Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File:                     StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier:          IVqcatfA9G6ycLy7+l1MWE/2EwM3w3Y9rSum0Ad+ZA8=
Subject key identifier:   51:8D:AE:E8:FF:51:B9:AE:3C:0B:53:9D:C7:89:E5:3B:6F:09:63:CB
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer:       /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial:       019EB7A0D2F79861C239ECFDA75D7E002CDC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number:          1956
Signing time:             Thu 11 Jun 2026 17:00:30 +0000
Manifest this update:     Thu 11 Jun 2026 17:00:30 +0000
Manifest next update:     Fri 12 Jun 2026 17:00:30 +0000
Files and hashes:         1: LA87c0N0jLLIJNyaAxdsrLDiRKc.roa (hash: 4oqbXXgz6mLbQ2FF6T8Y0DHtnqReuO9S3IDQ8izJVL4=)
                          2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: 2H9tg5wayGyZva2xBX7sE3cMg4WLX8D/3DofkQzXufw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 17:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b7:a0:d2:f7:98:61:c2:39:ec:fd:a7:5d:7e:00:2c:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
        Validity
            Not Before: Jun 11 17:00:30 2026 GMT
            Not After : Jun 12 17:00:30 2026 GMT
        Subject: CN=518daee8ff51b9ae3c0b539dc789e53b6f0963cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:0b:b7:4f:58:33:e3:93:87:03:39:78:2b:8a:
                    8c:e0:c1:72:13:83:90:d9:e7:35:47:48:ab:ba:5b:
                    a0:15:ca:74:dc:d8:52:f0:61:bc:1d:bf:60:cb:f0:
                    d3:60:f2:ba:a5:67:a4:36:89:6e:aa:02:55:96:73:
                    1f:42:e9:c1:cc:d8:3f:37:98:71:ca:0b:45:51:9b:
                    03:ee:03:3c:31:fb:dd:1f:df:fb:d7:fd:5e:45:5e:
                    0f:07:7c:d8:32:0e:e0:60:f2:05:71:d6:8f:e5:3a:
                    29:db:be:a5:25:13:8c:b3:b1:7d:5a:1f:fa:48:a5:
                    c8:dc:e7:48:0a:fd:12:13:f8:3f:af:1d:d9:d1:bf:
                    0b:81:2c:f2:61:ed:91:70:a8:d9:6c:36:94:28:cd:
                    7b:f3:f0:4c:f7:45:5e:67:ae:ef:8c:c6:93:5a:35:
                    31:a2:44:2d:40:c1:9f:d0:39:3e:84:fb:a8:c3:f0:
                    c3:6c:3f:44:a2:c9:73:f8:28:a4:a0:ef:26:b4:de:
                    31:01:01:87:53:a1:59:23:57:45:e2:d2:7a:d7:ac:
                    4d:8f:49:fc:06:ed:0b:dd:f1:fe:5c:f0:74:e4:f0:
                    31:b0:9f:9c:89:d7:36:f6:00:75:ca:b1:b3:6a:bf:
                    e5:cb:fc:e3:68:42:a6:eb:99:17:fa:dd:b7:53:bf:
                    9d:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:8D:AE:E8:FF:51:B9:AE:3C:0B:53:9D:C7:89:E5:3B:6F:09:63:CB
            X509v3 Authority Key Identifier:
                keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:09:f1:3e:57:52:9b:e4:2d:2d:6c:46:0e:52:30:67:23:84:
         fb:71:67:f3:6b:fc:00:7c:13:fa:d0:3c:de:e7:49:4b:53:c0:
         79:ff:32:f9:66:07:79:8f:85:db:1a:da:26:82:af:95:2c:5e:
         da:0b:54:58:f7:ee:7b:1f:29:50:49:91:2d:16:c9:9c:3f:c8:
         90:53:c3:c3:63:10:52:e6:df:9b:c4:a2:b1:78:c0:35:c7:82:
         5a:bf:d9:ba:f0:54:10:37:6c:e9:72:42:0e:cf:75:d3:1a:a3:
         91:7c:47:99:aa:e7:f8:81:4a:06:1a:25:68:3e:1d:d9:75:ea:
         2a:39:db:a7:b7:12:b7:80:e4:95:08:7c:83:c9:93:1a:15:47:
         e1:49:dd:3e:58:3c:d0:8e:09:40:dd:48:a7:b9:44:6a:5e:bc:
         b4:f2:d6:ef:40:a9:c0:32:0e:5a:9b:af:81:ba:11:1d:ae:f7:
         b1:bd:c8:48:cf:a7:00:3e:9e:fd:02:bd:e1:51:27:ea:e7:09:
         43:73:ca:76:9f:67:8b:a4:d6:08:17:42:c0:8d:dc:bc:52:fb:
         08:22:f4:87:a2:14:8c:3c:f1:64:4e:12:62:78:f6:bd:a9:2f:
         2c:ff:0e:97:06:68:6d:51:a7:b7:40:2a:bf:67:63:9e:15:0f:
         f8:84:9c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:40:34 2026 by rpki-client