Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File:                     mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier:          gIrpeQPK3i7A3WcS/CQ4oONpzCnXm5JnvL7C4jMMRsY=
Subject key identifier:   85:74:99:B6:27:E2:B2:78:22:B7:2C:56:8D:B7:7D:21:C1:0C:09:7A
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer:       /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial:       019F4019C21E430ED8B29750FE2E783BED3F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number:          0486
Signing time:             Wed 08 Jul 2026 05:00:57 +0000
Manifest this update:     Wed 08 Jul 2026 05:00:57 +0000
Manifest next update:     Thu 09 Jul 2026 05:00:57 +0000
Files and hashes:         1: JdrrzB7a1qH9AHo1hI78HQ9vZMk.roa (hash: GTd8cCkoiW0FGNR73NG1lnLnp97HhBUrrNAzm3q5ilE=)
                          2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: 1GzeKZudcNqoYFWc9DTGorPu26tWGA2o0dgleyxLTAU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 05:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:40:19:c2:1e:43:0e:d8:b2:97:50:fe:2e:78:3b:ed:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
        Validity
            Not Before: Jul  8 05:00:57 2026 GMT
            Not After : Jul  9 05:00:57 2026 GMT
        Subject: CN=857499b627e2b27822b72c568db77d21c10c097a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:ed:dc:79:89:01:b8:53:70:40:05:6a:3f:a8:
                    2f:5e:4c:00:2d:d6:1d:d7:fd:da:13:1e:4d:82:7b:
                    7a:ae:a1:c4:50:c5:fd:ef:e7:70:a8:a8:50:27:bd:
                    b1:10:56:34:42:2a:b7:34:85:ae:b1:f1:8b:96:b2:
                    3a:39:89:8a:dd:af:6a:a7:76:c1:a6:96:a3:57:89:
                    83:ae:7d:f5:3d:d1:f1:b0:3e:52:a4:aa:2a:7f:e8:
                    55:fa:f8:d2:f3:25:ef:42:4d:44:3f:7d:7e:82:a2:
                    2e:3c:17:af:e2:8f:5f:08:d9:0d:0d:7f:ea:de:60:
                    a3:69:e2:9d:23:79:6b:09:da:6a:2d:d2:bd:87:00:
                    1b:b3:62:fc:fb:2c:8c:55:f3:5e:17:83:7d:f0:5c:
                    79:43:d6:94:c9:94:fe:29:fe:29:ed:0c:91:cc:75:
                    6a:c1:9f:d0:ec:6b:a4:10:19:60:1d:89:e9:24:ee:
                    d4:ce:19:e9:ce:9d:8e:5e:4e:a1:92:21:bb:46:75:
                    00:10:a1:96:93:5f:90:99:fa:0b:ff:52:7b:a1:33:
                    2b:04:c9:18:88:8a:30:4f:40:e8:39:54:dc:f6:0d:
                    8a:58:f7:a3:d8:a3:01:4b:61:03:0a:ac:c0:4c:8c:
                    14:ad:73:28:73:b3:bc:48:8a:ad:66:33:82:26:eb:
                    9e:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:74:99:B6:27:E2:B2:78:22:B7:2C:56:8D:B7:7D:21:C1:0C:09:7A
            X509v3 Authority Key Identifier:
                keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:d0:5f:f6:40:45:70:8a:d9:6d:42:ea:76:52:aa:79:dc:69:
         8b:4a:3a:e5:95:9a:73:f3:8b:7c:0c:12:7a:b5:d1:04:f4:a3:
         c3:1e:f8:ad:ef:44:33:18:f7:21:56:f7:e0:65:38:0f:9e:01:
         4e:fa:0c:2f:20:01:3f:f6:ee:a8:28:b7:f4:0c:60:3c:ed:1d:
         b1:84:c4:03:c4:17:8a:e0:de:dd:30:43:8a:20:a4:aa:f7:d8:
         36:87:d0:58:a1:84:fa:9c:f6:4a:06:6c:ea:a4:0f:7c:cc:7a:
         4f:98:9a:56:86:11:7d:6f:9b:b2:c6:79:f5:02:92:d7:9f:88:
         b9:9e:38:cd:f6:5f:e1:11:7d:7e:4e:f0:f6:41:cc:a3:57:82:
         4c:60:61:75:45:81:20:93:e7:7d:06:bf:1d:0f:9e:e2:17:6a:
         49:e2:a7:b3:df:6c:64:23:5d:70:cf:8e:72:d6:d2:bc:45:6e:
         5e:ba:63:86:49:47:2d:7a:3d:d1:e2:27:c6:11:24:6c:75:bc:
         66:93:d8:24:9b:72:be:57:3a:b9:ae:44:cf:c4:ca:fb:10:2e:
         78:e7:58:0e:97:d7:68:85:be:a2:13:36:eb:79:c9:d7:dc:43:
         e0:71:67:e6:d9:c3:ef:35:c8:78:50:9d:a8:7a:12:4d:60:85:
         79:b3:35:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9AGcIeQw7YspdQ/i54O+0/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4NTViODBjNDVkZmI1ZWE3YWFhN2RkMWQ4ZWQ4YjE0Zjlj
MWRjNDUwHhcNMjYwNzA4MDUwMDU3WhcNMjYwNzA5MDUwMDU3WjAzMTEwLwYDVQQD
Eyg4NTc0OTliNjI3ZTJiMjc4MjJiNzJjNTY4ZGI3N2QyMWMxMGMwOTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5e3ceYkBuFNwQAVqP6gvXkwALdYd
1/3aEx5Ngnt6rqHEUMX97+dwqKhQJ72xEFY0Qiq3NIWusfGLlrI6OYmK3a9qp3bB
ppajV4mDrn31PdHxsD5SpKoqf+hV+vjS8yXvQk1EP31+gqIuPBev4o9fCNkNDX/q
3mCjaeKdI3lrCdpqLdK9hwAbs2L8+yyMVfNeF4N98Fx5Q9aUyZT+Kf4p7QyRzHVq
wZ/Q7GukEBlgHYnpJO7Uzhnpzp2OXk6hkiG7RnUAEKGWk1+QmfoL/1J7oTMrBMkY
iIowT0DoOVTc9g2KWPej2KMBS2EDCqzATIwUrXMoc7O8SIqtZjOCJuueKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIV0mbYn4rJ4IrcsVo23fSHBDAl6MB8GA1UdIwQY
MBaAFJhVuAxF37Xqeqp90djtixT5wdxFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQt
ZWU2YzUwOWI2MjIxLzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQtZWU2YzUwOWI2MjIx
LzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO9Bf9kBF
cIrZbULqdlKqedxpi0o65ZWac/OLfAwSerXRBPSjwx74re9EMxj3IVb34GU4D54B
TvoMLyABP/buqCi39AxgPO0dsYTEA8QXiuDe3TBDiiCkqvfYNofQWKGE+pz2SgZs
6qQPfMx6T5iaVoYRfW+bssZ59QKS15+IuZ44zfZf4RF9fk7w9kHMo1eCTGBhdUWB
IJPnfQa/HQ+e4hdqSeKns99sZCNdcM+OctbSvEVuXrpjhklHLXo90eInxhEkbHW8
ZpPYJJtyvlc6ua5Ez8TK+xAueOdYDpfXaIW+ohM263nJ19xD4HFn5tnD7zXIeFCd
qHoSTWCFebM1EQ==
-----END CERTIFICATE-----
Generated at Wed Jul 8 09:33:43 2026 by rpki-client