d:ca:10:34:a9:d6:10:6b:d2:52:9c:1b:b8:51:
12:b2:b4:31:ee:31:fe:48:d5:95:99:c2:7c:6f:2e:
3a:7f:9d:a6:fc:60:eb:44:76:53:37:73:ef:18:89:
03:fe:5a:92:8a:d4:e9:74:41:4c:fb:35:78:f8:b9:
e2:19:60:e0:a6:f4:ef:59:f9:a6:53:a4:1b:b1:30:
da:ea:30:ad:3d:75:c6:e8:a2:d3:d3:4f:98:88:a5:
c1:b2:92:84:4f:56:e4:a8:ab:c8:af:83:63:be:bc:
9c:35:3a:4a:46:94:42:d7:1e:dc:29:a6:c2:23:a2:
73:18:b3:d1:c3:28:03:30:6c:b0:06:1c:aa:77:c6:
cf:32:f0:70:93:4e:53:a9:9a:9e:76:64:fb:3a:fc:
f4:3b:f9:58:2d:dc:33:41:64:fb:c3:fd:11:e7:1c:
70:18:d6:16:30:63:a4:07:a9:96:21:8f:47:90:d4:
af:a2:8a:0d:0a:6d:69:91:8d:d1:ab:7c:e8:c6:60:
27:d9:0b:43:be:9b:d1:e4:51:96:24:9e:e4:db:e0:
eb:40:07:e7:74:7e:78:a3:3f:57:41:8b:66:89:7a:
06:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:ED:15:B2:79:7C:51:5C:23:02:10:92:29:89:2A:7D:34:25:F8:74
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:73:21:6e:ec:52:2a:97:d3:6d:b7:f2:1e:04:51:0d:06:05:
52:41:2b:fe:8e:15:83:a0:e7:9d:bc:6b:9d:ef:ca:83:e5:bf:
c2:4d:41:2e:1c:af:8a:73:52:21:0f:d3:9f:04:ee:40:2c:2a:
2a:bd:85:79:c6:b3:7b:ed:68:da:a3:d5:88:89:7e:db:8b:d4:
8e:c0:19:c1:83:81:97:0b:04:c9:3a:92:88:4f:ec:8f:4a:f9:
69:44:c2:3d:f8:f9:c9:15:b7:44:76:a5:9b:43:19:25:49:d0:
77:3b:32:69:35:04:ee:4b:aa:4c:57:4e:d9:88:51:37:a6:df:
17:46:e2:97:63:a0:e7:17:62:05:df:be:1a:ae:bb:d8:58:48:
7f:4f:44:dd:58:54:d5:04:2f:04:de:58:fe:cb:13:0d:d1:1d:
6c:38:b3:75:96:52:cc:5a:b6:2c:3a:65:4f:9e:16:77:30:92:
cf:97:12:cb:1d:b3:ce:ed:ae:03:6e:3f:c5:e2:00:a2:14:74:
a0:ab:8f:21:37:dc:1f:5e:16:d1:c5:db:86:d9:53:8b:4f:42:
5a:b8:cd:8a:a8:7c:92:5c:97:56:ba:b0:b9:75:61:be:87:2e:
8b:06:25:bd:c0:41:28:75:26:38:b8:2e:44:a0:95:61:c3:e0:
91:a5:21:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 13:44:16 2025 by rpki-client