Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
File:                     O-_lCkD7FzJUHoqXRQq13ndHcdg.mft (raw, json)
Hash identifier:          NUUSuCFiT0a+92CK4bjtQnxlUWfUQcvOOO6G2lDEipM=
Subject key identifier:   BF:E4:E6:AA:61:0D:80:87:4E:20:65:65:FD:D9:F1:1D:39:AC:91:0F
Authority key identifier: 3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8
Certificate issuer:       /CN=3befe50a40fb1732541e8a97450ab5de774771d8
Certificate serial:       019F42ADB0E224C55B414BD2106B332B0BAD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
Manifest number:          072F
Signing time:             Wed 08 Jul 2026 17:01:46 +0000
Manifest this update:     Wed 08 Jul 2026 17:01:46 +0000
Manifest next update:     Thu 09 Jul 2026 17:01:46 +0000
Files and hashes:         1: 1UG_i4X68HiPHviRW1z0p_TSsXk.roa (hash: Rxi5VpSkCVYP7zpaawxiqgEVbztptEcbkSS6G+faZaE=)
                          2: 921A09PidqQ_DPqribEcJ4Ns9ic.roa (hash: 1p6ZvcbQbV5L2uaDpeFuyGxdzNA8guzksazYOvFT/c0=)
                          3: O-_lCkD7FzJUHoqXRQq13ndHcdg.crl (hash: Gm9HaT9ol3rZk8cgeuHXLy5iapIkN/7nQ13QaE5QeXs=)
                          4: QakAbn2qL6zC8DUBjSIVZLBbpXc.roa (hash: 6xvVEYi0a4GqVQ6WMVJR2REYvzQK/KHG+c6HRFsJwKk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 13:45:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:42:ad:b0:e2:24:c5:5b:41:4b:d2:10:6b:33:2b:0b:ad
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3befe50a40fb1732541e8a97450ab5de774771d8
        Validity
            Not Before: Jul  8 17:01:46 2026 GMT
            Not After : Jul  9 17:01:46 2026 GMT
        Subject: CN=bfe4e6aa610d80874e206565fdd9f11d39ac910f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:64:7d:eb:f7:55:f7:17:96:5e:f9:60:22:3e:
                    10:62:2f:97:c9:e4:19:05:b0:40:95:e3:17:3a:c4:
                    84:a1:9b:12:25:a1:16:45:60:ec:1f:96:0f:63:cc:
                    b1:a0:1e:66:fa:bb:5a:e2:be:e7:60:64:a7:a1:89:
                    aa:a5:47:21:10:bf:a8:13:65:77:78:ae:1c:ca:94:
                    7c:25:9b:2e:97:84:6b:7c:86:25:e9:dc:92:04:ee:
                    09:94:05:70:59:09:39:cf:71:7b:e7:90:09:93:88:
                    a5:a8:a3:8c:d4:85:1a:33:80:80:96:b7:b2:17:76:
                    4a:30:73:67:6c:d8:b8:f5:c1:76:30:8e:56:4d:91:
                    88:bb:08:8b:8e:d2:8d:24:36:a9:10:ee:3b:05:c0:
                    69:18:45:b2:af:31:b0:d2:83:9e:94:be:14:97:a4:
                    42:67:94:c7:6b:4b:ef:29:dd:31:7f:98:e7:cc:9a:
                    56:ba:a2:2a:14:09:e6:b5:5a:32:83:76:ee:1f:9c:
                    36:05:24:16:ee:c7:c0:d8:50:78:e5:30:fd:69:6f:
                    90:4e:bc:ee:75:fc:45:7d:04:88:04:98:44:e0:7f:
                    6c:2a:22:3f:be:f1:6f:ea:6f:4a:f9:0e:3d:d7:cc:
                    69:e4:f5:69:34:ce:81:ca:82:e8:24:84:ad:82:82:
                    cf:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:E4:E6:AA:61:0D:80:87:4E:20:65:65:FD:D9:F1:1D:39:AC:91:0F
            X509v3 Authority Key Identifier:
                keyid:3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:6f:f7:47:bd:17:41:36:11:2d:a6:a6:67:3c:b7:93:16:df:
         2a:fc:34:55:69:7a:40:d2:a3:6c:a6:78:46:5c:c2:24:f7:0d:
         cd:58:1c:1e:2f:a6:7e:0b:7b:ee:5e:13:9b:c7:e5:61:6d:6e:
         ff:8e:97:a7:af:91:3d:e1:20:12:ac:3f:b6:14:7b:bd:10:c7:
         03:32:e7:d8:37:13:4b:35:6e:69:e4:3e:2d:8c:cb:a3:0f:0d:
         29:25:66:f0:58:4d:4a:f7:c0:f2:57:1c:40:db:94:f6:97:66:
         63:dd:4f:2b:49:b1:f2:50:d0:6e:78:d7:af:15:08:6a:65:6f:
         ce:57:a9:b0:dd:8f:12:69:ef:10:9d:5b:01:52:ea:e2:c9:62:
         95:b1:fd:55:97:73:74:82:19:68:d0:e3:7c:ff:f5:2f:26:b4:
         ae:72:7c:31:3c:35:3f:3f:de:b2:25:9d:b8:25:bd:c5:47:bd:
         6f:0f:8e:40:79:be:69:21:74:74:e0:8a:59:18:22:48:26:6e:
         89:d3:b8:4c:76:4a:65:86:12:aa:c9:0e:66:20:ef:29:b2:fd:
         e8:08:65:d5:d0:2b:ee:ab:23:94:0d:6a:fc:93:a5:87:62:6c:
         86:a7:cb:0f:9a:ab:f1:81:64:05:8f:32:9e:a1:9e:97:04:02:
         d1:22:47:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 20:06:34 2026 by rpki-client