Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
File:                     dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json)
Hash identifier:          Me6q/9gTEhB/CVMe0JoG0aRbHTOtA/MQesIAUIhXdo8=
Subject key identifier:   38:72:6A:8F:67:AA:D6:EA:90:67:23:8B:D6:92:39:9F:1A:B9:AE:56
Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
Certificate issuer:       /CN=7720c670434da5102261099da101f25dd3f7aada
Certificate serial:       019F37BC50B2FCE262F00507DABAC77A91BB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
Manifest number:          11DB
Signing time:             Mon 06 Jul 2026 14:01:55 +0000
Manifest this update:     Mon 06 Jul 2026 14:01:55 +0000
Manifest next update:     Tue 07 Jul 2026 14:01:55 +0000
Files and hashes:         1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: qA0p7SSKIBYHpX+a2jULFTBUZHU7IiZUi5vBVadL35I=)
                          2: fxjDmBMtX4lZXvQ-w62aJNa_wcA.roa (hash: k9PdZxgspVP2JG6hPwNtH2QKs9wDWHLF4meodXKpQn0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:01:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:37:bc:50:b2:fc:e2:62:f0:05:07:da:ba:c7:7a:91:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7720c670434da5102261099da101f25dd3f7aada
        Validity
            Not Before: Jul  6 14:01:55 2026 GMT
            Not After : Jul  7 14:01:55 2026 GMT
        Subject: CN=38726a8f67aad6ea9067238bd692399f1ab9ae56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:11:8d:a4:49:8a:56:be:6d:a5:be:ba:ed:63:
                    9c:b2:ed:c2:35:b2:ef:49:1e:59:f6:d8:d5:18:ec:
                    fe:21:88:7e:a0:07:2c:06:7c:9a:8d:0c:2d:fb:60:
                    55:02:58:10:93:de:8f:76:e9:ed:f6:36:84:60:62:
                    62:0c:de:8f:3e:26:6c:a1:02:e7:01:3d:6a:45:5f:
                    6a:e5:81:ce:cf:3e:71:f5:d2:28:15:d5:53:9a:c2:
                    b5:fc:70:03:d9:44:7e:01:fb:f4:2a:3a:ed:ae:24:
                    c1:ee:0e:23:45:2b:ac:97:e8:1b:c8:65:fc:9c:13:
                    02:22:18:0b:d3:83:24:e6:00:a7:ed:f7:c5:a2:0a:
                    47:5c:c4:41:b5:24:e7:2b:5f:1f:cf:bb:3a:53:27:
                    69:59:a1:34:35:6a:f8:0d:7f:07:1e:41:e2:d6:3a:
                    ac:5a:c9:e3:00:36:b5:9f:88:5f:72:9b:80:5d:f3:
                    81:e2:7c:88:0c:80:be:ec:b8:b7:0a:b0:ea:af:1d:
                    ba:79:a4:3d:e7:6e:67:3a:30:3f:0c:0d:db:be:c8:
                    c8:78:7f:c0:a7:23:1d:ef:03:2a:e1:13:23:ac:a4:
                    d8:58:8a:e3:91:43:f1:f5:32:f9:04:6b:45:dd:a8:
                    73:23:06:a9:a5:4b:1f:ef:c4:d7:08:d5:f1:04:66:
                    e2:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:72:6A:8F:67:AA:D6:EA:90:67:23:8B:D6:92:39:9F:1A:B9:AE:56
            X509v3 Authority Key Identifier:
                keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:a3:1e:d8:cb:0d:5a:e8:df:71:16:52:e2:97:33:72:6a:de:
         f7:a2:72:b5:04:0e:a7:95:24:09:8c:44:99:f9:13:c4:e7:80:
         f4:ea:84:57:25:25:81:23:15:7c:dd:ab:58:de:e3:3f:e0:50:
         d5:17:8c:a6:f2:d2:c2:ee:bb:50:24:dd:46:8b:19:cc:e5:9c:
         60:a4:a0:e0:f6:40:bd:1a:96:11:16:68:6e:d9:20:61:20:c7:
         d0:df:57:28:a7:fd:7a:23:c6:4f:b7:a5:60:76:15:0c:7a:5a:
         2c:a9:39:2d:ac:aa:fb:4b:98:99:0e:c1:6d:9e:8e:a6:60:53:
         a2:1e:21:26:54:82:e2:ed:06:3b:bf:1f:0f:67:e7:3a:c9:2b:
         9d:6e:b8:34:60:ab:5a:4e:84:85:f8:e0:19:b6:c8:87:2f:d7:
         d3:8e:c3:48:30:e1:8a:4d:d1:e2:28:66:24:21:cb:39:df:21:
         38:11:bd:08:30:d1:d6:1d:c5:3f:9d:11:a0:68:af:32:b2:8b:
         49:45:b6:d7:0b:41:01:2c:c2:87:22:c4:8c:fd:69:19:ea:ab:
         9b:e8:35:37:1d:4a:c2:82:cc:83:32:cd:8c:b7:f2:7d:31:eb:
         a2:38:43:e2:e1:10:cd:1e:dc:ae:46:47:12:47:4a:bd:62:7a:
         41:8b:d7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:55 2026 by rpki-client