Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: uvhDkqRqGN7AvbFEiBdOw/AujL8uf+yIVR4HaT2W2Ro=
Subject key identifier: 2F:7C:97:C0:B5:D2:2D:67:F9:3B:53:DB:61:42:43:7E:AD:5A:5B:EF
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 0198D515AF798509FB6DFACE95E1699E46D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 09E2
Signing time: Sat 23 Aug 2025 04:00:24 +0000
Manifest this update: Sat 23 Aug 2025 04:00:24 +0000
Manifest next update: Sun 24 Aug 2025 04:00:24 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: l74Gi3xw998pZEd2/o2mT1/sJ2IkbxmXtZO7yrj8d7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:af:79:85:09:fb:6d:fa:ce:95:e1:69:9e:46:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Aug 23 04:00:24 2025 GMT
Not After : Aug 24 04:00:24 2025 GMT
Subject: CN=2f7c97c0b5d22d67f93b53db6142437ead5a5bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:29:5e:e1:15:c3:a5:ba:ce:91:69:5b:fd:25:
b8:59:90:a6:4a:ed:8d:47:5e:50:d5:b3:ee:b3:98:
d8:32:d3:1d:74:f9:59:24:87:bf:17:56:1d:50:15:
18:4c:be:b9:03:b8:93:82:5f:e3:2a:6d:2d:27:68:
33:55:d0:2b:bc:10:25:8e:9b:88:e6:f7:9a:1e:da:
d1:13:bb:33:b5:ba:32:e1:fb:04:4a:8f:25:a9:19:
e6:76:f2:17:d2:6e:ba:17:5b:37:24:dc:9a:82:4a:
67:73:d3:b1:27:cb:98:2b:65:c6:30:27:06:34:dd:
64:ec:f4:52:36:9a:c4:4e:94:e0:73:ff:87:9e:7f:
29:2d:89:53:72:cc:dc:4e:e3:e0:05:e6:7b:7e:70:
5e:35:cf:f0:da:82:95:36:e0:31:03:40:97:c9:86:
fb:99:2f:f3:55:83:32:db:7a:a5:98:d8:bd:ee:0e:
fe:0a:37:aa:f8:e0:aa:43:11:25:e1:fe:fa:34:71:
7b:2b:28:ba:83:57:23:3d:fa:58:bb:b1:f1:f9:8d:
2d:39:21:40:94:1c:7a:99:37:e5:29:37:80:c9:16:
9c:18:c5:ac:f8:a2:da:19:f6:7b:b0:f0:b3:c7:9c:
12:24:f5:35:cd:84:ac:8f:4b:88:c6:16:65:aa:ac:
60:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:7C:97:C0:B5:D2:2D:67:F9:3B:53:DB:61:42:43:7E:AD:5A:5B:EF
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:13:40:44:1e:73:e1:c2:f6:44:61:f4:06:b4:d5:87:5b:7c:
d6:c2:ee:83:dd:b6:2e:b3:db:2a:df:2e:29:7e:97:1c:08:61:
f2:09:cd:ea:5b:dd:36:cc:0e:3c:9f:61:3b:c7:7c:4a:ca:ea:
6a:77:b2:a2:e6:31:8a:6a:0e:08:1d:40:e1:f5:e6:dd:5f:d5:
fe:b8:c5:60:f2:c1:49:b2:b4:77:13:ed:3d:76:c4:57:1d:ba:
a9:27:16:8c:82:89:b8:59:cd:0b:a2:60:87:26:64:2b:cd:db:
4c:c7:92:58:57:85:a1:b0:67:8b:01:60:4f:9e:c4:15:28:86:
ac:39:cf:dc:a3:6d:88:27:65:98:ae:8e:a0:9c:e8:61:99:00:
64:13:b7:5f:61:92:1b:5b:e5:8e:9a:2c:72:aa:1c:ee:01:e9:
7a:fd:c6:d1:f6:cd:e4:ec:22:cc:44:47:1d:2d:19:71:11:ea:
c2:8e:56:65:d7:ba:ba:72:f9:cc:20:ec:40:9a:28:89:40:92:
58:df:47:6d:d0:a9:e2:83:5c:2f:7d:a3:28:1a:65:8f:f4:2f:
f8:38:66:66:5d:fd:eb:03:71:57:bb:fd:a9:fa:a7:03:e5:52:
76:30:7b:18:1d:90:d0:99:5a:0a:09:ab:21:b0:ce:d1:64:24:
fd:0c:37:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:47 2025 by rpki-client