Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: yViQxlknQuW+n4UFYFk6foAS56KwkG96B5uwtWneGxk=
Subject key identifier: C5:B4:10:FF:58:38:34:D9:9E:65:CD:D3:80:E7:4B:9D:DC:93:D5:9D
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019D29293A4FCC1DB61D095F182C26B5B320
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0C20
Signing time: Thu 26 Mar 2026 08:01:00 +0000
Manifest this update: Thu 26 Mar 2026 08:01:00 +0000
Manifest next update: Fri 27 Mar 2026 08:01:00 +0000
Files and hashes: 1: Q3WmyVx2hL_ulJlmWV4wBuMv3sY.roa (hash: qNBXvE4FodOwmoHeT/8KvY1e+YtkkhFfaz/pGiYECDk=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: sA6PtpoZWLNknGE+brDoCtjO0vgJ132+4D98kIPuPR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:3a:4f:cc:1d:b6:1d:09:5f:18:2c:26:b5:b3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Mar 26 08:01:00 2026 GMT
Not After : Mar 27 08:01:00 2026 GMT
Subject: CN=c5b410ff583834d99e65cdd380e74b9ddc93d59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e5:21:99:52:0e:3a:75:68:68:77:f4:a3:35:
69:10:d2:37:b3:ba:cc:c6:78:de:6f:b1:f4:f9:d4:
9c:21:05:c9:8a:2b:27:e6:ff:f3:d5:ad:8a:4e:13:
54:9a:ed:02:41:6c:b2:0e:93:26:32:35:94:72:28:
11:aa:3a:8b:1f:9d:83:24:fc:f1:70:9a:ad:c9:59:
0c:76:63:dd:2a:3f:bb:80:bb:bb:d7:58:17:3b:1e:
28:e4:c4:d6:e4:9a:dd:74:61:d4:0b:cc:36:82:b2:
b4:5b:37:26:29:cf:40:4e:c9:dd:43:2f:a7:48:d1:
bc:f2:ef:fc:c8:f7:0c:d1:f0:4a:4d:eb:a2:6a:33:
ea:22:a3:6f:ac:34:0a:d6:08:b3:b4:60:b3:4c:cb:
71:3b:a9:05:28:7c:20:5d:e9:6e:ef:60:45:61:f7:
70:c7:4d:6c:64:25:78:10:8b:57:c0:ed:a6:01:f6:
ba:43:56:dd:d4:4f:dd:2f:63:68:05:c0:77:42:39:
3e:0d:71:24:c3:4c:d2:28:17:c7:89:28:fb:39:37:
32:a5:33:6c:2e:db:10:8e:1d:14:0c:29:9f:c8:2b:
b3:5c:8f:f4:ab:3c:bd:12:4b:09:9d:67:c1:fd:f7:
30:03:b3:02:be:bd:a8:4a:b4:8c:a9:ff:6b:a3:ac:
7c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B4:10:FF:58:38:34:D9:9E:65:CD:D3:80:E7:4B:9D:DC:93:D5:9D
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:b4:a5:c2:4d:f4:f7:60:d2:e2:78:0f:04:54:3f:ca:82:b7:
80:bb:0f:12:35:cc:b7:11:fb:c7:df:0a:aa:53:f2:6c:40:63:
58:bd:17:63:a7:fd:0c:b0:c4:5b:e5:2e:e2:68:b4:fe:0e:d7:
f9:c8:db:13:37:07:1e:d9:d0:24:64:f9:9b:e9:b8:ae:b2:fa:
97:90:31:e2:ad:72:c2:d3:54:ea:42:2e:e3:c5:81:92:f5:4e:
7c:9c:92:4e:f5:35:4b:01:9a:67:6f:5f:cb:65:1b:c9:d2:61:
ad:1e:43:a1:78:a1:02:8f:13:9a:1d:27:a8:fa:ea:be:21:0c:
5d:e6:16:cd:64:42:46:46:00:9b:80:14:96:68:3e:f3:4d:82:
db:b0:f7:9b:4b:5a:89:40:03:0a:0e:26:ae:ee:be:dd:ad:81:
10:a0:db:eb:ff:fa:e1:9c:fc:fd:cf:d6:ac:3e:71:47:d8:f2:
42:f1:63:34:7a:5a:ae:8f:b6:eb:ea:19:25:02:6b:91:80:96:
6b:aa:8f:e3:7b:01:e5:13:17:53:46:51:ce:26:e8:d2:69:cc:
d7:59:35:3a:08:8d:0a:79:01:d8:c3:e0:d0:2c:24:a6:58:fe:
2d:0e:2d:4e:67:cd:13:f6:59:49:03:bd:fe:24:f2:aa:12:4f:
62:75:ef:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:56:08 2026 by rpki-client