Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
File:                     aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json)
Hash identifier:          moOiWHHAaEjz2Zk3poZyreASWsXyQR5MhlSvp6jW+4g=
Subject key identifier:   56:67:8E:1C:1B:35:46:07:B3:CE:72:DD:5A:5E:93:A7:3C:9B:36:6B
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Certificate issuer:       /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial:       019F41D1EE52BE86548650FB2071878156F9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
Manifest number:          14D0
Signing time:             Wed 08 Jul 2026 13:01:44 +0000
Manifest this update:     Wed 08 Jul 2026 13:01:44 +0000
Manifest next update:     Thu 09 Jul 2026 13:01:44 +0000
Files and hashes:         1: H3BcLlLdlK5OktIlKB08CLOJceQ.roa (hash: gCov3Lq4RydmSmoM9Ym4TkvogcYAidCIuxal3h4GAM8=)
                          2: K01hEvp_oFx3qc2-IUwd8VFE1hI.roa (hash: cm5jfcRdjk0yhdi3HnxUE7FN1POO9527wRj/2D2vjMs=)
                          3: P6dX7w5DhwlzNU979iFd9YDU0uI.roa (hash: UBskImMtpaHQaupcjp821thacxNepjpaa64/vY6YASM=)
                          4: UTSVX3B31qE6acA-2M3EInvqjqs.roa (hash: 2V2E0vmwbEv4vLiGDwB2fco3T0rwdLt7wl4GPwkBEC8=)
                          5: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: djn9ug8StqvWlGNJ8Vp8fIix7ZgepXtjOHJzY/Aip5E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 13:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:41:d1:ee:52:be:86:54:86:50:fb:20:71:87:81:56:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
        Validity
            Not Before: Jul  8 13:01:44 2026 GMT
            Not After : Jul  9 13:01:44 2026 GMT
        Subject: CN=56678e1c1b354607b3ce72dd5a5e93a73c9b366b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:73:2b:f4:8e:91:50:02:81:f3:f4:a8:55:f5:
                    c0:50:90:f7:2e:15:9d:bd:6a:d7:b3:c3:a7:28:ed:
                    e4:3a:d9:95:b2:81:5f:e2:cc:b4:3e:84:95:2f:96:
                    eb:a8:e1:9e:e4:58:d2:ad:0f:8e:2a:90:a0:af:60:
                    1c:f3:b3:7b:55:f6:ed:f0:99:0e:09:da:c9:22:7e:
                    67:f9:69:a0:e7:bc:a0:3f:a8:1c:6d:64:24:92:4d:
                    1f:14:84:5c:76:58:06:2c:a7:4d:de:d9:4b:ef:61:
                    70:ed:0c:0e:98:bd:d0:40:94:5f:7f:27:3f:7c:d4:
                    4d:89:8d:a3:96:0c:f6:a7:10:dd:af:24:0d:1e:52:
                    a5:85:39:b9:02:66:b4:63:fb:f1:c2:8a:25:b0:08:
                    e8:a0:81:b7:89:8c:cd:bc:10:78:14:b0:2f:ec:fc:
                    95:ad:de:c8:85:d4:df:03:5f:d8:29:42:31:d3:c7:
                    a0:bc:e2:f9:67:fb:f6:d3:23:7a:b9:c3:42:8d:f6:
                    b3:3d:0b:fc:ab:e5:c3:e6:d5:b2:fa:c3:ee:e2:5f:
