Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: W34NZxIzAU9LRsLKunACkqZCsPnyEKu4rKcC4a7jpyc=
Subject key identifier: AD:8B:CE:64:16:4E:4E:BB:82:7E:01:07:90:3A:EB:A3:80:76:29:85
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019889C4C7EEF4AA4950FCE60611D73E0524
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 09BB
Signing time: Fri 08 Aug 2025 13:00:31 +0000
Manifest this update: Fri 08 Aug 2025 13:00:31 +0000
Manifest next update: Sat 09 Aug 2025 13:00:31 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: YSh2VtQiWzR3llWUzsWOkuA4DbojShb8EwGYMVf13lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:c4:c7:ee:f4:aa:49:50:fc:e6:06:11:d7:3e:05:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Aug 8 13:00:31 2025 GMT
Not After : Aug 9 13:00:31 2025 GMT
Subject: CN=ad8bce64164e4ebb827e0107903aeba380762985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d8:03:73:f1:e8:18:fc:1e:91:8f:de:b8:62:
e4:02:b4:af:43:e0:f3:9a:cc:60:fb:3d:5d:7d:7c:
0d:79:b5:d8:4e:23:6b:b0:52:4c:ee:cb:60:5c:76:
1d:84:5b:f1:2b:b6:c4:45:a1:45:48:54:87:b8:82:
1c:18:55:6c:b2:46:8e:70:3d:34:7e:2c:fe:88:bc:
29:28:48:57:37:76:93:10:b8:fe:d2:98:dd:60:76:
30:4c:45:bc:33:10:49:a6:f5:69:73:8a:71:2c:ca:
54:8e:64:c9:da:15:ec:06:5c:e5:c4:8a:c0:02:0c:
6b:6e:16:ef:11:77:74:4d:ef:21:a7:be:93:87:a1:
02:cb:85:06:fc:4c:76:6b:4c:84:43:64:f3:fe:b0:
91:32:d2:e6:7d:b2:96:c3:29:72:e0:0e:b3:53:17:
e5:18:46:8c:5b:9e:82:93:a5:27:d1:bd:76:30:28:
4e:f3:7f:a0:46:d3:cc:4a:4a:66:da:c8:cb:d4:e6:
3d:78:5e:0b:13:eb:42:bb:ca:11:0f:d8:37:ff:09:
27:ec:56:27:3f:ec:e1:d9:5e:86:a5:23:26:19:6d:
f1:a7:71:72:18:aa:0d:90:8d:d2:4b:76:5e:49:24:
1b:20:48:6d:d2:b6:46:cd:8f:f5:26:63:4f:22:e2:
60:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8B:CE:64:16:4E:4E:BB:82:7E:01:07:90:3A:EB:A3:80:76:29:85
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:2d:d8:64:c1:ec:2d:b7:fa:11:10:30:b5:74:a8:8d:6e:a5:
b1:1e:30:f7:da:06:e2:13:63:3a:fa:d4:7e:37:2b:2b:d2:cc:
ca:78:37:1b:29:f1:5b:41:d5:5b:bb:ca:59:4c:65:f6:dd:f7:
f2:4f:b3:83:50:53:08:fa:75:b6:a7:94:d4:be:1f:e8:45:0f:
6f:95:02:72:5f:7d:5b:e9:ad:66:52:26:3f:f1:11:66:ce:41:
f9:e2:27:f1:68:71:25:5c:fe:43:c7:0c:4b:99:04:bc:79:73:
84:5c:26:1f:b2:49:6a:0a:6f:55:22:7e:7d:e8:f3:5e:bd:69:
9c:26:21:ba:06:af:f1:f9:d4:31:a1:9f:49:f6:ed:46:dd:f5:
0b:48:0d:5f:e5:92:32:6e:ac:2c:31:b0:3b:f7:11:4b:9f:12:
5e:36:10:55:09:a7:47:43:56:bd:68:2c:e1:b5:8a:d9:37:d2:
19:6e:6e:2f:49:ea:94:c4:b0:72:62:1e:d2:86:8c:bd:e8:1e:
9f:a3:95:77:62:b4:35:10:b5:a6:24:4e:d7:89:bd:4a:e1:eb:
c2:35:c6:60:8b:0a:48:a3:22:72:b9:e1:5e:09:99:14:bc:64:
ee:42:c6:a7:60:6e:4e:10:e1:94:1b:53:e4:6b:5e:4e:06:6c:
bd:b9:aa:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiJxMfu9KpJUPzmBhHXPgUkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNjc2YTMwMjg0ZTE0YjAyY2M2ZGRhYTAzNGU3NzU0MDZl
NDYxYTYwHhcNMjUwODA4MTMwMDMxWhcNMjUwODA5MTMwMDMxWjAzMTEwLwYDVQQD
EyhhZDhiY2U2NDE2NGU0ZWJiODI3ZTAxMDc5MDNhZWJhMzgwNzYyOTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9gDc/HoGPwekY/euGLkArSvQ+Dz
msxg+z1dfXwNebXYTiNrsFJM7stgXHYdhFvxK7bERaFFSFSHuIIcGFVsskaOcD00
fiz+iLwpKEhXN3aTELj+0pjdYHYwTEW8MxBJpvVpc4pxLMpUjmTJ2hXsBlzlxIrA
AgxrbhbvEXd0Te8hp76Th6ECy4UG/Ex2a0yEQ2Tz/rCRMtLmfbKWwyly4A6zUxfl
GEaMW56Ck6Un0b12MChO83+gRtPMSkpm2sjL1OY9eF4LE+tCu8oRD9g3/wkn7FYn
P+zh2V6GpSMmGW3xp3FyGKoNkI3SS3ZeSSQbIEht0rZGzY/1JmNPIuJgWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK2LzmQWTk67gn4BB5A666OAdimFMB8GA1UdIwQY
MBaAFM5najAoThSwLMbdqgNOd1QG5GGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUt
ZWE2MDY1NzA5NDZhLzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUtZWE2MDY1NzA5NDZh
LzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACC3YZMHs
Lbf6ERAwtXSojW6lsR4w99oG4hNjOvrUfjcrK9LMyng3GynxW0HVW7vKWUxl9t33
8k+zg1BTCPp1tqeU1L4f6EUPb5UCcl99W+mtZlImP/ERZs5B+eIn8WhxJVz+Q8cM
S5kEvHlzhFwmH7JJagpvVSJ+fejzXr1pnCYhugav8fnUMaGfSfbtRt31C0gNX+WS
Mm6sLDGwO/cRS58SXjYQVQmnR0NWvWgs4bWK2TfSGW5uL0nqlMSwcmIe0oaMvege
n6OVd2K0NRC1piRO14m9SuHrwjXGYIsKSKMicrnhXgmZFLxk7kLGp2BuThDhlBtT
5GteTgZsvbmqWA==
-----END CERTIFICATE-----
Generated at Fri Aug 8 19:27:18 2025 by rpki-client