Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
File:                     skz59tA09Gdg9PWbFzneEnuK3_M.mft (raw, json)
Hash identifier:          qCQ797e6+f27E2uHepHSwNJJ6OYRg+RJO4QRJtFDFa4=
Subject key identifier:   C6:E6:98:DC:82:3D:1B:C7:AE:88:95:22:4D:0E:FB:57:78:C0:D3:62
Authority key identifier: B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
Certificate issuer:       /CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Certificate serial:       019F39056C844D57106D3A5915FE237D6345
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
Manifest number:          0E7D
Signing time:             Mon 06 Jul 2026 20:01:24 +0000
Manifest this update:     Mon 06 Jul 2026 20:01:24 +0000
Manifest next update:     Tue 07 Jul 2026 20:01:24 +0000
Files and hashes:         1: 2_rmRx0h4Ldgjna3JZ3fPaV_8K4.roa (hash: Db9G7H48+/jdUTzq6s6B93b4lpE5OnZQxkmWnM9jPYM=)
                          2: skz59tA09Gdg9PWbFzneEnuK3_M.crl (hash: b5chzxRZe56HluqmN1TAYtPIPBpHDfbRIP1N5zJ+MGs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:39:05:6c:84:4d:57:10:6d:3a:59:15:fe:23:7d:63:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
        Validity
            Not Before: Jul  6 20:01:24 2026 GMT
            Not After : Jul  7 20:01:24 2026 GMT
        Subject: CN=c6e698dc823d1bc7ae8895224d0efb5778c0d362
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:9f:f2:11:d4:58:04:84:ae:e3:64:7a:e3:b8:
                    a4:09:af:f2:f3:2b:67:06:7d:1a:5c:26:b1:33:42:
                    6a:0c:49:f2:6c:9d:dc:65:fa:15:50:07:f0:49:43:
                    8f:a8:a3:2e:f5:5c:ee:5e:4f:68:6d:ec:11:bb:f8:
                    b4:46:8f:ba:44:aa:f0:9d:f4:aa:01:c1:fe:1a:47:
                    9d:f2:7f:d4:87:0f:42:cc:39:3e:09:2a:2b:64:ac:
                    d7:8c:a3:3e:77:ac:cc:28:f3:07:3d:16:64:b4:b2:
                    a6:da:8c:69:dd:9d:52:e3:49:a4:27:75:cb:ca:d8:
                    c4:98:6b:a6:c7:ce:7d:78:d7:08:18:fb:31:72:b3:
                    c3:65:33:4d:2f:5d:68:09:0a:1d:ec:26:8e:bb:dc:
                    bb:62:d3:d5:3d:27:dc:a2:e9:3a:4e:a3:e0:2e:89:
                    e0:69:7d:91:a4:ad:bd:c9:4c:48:bf:c7:c8:f3:42:
                    ec:88:96:f0:0c:af:f5:04:0c:c2:55:6d:88:5c:6b:
                    d6:9f:48:b5:91:4e:04:37:58:05:96:85:c6:f5:6e:
                    90:f3:7c:23:11:0a:7f:97:c0:3a:67:bf:80:69:08:
                    26:bc:9b:52:bc:95:b2:14:40:94:3f:0e:f6:54:04:
                    96:52:7f:ba:90:58:b8:a1:8b:87:48:34:95:0c:db:
                    62:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:E6:98:DC:82:3D:1B:C7:AE:88:95:22:4D:0E:FB:57:78:C0:D3:62
