Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
File:                     VKwN3sMOJORX4W5lB9IZcoMQiT0.mft (raw, json)
Hash identifier:          y0YvUqQA5hyOKc6HeufJnNMnxNwHXQBU5DOwzkTVvm4=
Subject key identifier:   23:67:E1:AD:93:00:B9:5B:44:0C:AD:69:17:FA:11:E6:44:63:AB:9D
Authority key identifier: 54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
Certificate issuer:       /CN=54ac0ddec30e24e457e16e6507d219728310893d
Certificate serial:       019F72F41387F66147338E41B037DF4A874E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
Manifest number:          0522
Signing time:             Sat 18 Jul 2026 02:00:26 +0000
Manifest this update:     Sat 18 Jul 2026 02:00:26 +0000
Manifest next update:     Sun 19 Jul 2026 02:00:26 +0000
Files and hashes:         1: VKwN3sMOJORX4W5lB9IZcoMQiT0.crl (hash: +/wy/ULv/ivtqAvw0jCtk//PSkbyvUx/i1SQ33Upz9A=)
                          2: uqb13WcH-sHQrFpv4PbFThoSkmk.roa (hash: z4r6mb25fzWJDdqfWlcYfompTywQy1djheMADUOlVYk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Jul 2026 19:54:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:72:f4:13:87:f6:61:47:33:8e:41:b0:37:df:4a:87:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=54ac0ddec30e24e457e16e6507d219728310893d
        Validity
            Not Before: Jul 18 02:00:26 2026 GMT
            Not After : Jul 19 02:00:26 2026 GMT
        Subject: CN=2367e1ad9300b95b440cad6917fa11e64463ab9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:ed:20:3e:8a:b1:cb:8a:e8:8f:e6:15:e3:fa:
                    39:5d:5b:fb:25:c5:11:5d:56:b1:0c:06:77:44:48:
                    96:94:72:b9:71:bb:4f:37:02:13:88:8a:e1:d1:30:
                    24:77:7c:b7:0a:78:27:d4:79:23:cf:7a:6d:a0:4b:
                    79:a6:20:19:ea:3b:ba:f5:20:2c:54:e5:08:66:b4:
                    26:a8:cd:a1:b9:a0:e8:b0:99:6b:09:26:7c:78:b8:
                    94:a8:60:4f:d1:99:52:6e:00:9a:52:8d:ca:86:d7:
                    cd:e4:c9:2b:cf:5e:3e:31:f6:fb:ae:20:1d:29:53:
                    30:1e:dd:a7:ad:b2:ca:6e:7b:26:f4:a7:6c:13:f7:
                    c4:18:c5:a9:0f:6d:0b:5f:74:4f:be:da:73:20:fb:
                    40:af:76:4a:8d:41:24:87:ee:26:12:e4:0e:a6:99:
                    c3:50:ff:38:3e:21:b5:dd:d0:64:50:06:35:27:42:
                    c4:ee:8d:3c:fd:cc:db:ae:48:83:93:8a:1e:50:38:
                    30:14:07:fb:5b:73:9d:7b:a4:04:0d:60:e7:a1:9f:
                    e5:c1:f4:07:06:ac:9f:6c:f0:46:2f:a9:b8:1a:7c:
                    15:a2:b9:1b:7b:a6:2d:0a:a6:db:95:25:3f:31:ea:
                    a8:b2:6d:48:ab:af:a3:6d:25:94:e0:42:d7:e2:a6:
                    0b:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:67:E1:AD:93:00:B9:5B:44:0C:AD:69:17:FA:11:E6:44:63:AB:9D
            X509v3 Authority Key Identifier:
                keyid:54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:dc:09:c3:13:04:9c:4e:19:7b:5f:f0:c2:8a:53:ea:20:ac:
         02:ad:e2:ee:4a:c1:2a:26:a3:ac:72:a8:06:bb:ae:ab:7d:f8:
         12:c6:5f:c9:d2:6c:60:db:c0:41:6a:13:96:46:0f:ea:3f:f9:
         2e:ef:a1:3c:1d:2f:e0:5b:97:77:70:d3:83:b4:6c:82:cc:58:
         6e:de:7e:43:5b:0c:f3:77:f7:78:f1:47:a2:4f:bb:37:8a:82:
         a6:0f:f3:5d:a2:bd:13:bc:8e:b9:19:f5:a3:2d:d5:eb:18:48:
         78:56:a0:57:3e:7a:e6:9f:fb:9f:ba:f9:b7:c8:fa:92:50:61:
         b2:b3:a1:70:c6:8a:6a:c4:03:16:c2:1a:37:9a:e2:80:ca:bd:
         bc:b0:2e:4f:bb:08:80:d7:a5:5b:b2:e9:a5:96:ff:4f:a5:9b:
         5a:df:ed:ce:5a:7f:2f:2e:7b:4c:07:8b:ad:e4:0b:48:9d:2b:
         c0:2c:d6:c6:b2:af:9c:17:3d:e0:11:9f:3c:80:88:4a:60:45:
         9d:92:c1:d5:86:07:4a:95:ba:37:47:57:f5:ec:00:ea:7b:47:
         bf:94:2a:34:c9:c4:02:a1:8c:7c:3f:d6:57:39:ff:91:78:40:
         ef:1c:f4:39:a8:4b:a5:ec:9f:58:01:e9:2f:82:10:ce:25:89:
         09:8d:38:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:38 2026 by rpki-client