Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: SwoJmCCDNhy7ltsVqK2MGv0gw+PZLN3ToJMFknctNjQ=
Subject key identifier: 53:D3:45:0A:32:7D:6D:8A:FC:91:71:E6:22:39:BB:7D:F6:AB:69:20
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019E905CD56BFFEDE5029D9D01488C5F8BD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0CDA
Signing time: Thu 04 Jun 2026 02:01:03 +0000
Manifest this update: Thu 04 Jun 2026 02:01:03 +0000
Manifest next update: Fri 05 Jun 2026 02:01:03 +0000
Files and hashes: 1: Q3WmyVx2hL_ulJlmWV4wBuMv3sY.roa (hash: qNBXvE4FodOwmoHeT/8KvY1e+YtkkhFfaz/pGiYECDk=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: T2w80fMqhJvePAV06a/sWUMePKMgd1QzT+L4FzC3++o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:5c:d5:6b:ff:ed:e5:02:9d:9d:01:48:8c:5f:8b:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Jun 4 02:01:03 2026 GMT
Not After : Jun 5 02:01:03 2026 GMT
Subject: CN=53d3450a327d6d8afc9171e62239bb7df6ab6920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e4:90:ef:4d:ba:93:bd:cb:5a:47:b7:0e:9f:
d1:50:9a:c0:b2:1e:72:ca:1f:8a:fb:a2:29:ea:bf:
bd:e4:ac:7a:b6:c1:84:77:33:1e:ec:56:f2:1f:ae:
0f:84:3c:6a:b9:3f:59:11:75:da:b4:56:f5:76:9d:
1d:9f:7e:a1:66:74:18:ba:88:54:c0:a9:11:84:4e:
d5:60:ca:cd:6e:5b:84:9a:dd:da:31:1b:84:7a:bd:
26:3f:2b:69:81:84:9b:8f:c0:90:a2:4b:b4:18:d5:
43:d1:e1:44:a1:38:cf:a6:cf:8b:ec:ed:02:5e:87:
b2:5c:c6:74:1f:63:7b:c2:3a:7f:bf:97:78:b2:b2:
a1:b6:63:57:36:a4:65:e2:cd:90:e5:de:fb:1b:b0:
94:b6:e8:55:e5:bb:d7:f4:f9:4a:06:eb:ce:4a:79:
e7:1d:ff:46:7f:21:88:c6:07:6d:7f:85:c3:c6:2a:
21:c0:dc:d2:85:63:41:db:d3:7c:e1:4e:4d:ff:f0:
4c:5f:d8:24:e8:b5:77:2b:4a:ba:9c:fc:9b:94:c5:
b2:7f:60:fc:e3:b6:1c:43:b3:3f:19:4b:f2:d7:16:
80:df:dc:83:51:e7:49:5b:35:12:f6:4d:48:df:29:
e4:f6:56:94:1a:c7:c7:1c:f5:09:95:d5:72:2a:02:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D3:45:0A:32:7D:6D:8A:FC:91:71:E6:22:39:BB:7D:F6:AB:69:20
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:0b:cc:14:fa:2e:80:d3:9a:91:04:38:b7:fd:a2:74:ab:e4:
9b:18:09:cc:71:f6:af:42:2d:5c:20:ef:d6:ba:5f:74:c0:0f:
b6:fa:a4:64:62:cb:d1:ca:10:9a:7a:12:ba:2f:b6:51:1b:c2:
38:18:6f:6a:90:ed:e8:e3:19:f5:99:69:0b:32:5d:b2:3c:90:
00:01:7f:e4:71:40:01:e3:83:b9:8b:59:89:6b:41:68:03:87:
0d:23:ff:3e:2c:43:0c:69:d0:b6:3d:97:c2:75:e5:bc:36:79:
a3:06:ee:76:d6:f6:a9:52:bf:0e:f4:0f:02:66:3d:d0:54:91:
6a:df:6e:b7:80:f6:17:92:c1:04:eb:eb:1a:8a:13:4a:e3:44:
36:7f:1f:61:86:4c:90:7c:f9:cf:44:1e:ad:2b:0f:42:99:24:
c1:f9:ba:ab:45:89:b1:4e:33:56:1e:04:90:8c:8f:e4:97:20:
75:42:cf:99:b4:5b:ec:60:b4:dd:08:19:cd:fb:1b:1e:a7:03:
02:4a:4a:b5:59:86:51:8d:b6:27:38:0e:42:5d:7b:1c:b0:eb:
26:b2:90:bb:9f:41:bd:72:dc:42:83:c5:c9:50:3d:65:9b:ec:
2f:a7:bd:07:3a:4d:f6:90:87:5a:bd:50:80:a3:2e:10:e0:6f:
fd:25:92:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 05:16:23 2026 by rpki-client