Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File:                     8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier:          au+b4fP9bXT7Ap+3ekSKQdLcjd/RGgVUMF8aLyMdu8Y=
Subject key identifier:   3C:8B:6A:8E:85:E1:AB:E5:8B:84:BB:29:15:02:E2:6A:6E:7D:08:A8
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer:       /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial:       019F382970EC9C79EAED879475A3FB642446
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number:          199F
Signing time:             Mon 06 Jul 2026 16:01:07 +0000
Manifest this update:     Mon 06 Jul 2026 16:01:07 +0000
Manifest next update:     Tue 07 Jul 2026 16:01:07 +0000
Files and hashes:         1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: vnOBUKSL9ESVlwzvEjaBovP2z5s51eGRRTY90boaKPg=)
                          2: l6d-s6pGrwjzo2MVrYFXt_vj8FQ.roa (hash: GWCGfDBQXbx8zU/9pE2/fyqt5ipxe1FQBrMDGvjciQY=)
                          3: wNW1OJ6nNt-LJ_qt91rusWZGqUk.roa (hash: Uf/zMrnHEJKdoypvZyEP0WBvkTlQGSBhuCZb5Fsvgco=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:38:29:70:ec:9c:79:ea:ed:87:94:75:a3:fb:64:24:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
        Validity
            Not Before: Jul  6 16:01:07 2026 GMT
            Not After : Jul  7 16:01:07 2026 GMT
        Subject: CN=3c8b6a8e85e1abe58b84bb291502e26a6e7d08a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:07:ef:ad:57:0e:22:68:17:8d:32:4e:a5:02:
                    96:4f:ce:38:ea:bf:31:58:3a:d3:06:7f:77:da:89:
                    d9:9e:1b:7c:68:0f:33:ff:87:bf:92:0a:b0:08:e0:
                    fd:51:64:0c:dc:35:30:c9:b2:09:d0:22:2d:a0:ca:
                    59:24:64:42:49:87:73:4d:18:5d:47:66:8e:a8:54:
                    67:37:05:b3:37:71:9c:36:2a:59:fe:ea:35:cb:52:
                    38:ab:a1:fc:4b:14:63:fa:bb:33:78:6c:20:31:b6:
                    64:2b:64:58:06:90:a9:68:a3:cd:f1:f0:d1:ce:90:
                    28:dc:2b:be:23:e1:54:9e:e0:b6:95:35:f8:2b:7c:
                    ee:91:90:e8:e1:67:5d:7e:90:fd:cb:5b:14:c0:80:
                    7c:52:a2:07:3c:03:e7:88:de:57:16:60:c6:4e:30:
                    e3:d0:85:d4:92:d9:e3:f7:5d:e1:d2:41:de:e5:74:
                    e4:50:44:6a:9d:f8:26:66:6d:55:d8:dd:21:91:0a:
                    aa:2d:0f:9d:b1:7f:bc:42:24:e4:37:82:39:26:08:
                    08:59:bb:f9:ea:39:7c:d4:05:09:4b:c9:59:0a:3a:
                    5f:c5:2a:e6:2c:b6:7f:42:96:68:0d:0d:17:7b:23:
                    c1:25:e5:6e:15:74:82:df:c2:18:3b:09:23:d3:45:
                    c0:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:8B:6A:8E:85:E1:AB:E5:8B:84:BB:29:15:02:E2:6A:6E:7D:08:A8
            X509v3 Authority Key Identifier:
                keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:02:b1:02:b0:a1:0f:44:73:c7:74:4c:be:33:ce:58:0e:9d:
         1e:3a:35:df:8e:f0:87:49:1b:83:64:f1:44:f3:7a:49:95:74:
         92:da:9f:25:e6:c6:81:f8:58:5b:33:50:9c:f7:67:7b:e2:ae:
         91:ee:8c:f7:31:2b:ee:13:4f:a6:66:b0:38:08:22:38:7a:b2:
         a9:0c:d9:d9:1c:73:a2:4b:be:0d:95:eb:cd:ca:38:21:9e:6f:
         92:7a:32:53:2e:05:35:b8:28:65:7a:47:77:ba:59:dc:dd:d8:
         9a:00:44:52:b5:45:59:d6:fa:2f:6e:9d:be:86:da:2c:6d:2a:
         ef:51:e1:0c:6f:7a:73:14:d9:56:e5:fa:f1:e3:73:76:ea:d5:
         7d:0f:f3:4a:9a:d2:03:30:3f:44:0e:ce:07:07:eb:ec:06:ec:
         68:69:42:4f:db:a6:c7:ad:3e:8b:86:f5:74:01:0a:0f:f7:16:
         f5:c0:96:af:14:c6:e7:74:87:3e:45:36:30:4d:a3:bd:69:c1:
         69:0d:12:77:78:48:c2:c7:02:0a:e1:d5:5d:e6:73:ac:c7:09:
         d2:c0:27:da:98:75:d1:b6:c8:d0:08:28:fb:3d:57:14:ed:2a:
         85:c1:07:da:6b:0a:8d:07:0d:cd:01:81:9c:2c:87:db:1f:0e:
         0c:e5:51:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ84KXDsnHnq7YeUdaP7ZCRGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMmJlOTgyMDYwYTQzNzM0ZDBhZDEyNmFkNDZkYTJmMzk1
YzlkZWYwHhcNMjYwNzA2MTYwMTA3WhcNMjYwNzA3MTYwMTA3WjAzMTEwLwYDVQQD
EygzYzhiNmE4ZTg1ZTFhYmU1OGI4NGJiMjkxNTAyZTI2YTZlN2QwOGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAfvrVcOImgXjTJOpQKWT8446r8x
WDrTBn932onZnht8aA8z/4e/kgqwCOD9UWQM3DUwybIJ0CItoMpZJGRCSYdzTRhd
R2aOqFRnNwWzN3GcNipZ/uo1y1I4q6H8SxRj+rszeGwgMbZkK2RYBpCpaKPN8fDR
zpAo3Cu+I+FUnuC2lTX4K3zukZDo4WddfpD9y1sUwIB8UqIHPAPniN5XFmDGTjDj
0IXUktnj913h0kHe5XTkUERqnfgmZm1V2N0hkQqqLQ+dsX+8QiTkN4I5JggIWbv5
6jl81AUJS8lZCjpfxSrmLLZ/QpZoDQ0XeyPBJeVuFXSC38IYOwkj00XA5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDyLao6F4avli4S7KRUC4mpufQioMB8GA1UdIwQY
MBaAFPMr6YIGCkNzTQrRJq1G2i85XJ3vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGIt
OTliY2JlNmQ3ZjYzLzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGItOTliY2JlNmQ3ZjYz
LzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmAKxArCh
D0Rzx3RMvjPOWA6dHjo1347wh0kbg2TxRPN6SZV0ktqfJebGgfhYWzNQnPdne+Ku
ke6M9zEr7hNPpmawOAgiOHqyqQzZ2Rxzoku+DZXrzco4IZ5vknoyUy4FNbgoZXpH
d7pZ3N3YmgBEUrVFWdb6L26dvobaLG0q71HhDG96cxTZVuX68eNzdurVfQ/zSprS
AzA/RA7OBwfr7AbsaGlCT9umx60+i4b1dAEKD/cW9cCWrxTG53SHPkU2ME2jvWnB
aQ0Sd3hIwscCCuHVXeZzrMcJ0sAn2ph10bbI0Ago+z1XFO0qhcEH2msKjQcNzQGB
nCyH2x8ODOVRYA==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:15:38 2026 by rpki-client