Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: yW+l0K0nYyNkhmK4kNItmGXttT82ejGh1JinUOp3+30=
Subject key identifier: 03:48:2F:BA:6A:A2:80:96:4C:91:20:AC:FA:1D:58:80:F0:BD:C8:A5
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019EC29229723506F62AD9CAAC3877A0AE09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0CF4
Signing time: Sat 13 Jun 2026 20:00:18 +0000
Manifest this update: Sat 13 Jun 2026 20:00:18 +0000
Manifest next update: Sun 14 Jun 2026 20:00:18 +0000
Files and hashes: 1: Q3WmyVx2hL_ulJlmWV4wBuMv3sY.roa (hash: qNBXvE4FodOwmoHeT/8KvY1e+YtkkhFfaz/pGiYECDk=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: v5tBBAQiPKfrYaU6tIJbSDPQlo9A3tMjlp1c2+e2O2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:29:72:35:06:f6:2a:d9:ca:ac:38:77:a0:ae:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Jun 13 20:00:18 2026 GMT
Not After : Jun 14 20:00:18 2026 GMT
Subject: CN=03482fba6aa280964c9120acfa1d5880f0bdc8a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:22:f1:d9:05:cc:17:12:fe:c4:94:7d:5f:7c:
91:9e:d2:b5:e2:e5:8f:fe:4c:ad:8d:ed:30:d2:b3:
97:0c:59:3f:32:c0:5e:6e:86:2d:f9:4c:be:c3:c8:
00:31:29:a5:58:c3:5c:d2:da:02:2a:85:4f:92:04:
7c:ae:df:12:e5:b7:cb:83:8e:8e:38:fb:47:49:1a:
f2:3e:e2:bc:f0:11:4c:22:18:13:07:28:a9:4c:65:
32:7d:d2:89:82:bb:8f:61:fa:d6:3c:42:63:0e:26:
b4:e2:f7:8f:45:2f:d6:2d:1f:2d:84:96:ca:4b:16:
33:f3:96:31:32:51:03:41:3c:2e:61:5e:67:b3:25:
37:34:37:c2:e0:88:d4:7d:ee:9f:a1:e1:28:3e:6d:
16:f9:5d:f6:28:53:7f:6f:fe:cc:c3:ed:cd:11:9f:
46:59:7b:a7:46:11:49:29:5f:28:6f:ba:a5:8b:e6:
f2:87:f7:ac:0c:8c:14:dc:00:42:b9:79:00:ce:87:
81:20:1a:6c:6c:ab:eb:76:f7:e5:cc:68:62:47:e1:
3a:f2:db:48:75:31:f4:a4:5f:2e:8c:b1:b5:79:7f:
b0:3c:b8:5b:2c:60:04:63:ff:28:7a:04:4c:4e:6b:
4a:64:06:39:df:c6:72:de:bd:1d:14:22:1f:af:0c:
a6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:48:2F:BA:6A:A2:80:96:4C:91:20:AC:FA:1D:58:80:F0:BD:C8:A5
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:60:ce:3b:d0:9a:c6:87:41:12:d1:fd:ed:fa:77:22:77:a7:
20:05:b3:73:53:fc:18:24:cc:89:3b:33:6b:a2:fc:34:67:ea:
95:60:35:87:98:6f:21:6c:5e:c6:45:54:42:ae:86:32:a7:18:
3b:0f:88:a6:cc:b6:3a:0d:72:0e:7e:0f:c8:f5:05:a3:76:a5:
f4:03:cf:63:52:9b:9b:87:7d:c9:9c:22:7f:d2:fa:76:b5:e3:
e7:3a:ab:60:cc:e6:ab:4a:3e:13:11:6c:dd:a8:1f:be:97:22:
72:33:56:3e:96:e6:4a:4a:ee:2c:c7:9c:4c:d2:bb:05:c7:77:
ad:55:2f:a3:f7:51:c2:76:28:37:6c:1d:fa:64:5d:f2:29:8f:
b8:23:e0:88:77:8c:c5:b0:6a:b2:f4:35:a6:af:cc:42:74:cf:
3e:b4:66:4f:76:7f:57:0a:79:20:8d:fe:6b:c7:a4:76:ac:fb:
35:8e:19:db:db:10:84:5e:47:63:fc:7d:46:3a:2d:06:01:79:
42:26:a5:68:c8:df:0a:d1:8c:db:9e:9d:67:86:5f:e5:ba:cb:
c5:0c:eb:0b:c4:f5:96:ea:c4:d8:28:f4:13:17:6d:99:07:89:
26:2b:df:47:ae:93:71:a1:3a:8f:0b:5b:a0:82:74:13:a1:19:
5e:bd:53:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7CkilyNQb2KtnKrDh3oK4JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNjc2YTMwMjg0ZTE0YjAyY2M2ZGRhYTAzNGU3NzU0MDZl
NDYxYTYwHhcNMjYwNjEzMjAwMDE4WhcNMjYwNjE0MjAwMDE4WjAzMTEwLwYDVQQD
EygwMzQ4MmZiYTZhYTI4MDk2NGM5MTIwYWNmYTFkNTg4MGYwYmRjOGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyLx2QXMFxL+xJR9X3yRntK14uWP
/kytje0w0rOXDFk/MsBeboYt+Uy+w8gAMSmlWMNc0toCKoVPkgR8rt8S5bfLg46O
OPtHSRryPuK88BFMIhgTByipTGUyfdKJgruPYfrWPEJjDia04vePRS/WLR8thJbK
SxYz85YxMlEDQTwuYV5nsyU3NDfC4IjUfe6foeEoPm0W+V32KFN/b/7Mw+3NEZ9G
WXunRhFJKV8ob7qli+byh/esDIwU3ABCuXkAzoeBIBpsbKvrdvflzGhiR+E68ttI
dTH0pF8ujLG1eX+wPLhbLGAEY/8oegRMTmtKZAY538Zy3r0dFCIfrwymywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFANIL7pqooCWTJEgrPodWIDwvcilMB8GA1UdIwQY
MBaAFM5najAoThSwLMbdqgNOd1QG5GGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUt
ZWE2MDY1NzA5NDZhLzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUtZWE2MDY1NzA5NDZh
LzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwGDOO9Ca
xodBEtH97fp3InenIAWzc1P8GCTMiTsza6L8NGfqlWA1h5hvIWxexkVUQq6GMqcY
Ow+Ipsy2Og1yDn4PyPUFo3al9APPY1Kbm4d9yZwif9L6drXj5zqrYMzmq0o+ExFs
3agfvpcicjNWPpbmSkruLMecTNK7Bcd3rVUvo/dRwnYoN2wd+mRd8imPuCPgiHeM
xbBqsvQ1pq/MQnTPPrRmT3Z/Vwp5II3+a8ekdqz7NY4Z29sQhF5HY/x9RjotBgF5
QialaMjfCtGM256dZ4Zf5brLxQzrC8T1lurE2Cj0ExdtmQeJJivfR66TcaE6jwtb
oIJ0E6EZXr1TTQ==
-----END CERTIFICATE-----
Generated at Sun Jun 14 01:32:39 2026 by rpki-client