Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
File:                     MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft (raw, json)
Hash identifier:          nqTbELh2tH30poDETyq4qg9hiPJQ24sDQF7dtkGAoLA=
Subject key identifier:   76:CD:32:38:43:2F:BA:C3:8A:C0:48:F2:7C:42:3B:1A:0F:D3:EC:38
Authority key identifier: 31:74:AE:50:71:1E:1A:D5:F2:F8:2B:A2:0D:2F:73:CA:B7:09:DA:B8
Certificate issuer:       /CN=3174ae50711e1ad5f2f82ba20d2f73cab709dab8
Certificate serial:       019F37F2F94AB5109CBA69509792337C8BD3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
Manifest number:          014E
Signing time:             Mon 06 Jul 2026 15:01:38 +0000
Manifest this update:     Mon 06 Jul 2026 15:01:38 +0000
Manifest next update:     Tue 07 Jul 2026 15:01:38 +0000
Files and hashes:         1: EqD5liyFpdPq2XLyZyti6Tv-BNE.roa (hash: 45CS/GD+FH3aynJbkHhA0cCnbCPZTt1kF44EBED09Gk=)
                          2: MXSuUHEeGtXy-CuiDS9zyrcJ2rg.crl (hash: jNsUVo1TYEgQa9UNRVbos2EqtcZUvJxMFpHeuMACEQQ=)
                          3: ZUFhy3Q3TnBrOEV6oC_51srJdWY.roa (hash: 9diosIXqGs1+lYyW3HLA/DSBkni7soymXvUgQxb3AL0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:37:f2:f9:4a:b5:10:9c:ba:69:50:97:92:33:7c:8b:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3174ae50711e1ad5f2f82ba20d2f73cab709dab8
        Validity
            Not Before: Jul  6 15:01:38 2026 GMT
            Not After : Jul  7 15:01:38 2026 GMT
        Subject: CN=76cd3238432fbac38ac048f27c423b1a0fd3ec38
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:e0:f4:23:7e:2c:78:d3:4b:25:8c:a2:27:5d:
                    79:71:04:3c:22:d4:53:25:af:97:30:69:3b:f9:de:
                    13:4f:a6:66:b1:ec:b5:3b:59:4a:15:46:c0:a8:23:
                    5a:46:8d:3c:db:92:58:58:cd:30:c0:f9:56:44:1e:
                    69:e7:5d:f8:fd:42:64:fe:af:1f:db:1c:32:dc:23:
                    42:4f:6f:55:12:6d:af:a7:5d:ee:29:8a:98:c7:75:
                    27:5b:e0:eb:3c:2c:a7:55:24:c6:65:4d:24:fb:ed:
                    c3:91:47:80:65:f2:24:02:48:8f:cb:4a:3d:17:b4:
                    a1:ca:12:8b:da:83:2e:39:80:02:d0:5a:ff:75:ae:
                    7d:d3:50:a1:db:47:d3:31:45:4f:76:6d:31:b2:17:
                    e5:67:33:f8:64:a7:07:0b:50:d6:79:38:52:0d:f7:
                    a7:f6:ad:7d:b4:c0:9d:b8:e3:97:2b:19:95:79:55:
                    fc:cd:f5:cf:2b:09:a0:01:a8:65:10:96:0d:a5:a0:
                    34:97:8b:f0:c6:7a:6a:42:8e:c4:6e:44:e6:fc:80:
                    1b:d8:5a:5f:73:18:01:2b:4b:db:4e:2a:e3:d6:07:
                    dd:d9:68:38:4d:18:8f:0a:c9:40:99:6e:fb:e5:2e:
                    c6:5a:5a:ce:18:7e:77:ad:10:69:5f:1e:4e:e9:88:
                    20:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:CD:32:38:43:2F:BA:C3:8A:C0:48:F2:7C:42:3B:1A:0F:D3:EC:38
            X509v3 Authority Key Identifier:
                keyid:31:74:AE:50:71:1E:1A:D5:F2:F8:2B:A2:0D:2F:73:CA:B7:09:DA:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:96:a5:fa:40:72:41:8d:80:d3:df:81:b1:a4:35:31:f3:dc:
         c1:3d:83:4d:d9:d3:20:7c:47:96:94:bb:8e:65:14:7c:e6:c6:
         36:94:2f:c6:08:d0:fc:e3:cf:92:ef:08:5a:36:2b:bd:3c:b4:
         f5:95:2d:90:42:06:a4:a4:48:77:09:73:c9:f0:b9:ab:4d:8b:
         e0:24:58:be:cb:81:c8:98:4f:7f:09:3c:24:3e:27:8c:a7:ae:
         56:35:d0:4a:7d:da:94:68:fc:ff:fd:8d:ce:87:9e:0d:89:2b:
         d7:59:52:bf:eb:a4:ec:d8:b2:53:fe:dd:ce:7c:ea:17:84:36:
         62:7f:84:a6:09:d1:61:8e:a7:0c:8a:59:e5:8f:88:aa:84:b5:
         69:f0:af:46:8e:9f:0c:6b:1d:99:91:b3:17:47:00:47:93:d6:
         bd:58:c9:35:d6:16:e7:ec:94:b7:10:ae:f9:e5:e0:06:3e:d7:
         6e:21:94:58:6e:a0:99:d1:9a:2c:30:8b:de:a2:da:26:be:4f:
         06:1c:24:48:70:4c:66:59:6a:cc:c9:ef:36:94:d0:cd:8a:f8:
         1e:99:18:3b:d9:60:ed:de:3f:68:ff:3a:4e:e4:90:be:d2:a8:
         87:f6:48:4c:f3:55:23:1b:dd:35:c9:79:6f:e1:53:9e:41:2e:
         85:34:29:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:24:54 2026 by rpki-client