            X509v3 Authority Key Identifier:
                keyid:B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:a2:3c:e9:f4:21:a6:d9:20:97:15:b3:4c:8a:2c:9e:f6:74:
         b9:02:db:84:2f:9a:b9:41:3d:e3:13:2a:38:62:0b:df:46:6c:
         3a:c8:9e:a4:5d:a7:82:13:c9:55:b0:78:3f:3f:35:2f:5b:ec:
         92:1c:0f:6e:d7:f1:93:57:70:8e:23:b6:e7:5f:20:c6:f8:80:
         0e:2a:dd:60:42:de:97:bb:42:66:b7:1a:eb:11:e1:f0:ee:58:
         55:35:7f:54:b9:f6:10:72:87:d5:6f:f3:c3:07:dc:c5:34:a1:
         2c:a4:0c:5f:a8:65:de:b7:e5:c8:63:01:a6:c7:2f:96:30:39:
         62:34:01:cb:3b:b6:70:e4:8a:89:c8:5f:e3:36:e5:39:ee:a4:
         7c:30:e5:33:6b:eb:19:59:c0:fa:c3:76:31:c0:57:88:b2:79:
         ba:cc:e8:a8:46:68:0b:e9:b1:0a:df:c5:5e:13:7a:c5:b1:e1:
         84:4c:ef:92:58:38:e6:d6:94:0a:d3:d3:1e:89:d6:61:e2:91:
         2b:0c:59:31:56:35:cc:0c:71:5e:4c:3e:6b:7a:ba:45:46:65:
         b9:53:f7:04:fc:0f:2b:54:ca:bf:88:86:ec:cb:b1:d5:9b:52:
         2b:83:65:9d:88:9c:77:0c:94:67:69:1d:f7:30:48:61:be:7e:
         80:e7:0f:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ85BWyETVcQbTpZFf4jfWNFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNGNmOWY2ZDAzNGY0Njc2MGY0ZjU5YjE3MzlkZTEyN2I4
YWRmZjMwHhcNMjYwNzA2MjAwMTI0WhcNMjYwNzA3MjAwMTI0WjAzMTEwLwYDVQQD
EyhjNmU2OThkYzgyM2QxYmM3YWU4ODk1MjI0ZDBlZmI1Nzc4YzBkMzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5/yEdRYBISu42R647ikCa/y8ytn
Bn0aXCaxM0JqDEnybJ3cZfoVUAfwSUOPqKMu9VzuXk9obewRu/i0Ro+6RKrwnfSq
AcH+Gked8n/Uhw9CzDk+CSorZKzXjKM+d6zMKPMHPRZktLKm2oxp3Z1S40mkJ3XL
ytjEmGumx859eNcIGPsxcrPDZTNNL11oCQod7CaOu9y7YtPVPSfcouk6TqPgLong
aX2RpK29yUxIv8fI80LsiJbwDK/1BAzCVW2IXGvWn0i1kU4EN1gFloXG9W6Q83wj
EQp/l8A6Z7+AaQgmvJtSvJWyFECUPw72VASWUn+6kFi4oYuHSDSVDNtiCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMbmmNyCPRvHroiVIk0O+1d4wNNiMB8GA1UdIwQY
MBaAFLJM+fbQNPRnYPT1mxc53hJ7it/zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wZDAwNmQtYWI3YS00MWM5LTk3ZjMt
OTk1YzM2OWRhNjcyLzEvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wZDAwNmQtYWI3YS00MWM5LTk3ZjMtOTk1YzM2OWRhNjcy
LzEvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnKI86fQh
ptkglxWzTIosnvZ0uQLbhC+auUE94xMqOGIL30ZsOsiepF2nghPJVbB4Pz81L1vs
khwPbtfxk1dwjiO2518gxviADirdYELel7tCZrca6xHh8O5YVTV/VLn2EHKH1W/z
wwfcxTShLKQMX6hl3rflyGMBpscvljA5YjQByzu2cOSKichf4zblOe6kfDDlM2vr
GVnA+sN2McBXiLJ5uszoqEZoC+mxCt/FXhN6xbHhhEzvklg45taUCtPTHonWYeKR
KwxZMVY1zAxxXkw+a3q6RUZluVP3BPwPK1TKv4iG7Mux1ZtSK4NlnYicdwyUZ2kd
9zBIYb5+gOcPYA==
-----END CERTIFICATE-----
Generated at Mon Jul 6 23:21:08 2026 by rpki-client