Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: FxrY7WsMOjr6vKfjBD/I6KLdHWW/FJEw+LOCEIXCi1Q=
Subject key identifier: 26:46:78:76:6E:4F:5F:5D:14:4C:93:CC:15:34:33:A0:5A:BD:80:81
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 01992FD9FCE59126AFA26100E8CF17FE26BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0A11
Signing time: Tue 09 Sep 2025 19:00:39 +0000
Manifest this update: Tue 09 Sep 2025 19:00:39 +0000
Manifest next update: Wed 10 Sep 2025 19:00:39 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: /YVIIb4IhemTKXAIFO8tnceqGxUrDkG0GeIo5ht4s6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:d9:fc:e5:91:26:af:a2:61:00:e8:cf:17:fe:26:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Sep 9 19:00:39 2025 GMT
Not After : Sep 10 19:00:39 2025 GMT
Subject: CN=264678766e4f5f5d144c93cc153433a05abd8081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:5f:2e:c4:51:2c:7f:a6:5c:2c:f3:dc:32:
d4:f3:ae:97:4d:d8:87:43:31:a8:52:f2:73:05:33:
ac:de:a5:10:9f:66:58:06:38:b6:1b:75:f8:ce:3c:
11:d6:9e:3d:86:51:c6:3c:99:31:5a:f5:56:7d:cc:
91:78:c1:21:21:6f:3f:d6:10:e6:c1:37:51:89:a6:
75:d4:87:86:63:43:7e:9d:a7:bf:4d:d2:84:43:3d:
84:b3:6e:cc:41:ac:04:b0:77:d2:53:3b:07:f1:53:
df:39:4a:83:24:d4:70:01:cf:29:a8:cb:86:35:0c:
4f:d4:13:98:6d:96:8c:51:7e:4b:bc:d3:9b:74:76:
5f:c9:0a:17:b2:0a:12:66:81:72:ea:f0:d2:eb:de:
a9:1a:22:44:c0:19:2d:a7:10:21:31:04:8b:39:ad:
68:2e:fd:cd:19:5f:f4:c2:fd:28:0d:c9:c9:39:1d:
35:b2:b9:f0:14:29:2c:ee:71:b5:fa:c5:95:f0:17:
6b:4a:50:c3:b9:ff:13:f2:f8:db:7c:7e:6a:95:4f:
bb:df:4b:c7:81:7d:b0:98:3c:f0:cf:9b:fc:ab:9b:
36:79:a8:f6:1b:1e:8c:e2:ca:12:6b:24:ee:e2:8e:
30:d1:33:38:c2:fa:07:ea:c8:ee:ac:d2:3a:a8:ca:
7b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:46:78:76:6E:4F:5F:5D:14:4C:93:CC:15:34:33:A0:5A:BD:80:81
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:6b:aa:20:f3:40:4b:32:3f:e6:dd:15:d7:19:25:48:39:77:
8f:4f:89:a1:ed:d3:f0:4c:fd:c8:a7:d8:32:60:35:28:c2:6d:
f2:a2:c0:4f:87:e3:1e:9e:8e:b2:f8:23:93:c9:31:47:cf:89:
76:1e:4d:3a:9b:ba:0f:11:5d:b0:62:08:2f:1a:fe:1c:b8:aa:
16:ad:ca:06:9f:7d:ea:85:12:07:7b:6a:49:d1:b8:6a:a9:ee:
2f:69:5c:cf:fa:ff:f8:f1:47:b4:ce:a1:21:a2:25:42:b1:6e:
6d:8c:4a:a8:fc:ed:51:78:5f:bb:ba:c1:d5:c4:97:b2:39:10:
74:52:b4:19:c1:0c:3b:29:5d:9c:68:1c:21:4f:03:df:32:67:
5b:bf:6d:92:57:d7:85:8b:f5:39:e6:85:0e:db:3f:25:8e:17:
ed:b0:c1:3b:c6:1c:e9:d0:01:2a:02:af:e1:bf:ca:fe:68:d3:
a2:97:b1:ec:0e:99:b0:e8:2e:c3:c1:fc:b5:68:fe:e9:9e:28:
97:79:6c:98:c7:00:7c:15:df:3b:bf:0e:3a:46:72:08:d3:bf:
a5:f9:83:56:da:a1:a2:01:81:a0:ad:ab:77:0c:98:24:78:5e:
af:e0:b8:b3:e6:00:7f:1e:6d:80:0f:b3:00:22:f7:05:ea:b8:
24:12:b2:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 00:50:20 2025 by rpki-client