Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
File:                     GEe1nSHqNrMGL8qAznXBYWr1EZo.mft (raw, json)
Hash identifier:          440F/THNd8Xs9CCwOKhSbvLHhYqCPtZhjtwh/8bFsLo=
Subject key identifier:   71:05:24:0F:1A:E9:F1:0D:E9:0C:B7:D1:EA:DD:BB:77:5D:52:59:BB
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Certificate issuer:       /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial:       019F1AFAC5E293B0E0916AE62170A5C14439
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
Manifest number:          19AD
Signing time:             Wed 01 Jul 2026 00:01:09 +0000
Manifest this update:     Wed 01 Jul 2026 00:01:09 +0000
Manifest next update:     Thu 02 Jul 2026 00:01:09 +0000
Files and hashes:         1: GEe1nSHqNrMGL8qAznXBYWr1EZo.crl (hash: nKQUYeTe2hl0DaWUZcy3wlTjZykXPob3btO7TiLZnZ4=)
                          2: Gll7cy-kn16EuQChyjd5kxJVar8.roa (hash: rAFOy1sEoOQYL6xEmxiSqkBDTDW6pzDgHlfqHYvviWQ=)
                          3: NbBpfQGsHkSsujFNmwYaCRxCh_M.roa (hash: JJcHtuXrwzjuiCppA+Z6JQDHbPH63cB9zvzIpG1UH3U=)
                          4: VG14tR93nrCtNgYNhIfw5ASK5b8.roa (hash: Tcz678dunbruTrkYTbdv98GThScQ5vNKS1fF8cX93JE=)
                          5: Xj_u5HjpxtCwXjP24QJOUfE1Eo0.roa (hash: wVYFKdr5Wp6EdJbjBn7zlklNK/TPT0xbcVbQunqvKdg=)
                          6: q9_YDIRra6aFcMc0ByB5ssvbp7c.roa (hash: Aqh+b9LnXWSFB27cNYCIor6EI4XZue2eU7FkAjMEl08=)
                          7: s7RpgA0R3vsueY42eei_AImOBO8.roa (hash: oNHuHZnEL0RPbJZPYJUj7x33aVQEtQSGkU5sfC19kPM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 20:30:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:1a:fa:c5:e2:93:b0:e0:91:6a:e6:21:70:a5:c1:44:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
        Validity
            Not Before: Jul  1 00:01:09 2026 GMT
            Not After : Jul  2 00:01:09 2026 GMT
        Subject: CN=7105240f1ae9f10de90cb7d1eaddbb775d5259bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:2f:25:e6:44:1d:2c:c8:3a:2a:ce:01:43:fd:
                    c5:70:82:99:d1:15:6f:ec:7b:57:98:45:ff:3f:6e:
                    ca:10:09:c9:9b:81:23:23:86:d5:ce:4f:db:99:eb:
                    89:71:8a:f5:6c:d6:85:75:88:e8:74:5d:77:29:42:
                    d3:48:59:ea:f5:e3:94:c6:d4:d0:68:f0:b5:70:33:
                    35:3f:e2:3e:b5:b6:fa:82:48:ee:41:eb:c4:fc:bb:
                    6b:85:d3:2b:14:7b:66:f8:68:b7:30:5e:4a:94:ec:
                    98:9f:93:e8:bf:32:96:17:8c:4f:1a:3f:e7:a2:60:
                    d7:a4:46:d4:d2:28:4e:86:af:d3:aa:25:e0:c7:75:
                    13:11:31:4d:b2:85:95:c0:7b:c9:1e:f7:1b:9a:b9:
                    27:33:51:f0:b2:9b:94:1e:70:71:88:57:5a:90:95:
                    3e:e9:a1:23:0c:e5:09:e6:36:1b:cb:f4:4b:a6:0b:
                    ae:df:c2:8f:d8:5f:f2:b0:5a:0f:22:48:eb:73:39:
                    1c:e8:7c:9f:f7:c5:1a:82:b6:ca:19:10:55:ea:eb:
                    61:e7:de:83:45:b3:a8:ef:40:88:b0:9a:0d:5f:f6:
                    40:bd:ec:02:52:cf:27:5e:e8:4c:a4:f4:14:48:bb:
                    98:5f:39:2a:a0:06:1e:3d:4f:b7:dc:79:45:f4:32:
                    bb:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:05:24:0F:1A:E9:F1:0D:E9:0C:B7:D1:EA:DD:BB:77:5D:52:59:BB
            X509v3 Authority Key Identifier:
                keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:76:07:1f:44:02:84:57:32:25:d3:45:b8:e1:68:68:7b:6e:
         89:47:a0:ce:a9:3a:c9:13:ea:da:73:4d:19:e9:1e:d0:b4:cc:
         d7:3e:e7:a8:38:fe:44:c8:35:a0:0f:29:90:37:8f:6c:4f:bc:
         3c:bc:ce:45:70:89:72:61:0e:4e:d1:1c:3a:9e:9e:85:70:65:
         b4:36:67:a1:df:b6:1d:33:7d:4c:8f:b1:48:57:2f:28:d9:cb:
         a9:b3:2b:3b:48:1a:a5:d5:05:96:6c:d1:27:fc:2c:c1:9c:0c:
         7b:7a:23:98:e1:5c:ee:98:92:ad:56:cb:e5:b5:6c:cb:e8:0d:
         9e:38:31:29:d6:c2:11:58:c8:da:27:cb:cb:38:61:d6:3d:82:
         12:82:08:9d:16:3a:06:47:6f:12:6a:ca:a2:c4:a1:2a:8d:4b:
         0a:b4:a7:cd:f6:51:35:df:e5:75:8b:17:46:6b:bd:90:ca:95:
         4c:6e:0e:a9:d0:fc:f1:d2:7d:88:bc:28:43:24:31:cc:99:ed:
         f5:11:30:75:5c:9a:2d:6c:14:56:c7:56:09:2f:89:81:4e:db:
         6e:e2:b0:18:05:46:87:29:1a:49:5c:24:8a:25:08:09:c9:17:
         ff:96:76:8c:1a:e1:8c:68:1d:b0:36:eb:f0:a6:6b:95:fc:dd:
         8b:fc:db:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 03:34:00 2026 by rpki-client