Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: TUV1vqJnfShq3P7tP8gUQT6wQqbKyUUfmrg/VikRfZM=
Subject key identifier: 25:09:E2:8D:DB:97:78:B6:FF:8E:6B:18:A0:46:0A:08:45:34:8B:58
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019D992B358020886766E1FA9282865C10A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0C5A
Signing time: Fri 17 Apr 2026 02:00:38 +0000
Manifest this update: Fri 17 Apr 2026 02:00:38 +0000
Manifest next update: Sat 18 Apr 2026 02:00:38 +0000
Files and hashes: 1: Q3WmyVx2hL_ulJlmWV4wBuMv3sY.roa (hash: qNBXvE4FodOwmoHeT/8KvY1e+YtkkhFfaz/pGiYECDk=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: R2E1jz0KZ1urBXVjWHhCnR8l5akzIS1jPBkH2j8qgtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:35:80:20:88:67:66:e1:fa:92:82:86:5c:10:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Apr 17 02:00:38 2026 GMT
Not After : Apr 18 02:00:38 2026 GMT
Subject: CN=2509e28ddb9778b6ff8e6b18a0460a0845348b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:a6:59:f0:c5:2f:fb:ea:bc:cd:75:78:2f:
b1:f2:d5:8e:6f:3b:7f:6f:d1:f0:57:c8:cd:6b:f5:
9b:d4:f6:b2:5d:b6:8e:20:06:8e:68:a5:a8:ba:3f:
9d:de:94:e8:36:cc:b0:d3:13:d2:5b:6f:b2:d6:71:
12:32:ff:ff:8c:e6:e1:ba:20:8a:e3:ad:3a:f7:77:
d6:a4:0d:59:0d:83:40:f8:13:7b:95:bd:97:9a:48:
b3:cd:6e:2c:8b:0d:98:24:4b:41:b8:2e:1e:26:40:
57:fd:06:b4:c1:d3:c4:86:2b:d6:c6:af:31:c6:b2:
c0:c7:4a:2c:2c:ca:c7:d0:55:21:75:ab:52:47:54:
f4:dd:a1:70:eb:15:5b:ea:5b:b1:a8:d5:1a:7d:c3:
6c:66:e9:4e:5c:b3:77:3b:c0:47:33:29:7c:c8:00:
c5:84:14:7e:68:e9:69:07:14:20:40:2a:34:c7:60:
30:89:c2:63:78:35:2d:e1:1a:55:0e:88:37:b0:7d:
64:6c:6f:1e:d1:f7:18:3a:0c:08:37:17:2b:a5:7b:
65:38:56:37:2c:47:f1:81:c7:89:20:db:db:bf:f8:
35:31:8a:bd:b2:02:ec:ca:75:08:1c:eb:19:36:6d:
b3:0d:e5:07:82:af:7c:39:b2:fb:9d:e0:85:e2:06:
bb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:09:E2:8D:DB:97:78:B6:FF:8E:6B:18:A0:46:0A:08:45:34:8B:58
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:fc:93:f8:24:e9:ae:5c:97:95:af:5a:d1:1d:33:40:43:41:
79:61:31:ca:c9:b5:d7:c2:3f:eb:ad:83:1f:09:b1:a9:fd:a6:
80:87:c3:01:c3:d2:6b:42:70:04:e2:73:05:c9:73:b8:e7:2a:
5f:c3:62:3b:3f:24:29:06:3f:09:40:0f:55:07:2f:f4:79:eb:
73:51:e6:0a:7a:da:d4:6a:b2:8e:7f:d0:9a:d2:43:c9:63:24:
a3:94:eb:fb:22:ec:1b:3d:2a:e6:0f:d9:ab:36:02:31:9c:52:
81:85:2c:6b:d8:c5:3c:1c:5b:86:e5:8f:a4:b3:1a:75:cd:8c:
e3:09:cf:a5:17:1e:3e:02:23:90:79:2e:ff:44:84:3e:d2:3c:
ef:07:2a:bd:13:df:88:b9:38:b2:27:2e:19:bb:c7:12:be:95:
13:b9:12:44:21:1a:8c:7f:4c:60:e7:c3:ad:e9:20:4d:ef:5b:
66:d9:06:92:91:04:3b:04:55:bf:20:c8:80:a8:44:22:54:e2:
0f:9d:9c:10:e0:a6:d1:13:c1:68:bf:e4:4d:0c:bb:a4:de:3c:
63:2a:2c:ee:6e:81:39:09:3b:65:17:73:21:12:4b:b8:43:f0:
a0:10:5a:18:58:a9:33:e5:09:b3:fc:61:bc:13:9b:f1:5b:a9:
b4:cb:fd:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZKzWAIIhnZuH6koKGXBChMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNjc2YTMwMjg0ZTE0YjAyY2M2ZGRhYTAzNGU3NzU0MDZl
NDYxYTYwHhcNMjYwNDE3MDIwMDM4WhcNMjYwNDE4MDIwMDM4WjAzMTEwLwYDVQQD
EygyNTA5ZTI4ZGRiOTc3OGI2ZmY4ZTZiMThhMDQ2MGEwODQ1MzQ4YjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMCmWfDFL/vqvM11eC+x8tWObzt/
b9HwV8jNa/Wb1PayXbaOIAaOaKWouj+d3pToNsyw0xPSW2+y1nESMv//jObhuiCK
460693fWpA1ZDYNA+BN7lb2XmkizzW4siw2YJEtBuC4eJkBX/Qa0wdPEhivWxq8x
xrLAx0osLMrH0FUhdatSR1T03aFw6xVb6luxqNUafcNsZulOXLN3O8BHMyl8yADF
hBR+aOlpBxQgQCo0x2AwicJjeDUt4RpVDog3sH1kbG8e0fcYOgwINxcrpXtlOFY3
LEfxgceJINvbv/g1MYq9sgLsynUIHOsZNm2zDeUHgq98ObL7neCF4ga7owIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCUJ4o3bl3i2/45rGKBGCghFNItYMB8GA1UdIwQY
MBaAFM5najAoThSwLMbdqgNOd1QG5GGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUt
ZWE2MDY1NzA5NDZhLzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUtZWE2MDY1NzA5NDZh
LzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvfyT+CTp
rlyXla9a0R0zQENBeWExysm118I/662DHwmxqf2mgIfDAcPSa0JwBOJzBclzuOcq
X8NiOz8kKQY/CUAPVQcv9Hnrc1HmCnra1Gqyjn/QmtJDyWMko5Tr+yLsGz0q5g/Z
qzYCMZxSgYUsa9jFPBxbhuWPpLMadc2M4wnPpRcePgIjkHku/0SEPtI87wcqvRPf
iLk4sicuGbvHEr6VE7kSRCEajH9MYOfDrekgTe9bZtkGkpEEOwRVvyDIgKhEIlTi
D52cEOCm0RPBaL/kTQy7pN48Yyos7m6BOQk7ZRdzIRJLuEPwoBBaGFipM+UJs/xh
vBOb8VuptMv9cA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:27:00 2026 by rpki-client