Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: /E72dpfOK7wKjCRcYkeoO4VjnSPupIrgoaTP/OLX6g4=
Subject key identifier: 2A:89:C7:8B:65:62:60:64:27:C0:78:8B:38:5B:83:62:B0:88:CA:75
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 0197B745A702CE1E5586A671257B97C1FB88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 094E
Signing time: Sat 28 Jun 2025 16:01:24 +0000
Manifest this update: Sat 28 Jun 2025 16:01:24 +0000
Manifest next update: Sun 29 Jun 2025 16:01:24 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: /PPEVp9MWZOF086QR8MDRJrVFnwP8Oof5gDqvtiVMBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:a7:02:ce:1e:55:86:a6:71:25:7b:97:c1:fb:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Jun 28 16:01:24 2025 GMT
Not After : Jun 29 16:01:24 2025 GMT
Subject: CN=2a89c78b6562606427c0788b385b8362b088ca75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d3:54:ef:0b:9d:ca:56:6c:c1:e0:42:ae:5d:
fe:9d:95:1f:9b:d1:b1:b3:01:1f:c8:44:70:9e:c8:
22:6b:d4:58:fc:4a:c7:85:e4:b7:41:ca:5b:00:0f:
d1:1b:e4:6d:04:44:ac:a4:35:23:08:91:82:c6:fd:
b3:2c:2a:6a:a3:3b:e8:51:bb:b7:fc:49:b4:21:04:
28:b4:8c:62:e9:f0:6f:ed:b2:78:e9:4a:9e:40:c8:
8a:31:ab:a3:00:3b:1d:ae:f1:ec:b5:01:d3:15:8d:
94:d2:27:a4:c1:b5:46:aa:ea:23:07:16:da:dd:21:
a1:a9:f1:f0:c4:bd:b8:3b:e2:2b:95:d2:d4:11:d2:
eb:af:a3:1b:c4:ec:8c:93:a0:72:10:b7:87:57:55:
0b:7a:fe:69:54:d7:b9:03:71:db:cc:91:7b:c7:11:
1f:c2:be:1b:4c:5e:18:fd:db:3b:6f:56:88:89:32:
6f:3c:4e:df:bb:cf:f1:0f:6a:98:4a:a4:09:74:20:
3d:63:6f:c8:67:8d:6c:a4:2f:2d:36:ca:26:17:73:
d7:b4:25:47:38:d4:ce:24:42:c5:d2:47:8d:b4:e7:
29:b8:48:b8:80:40:da:3a:71:ee:cb:e9:ba:73:67:
44:6e:05:11:ce:50:6e:c4:60:29:0e:0f:d4:1b:80:
e5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:89:C7:8B:65:62:60:64:27:C0:78:8B:38:5B:83:62:B0:88:CA:75
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:8d:81:8f:f2:30:86:7a:77:89:4e:92:37:25:3b:c0:16:e2:
d5:3e:b5:b0:f7:e8:69:e7:dc:80:f1:ad:7f:f1:83:4a:c7:1a:
be:03:f5:9a:67:e6:93:c5:52:8d:a9:f8:d4:bd:44:69:66:72:
f0:a3:41:2d:b7:26:f0:45:42:9e:ec:1a:a1:19:92:40:83:79:
ed:bb:62:bb:5d:16:92:33:4d:2c:e6:ef:5d:cd:27:7e:95:05:
95:5f:20:93:87:ee:4b:e4:8d:df:43:01:1a:14:bf:59:ca:a8:
d2:71:48:23:d7:6e:0d:de:10:fd:62:18:2f:f0:2a:bf:fd:5f:
e1:5e:27:64:e7:09:a8:ff:f2:ea:cd:4a:cf:d3:49:df:04:32:
ed:68:16:b5:00:18:93:15:4c:6a:35:e1:78:7c:fd:49:43:ae:
d2:67:7c:2e:84:9c:87:28:4f:06:78:15:d2:ec:36:ea:10:cb:
ec:4d:44:37:a4:34:80:64:d1:de:d5:54:3e:d9:5d:21:38:d2:
19:cd:a2:fc:3d:35:14:d1:d8:11:53:e3:f5:c8:22:7d:08:86:
2b:8e:bd:df:a7:f7:90:b1:30:9a:91:77:83:86:69:d3:ae:0c:
38:24:f1:13:98:86:d0:5d:5a:01:ff:58:28:96:a2:27:f7:ba:
8b:98:46:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:37 2025 by rpki-client