Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File:                     h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier:          dPKN4vb4mdieHLeskF+XbZmmzj++II2AJaupOf+0+38=
Subject key identifier:   62:1B:BD:06:CC:AE:ED:8A:6C:C1:7C:3A:FD:D1:3E:75:60:76:67:9E
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer:       /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial:       019F41D26C7C86E79BA74F1F66DEEC7CC0C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number:          0769
Signing time:             Wed 08 Jul 2026 13:02:17 +0000
Manifest this update:     Wed 08 Jul 2026 13:02:17 +0000
Manifest next update:     Thu 09 Jul 2026 13:02:17 +0000
Files and hashes:         1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=)
                          2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: 6alSD/hEQGsfILNljlHVUKZTPavLmcR1RuQfhptKLuc=)
                          3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 13:02:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:41:d2:6c:7c:86:e7:9b:a7:4f:1f:66:de:ec:7c:c0:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
        Validity
            Not Before: Jul  8 13:02:17 2026 GMT
            Not After : Jul  9 13:02:17 2026 GMT
        Subject: CN=621bbd06ccaeed8a6cc17c3afdd13e756076679e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:db:5a:71:07:06:24:64:8e:3c:86:96:3d:04:
                    cc:c1:64:82:fe:72:20:e7:36:f0:11:8d:56:31:e6:
                    38:4f:ef:f0:15:fd:1c:5d:1b:fb:eb:11:96:3e:a3:
                    6e:ad:eb:57:5d:82:96:01:ae:ad:20:35:14:4c:f4:
                    c0:cd:fb:55:8c:dc:2c:82:e6:30:d5:b7:8c:64:a4:
                    cc:3d:c4:00:3d:25:0a:ed:a3:dc:07:bd:2b:5e:ae:
                    d3:7a:93:27:cb:38:39:20:45:bb:81:cc:60:85:8d:
                    cd:97:46:a2:f9:e4:a8:6f:8e:d8:50:fb:87:c2:66:
                    81:dd:1b:72:8b:a2:e8:2c:a3:c0:36:20:0a:2a:06:
                    80:bb:6a:8f:d7:af:75:b8:32:99:e8:b7:08:ee:49:
                    7a:92:c6:95:f9:22:e6:41:87:70:c0:5b:36:b5:9d:
                    b8:f7:47:a8:7d:c3:36:82:70:a1:fd:0a:50:d7:71:
                    6a:6d:18:dd:de:df:7e:d7:a3:22:64:36:6d:9f:42:
                    4c:95:78:aa:64:8e:7e:be:68:b0:09:00:72:75:6e:
                    ca:a0:05:ab:32:78:30:28:ba:ad:dc:da:fd:7b:bf:
                    16:c4:40:77:15:a2:ff:f8:e9:cb:88:ed:13:8b:55:
                    74:51:6b:20:f3:c7:1e:e4:53:c8:de:a5:48:9e:5a:
                    b2:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:1B:BD:06:CC:AE:ED:8A:6C:C1:7C:3A:FD:D1:3E:75:60:76:67:9E
            X509v3 Authority Key Identifier:
                keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:74:1f:00:d1:8d:1e:da:bd:b2:36:6b:1a:20:f0:63:6f:6a:
         3d:41:92:84:7f:90:06:f9:52:71:ca:e3:42:ea:00:3b:86:ce:
         cf:ca:fd:6d:2a:52:03:94:d1:be:ce:dd:9d:f3:15:75:92:5c:
         01:59:af:b7:70:61:36:97:9f:97:df:b8:6d:f1:67:53:d4:65:
         1c:57:41:e8:29:89:0d:27:8d:4b:64:39:b6:c9:d6:d8:2c:27:
         87:6f:da:fd:ce:c6:4a:85:0e:3c:79:d3:fa:c5:3d:63:94:6b:
         36:13:35:62:26:7d:25:4c:d8:1b:d1:9e:34:f7:2c:4b:4a:96:
         9b:f8:79:7c:fb:6b:0a:31:4a:06:aa:98:71:06:c7:63:65:21:
         ce:ec:d0:c8:2e:b8:32:99:78:e9:b6:23:5a:6e:50:22:21:31:
         1a:71:57:e1:37:71:b1:d0:8a:eb:8f:5f:91:06:a7:92:f4:50:
         70:00:e6:3a:ff:3b:7a:b1:60:5f:82:81:01:0a:10:23:44:55:
         33:ff:ac:80:70:20:ab:e2:68:8d:d2:b7:39:25:2e:bd:77:6c:
         a3:ae:ef:16:b2:67:4f:c7:38:a7:7d:70:f8:1c:1e:e5:66:72:
         e8:03:5a:cc:07:ea:a2:11:67:cc:de:7c:28:7f:dd:5c:68:5b:
         1b:62:de:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:31:37 2026 by rpki-client