                    5f:34:fe:4c:a8:15:f2:4e:7f:c4:11:11:20:bb:d4:
                    f0:45:e4:84:b2:5a:e0:5c:49:4e:ae:c4:81:f1:48:
                    71:7f:95:53:04:54:cd:06:96:2b:31:87:7b:09:8f:
                    57:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:67:8E:1C:1B:35:46:07:B3:CE:72:DD:5A:5E:93:A7:3C:9B:36:6B
            X509v3 Authority Key Identifier:
                keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:3e:92:a6:cb:50:7b:88:58:7e:c5:45:de:f5:3b:9a:23:0a:
         e9:4b:94:82:52:bc:f3:da:af:43:60:11:c4:20:93:d1:e6:a5:
         00:ff:a4:37:ec:b1:27:73:19:c2:ab:9c:f1:09:5f:60:6a:7a:
         42:34:36:13:0f:ae:83:e9:ba:0b:5c:72:69:ee:96:6d:52:f6:
         e6:61:55:d7:f9:f2:2f:f6:38:0a:2d:fd:e8:91:01:90:bf:f6:
         4b:39:e4:2c:02:06:6d:f4:db:ab:9c:9b:8d:3f:77:52:98:b4:
         20:4c:ca:f5:ba:f3:a2:48:b5:9e:30:ff:68:c9:6a:13:24:cd:
         6c:cd:62:04:2b:43:ee:21:0c:73:fa:16:e4:70:e5:5f:67:7b:
         be:3d:ee:72:4e:5a:9c:3b:d0:59:13:aa:ee:99:78:3d:07:22:
         84:c7:9f:a4:4e:c7:4b:4d:24:70:8e:a6:d7:f4:55:9e:a4:87:
         4b:c8:a2:a4:a3:1d:6f:41:43:27:cb:3a:50:de:a4:b0:37:17:
         e8:8f:c3:e8:86:aa:ce:c4:47:c0:3c:2c:57:1d:eb:e3:83:9d:
         cf:ff:43:80:35:7e:a9:d0:a4:93:90:49:7e:e7:d8:f7:dc:18:
         9c:31:34:47:0d:e9:f5:f3:fd:39:77:18:52:02:55:1d:d7:48:
         eb:87:bd:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9B0e5SvoZUhlD7IHGHgVb5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll
ZDIxMWQwHhcNMjYwNzA4MTMwMTQ0WhcNMjYwNzA5MTMwMTQ0WjAzMTEwLwYDVQQD
Eyg1NjY3OGUxYzFiMzU0NjA3YjNjZTcyZGQ1YTVlOTNhNzNjOWIzNjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnMr9I6RUAKB8/SoVfXAUJD3LhWd
vWrXs8OnKO3kOtmVsoFf4sy0PoSVL5brqOGe5FjSrQ+OKpCgr2Ac87N7Vfbt8JkO
CdrJIn5n+Wmg57ygP6gcbWQkkk0fFIRcdlgGLKdN3tlL72Fw7QwOmL3QQJRffyc/
fNRNiY2jlgz2pxDdryQNHlKlhTm5Ama0Y/vxwoolsAjooIG3iYzNvBB4FLAv7PyV
rd7IhdTfA1/YKUIx08egvOL5Z/v20yN6ucNCjfazPQv8q+XD5tWy+sPu4l9fNP5M
qBXyTn/EEREgu9TwReSEslrgXElOrsSB8Uhxf5VTBFTNBpYrMYd7CY9XoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFZnjhwbNUYHs85y3Vpek6c8mzZrMB8GA1UdIwQY
MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt
NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2
LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVj6SpstQ
e4hYfsVF3vU7miMK6UuUglK889qvQ2ARxCCT0ealAP+kN+yxJ3MZwquc8QlfYGp6
QjQ2Ew+ug+m6C1xyae6WbVL25mFV1/nyL/Y4Ci396JEBkL/2SznkLAIGbfTbq5yb
jT93Upi0IEzK9brzoki1njD/aMlqEyTNbM1iBCtD7iEMc/oW5HDlX2d7vj3uck5a
nDvQWROq7pl4PQcihMefpE7HS00kcI6m1/RVnqSHS8iipKMdb0FDJ8s6UN6ksDcX
6I/D6IaqzsRHwDwsVx3r44Odz/9DgDV+qdCkk5BJfufY99wYnDE0Rw3p9fP9OXcY
UgJVHddI64e9mQ==
-----END CERTIFICATE-----
Generated at Wed Jul 8 18:30:10 2026 by rpki-client