Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
File:                     hGr1TmVYz8hiUpRuRpKrknd8DhA.mft (raw, json)
Hash identifier:          7cDKpY3jeQeS+SoOsAWSIjTyKJ1Qsd3d3fGgwlcdNsM=
Subject key identifier:   04:61:76:F4:27:81:A6:A0:CF:17:56:87:F7:2C:24:8A:6F:0F:02:A8
Authority key identifier: 84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
Certificate issuer:       /CN=846af54e6558cfc86252946e4692ab92777c0e10
Certificate serial:       019F37F22E391F96103FFD6CA4BD1C112BAF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
Manifest number:          15BC
Signing time:             Mon 06 Jul 2026 15:00:45 +0000
Manifest this update:     Mon 06 Jul 2026 15:00:45 +0000
Manifest next update:     Tue 07 Jul 2026 15:00:45 +0000
Files and hashes:         1: DzxlgYolYmYrOw6dLtHYtuvzTW4.roa (hash: snxX9+Dmsgw6Tf7GTwWvTcPR+yOEzI9Wj8zN8W2eCBE=)
                          2: OQLmyHIHKnOQqtsOG6o6hyfLKFE.roa (hash: OAPut5klxvnwxvXekYncRq9ZTcquwuK9N/4Pis2RPnI=)
                          3: SU9l9n5tTaHoiwwtJtq99KggAas.roa (hash: 7Jnaa+yaZEgfZ0pJI5V9JYe56J0Eyz54F3utpVXqqBs=)
                          4: hGr1TmVYz8hiUpRuRpKrknd8DhA.crl (hash: 6DhopChrN2I799W54+0O0bfRkMe6Zrt3HKWhnjhJh3E=)
                          5: y18u9oMcyFjkgl_LFXqULX8NytA.roa (hash: B5vX5oLv2822UN69f2wG7jEHSe1FzIcV1zpP+Ish8P8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:37:f2:2e:39:1f:96:10:3f:fd:6c:a4:bd:1c:11:2b:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=846af54e6558cfc86252946e4692ab92777c0e10
        Validity
            Not Before: Jul  6 15:00:45 2026 GMT
            Not After : Jul  7 15:00:45 2026 GMT
        Subject: CN=046176f42781a6a0cf175687f72c248a6f0f02a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:4e:06:61:4b:1b:ff:c0:c0:4c:df:94:54:ea:
                    90:d3:c3:24:6f:f1:82:7a:2b:f1:87:72:9d:e8:30:
                    a7:21:91:7c:6a:cb:05:65:08:0b:44:85:5c:f7:f0:
                    ca:a6:a4:64:d3:75:ba:07:46:5b:66:62:80:77:28:
                    62:14:d3:f2:8d:7d:a2:96:e1:1c:f2:89:ac:e9:3e:
                    58:e6:46:69:9c:58:0d:f2:0c:7b:a5:d8:23:c9:02:
                    67:fc:93:2a:fc:73:1c:5e:97:67:54:0a:a9:3c:f2:
                    07:11:9b:c4:1d:7b:c8:df:62:cd:8c:ad:7c:cf:e6:
                    26:05:20:81:d6:01:d4:3b:4d:b9:f4:21:cb:b3:31:
                    63:9c:a5:e7:51:37:c4:04:e4:d1:39:33:09:54:42:
                    37:a8:4b:80:04:b9:2c:c8:d8:83:fe:f5:73:6f:f7:
                    d7:62:11:a1:2f:b9:0a:2c:4c:3e:fa:cb:c3:27:4a:
                    52:5a:2f:51:49:2b:7d:be:ec:6e:ed:09:b4:60:c7:
                    fa:80:bc:f9:cd:7e:3d:ed:fa:f4:b8:88:03:e4:be:
                    bd:e8:89:96:90:43:25:5e:4f:24:2b:27:b9:82:be:
                    5c:bd:5d:01:3f:11:4d:31:05:d0:12:d1:9a:1f:4a:
                    8b:1e:0d:72:37:54:64:51:a1:e4:d2:0d:45:20:b4:
                    6e:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:61:76:F4:27:81:A6:A0:CF:17:56:87:F7:2C:24:8A:6F:0F:02:A8
            X509v3 Authority Key Identifier:
                keyid:84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:f1:ca:b9:77:b8:66:31:b5:04:6b:46:c4:56:05:f1:7e:cc:
         20:2c:b0:d7:46:41:ff:3e:0b:68:f9:19:e0:e9:36:9d:7f:bb:
         3f:0e:2d:e1:aa:44:6c:91:c4:5f:d0:91:8f:f1:da:e9:15:83:
         d8:e0:4c:d3:a4:0f:0c:44:23:35:8c:f4:63:54:7b:01:26:35:
         93:f1:07:f5:03:e8:83:54:50:4d:a8:92:36:70:db:5f:3d:27:
         46:5c:3d:00:2a:35:2f:7f:28:da:64:6a:ed:0a:13:d9:93:a8:
         4f:22:15:a3:f9:ed:7f:80:e0:b5:84:e0:58:6d:d4:5b:40:61:
         a8:4e:da:a8:f9:44:b5:7d:b3:8c:69:20:ec:ca:76:95:46:22:
         3c:7a:9c:f3:41:0a:67:b1:98:fd:6d:90:18:64:97:16:be:94:
         34:fe:72:ef:3b:6a:79:c3:6a:6a:39:aa:4b:5a:59:b0:ce:c8:
         f6:e1:16:56:cd:f2:c0:fa:00:1d:36:74:f5:11:2e:38:32:99:
         23:4a:ae:9b:fb:95:6f:94:57:0d:73:ff:f4:ef:e1:87:80:ae:
         76:69:e2:3d:34:42:4b:03:b9:4c:10:11:67:98:08:7f:21:3a:
         98:b1:b8:f2:5d:41:2a:25:34:10:6e:1f:bd:b9:b0:5d:ff:74:
         55:b6:c5:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ838i45H5YQP/1spL0cESuvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NmFmNTRlNjU1OGNmYzg2MjUyOTQ2ZTQ2OTJhYjkyNzc3
YzBlMTAwHhcNMjYwNzA2MTUwMDQ1WhcNMjYwNzA3MTUwMDQ1WjAzMTEwLwYDVQQD
EygwNDYxNzZmNDI3ODFhNmEwY2YxNzU2ODdmNzJjMjQ4YTZmMGYwMmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqE4GYUsb/8DATN+UVOqQ08Mkb/GC
eivxh3Kd6DCnIZF8assFZQgLRIVc9/DKpqRk03W6B0ZbZmKAdyhiFNPyjX2iluEc
8oms6T5Y5kZpnFgN8gx7pdgjyQJn/JMq/HMcXpdnVAqpPPIHEZvEHXvI32LNjK18
z+YmBSCB1gHUO0259CHLszFjnKXnUTfEBOTROTMJVEI3qEuABLksyNiD/vVzb/fX
YhGhL7kKLEw++svDJ0pSWi9RSSt9vuxu7Qm0YMf6gLz5zX497fr0uIgD5L696ImW
kEMlXk8kKye5gr5cvV0BPxFNMQXQEtGaH0qLHg1yN1RkUaHk0g1FILRuzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFARhdvQngaagzxdWh/csJIpvDwKoMB8GA1UdIwQY
MBaAFIRq9U5lWM/IYlKUbkaSq5J3fA4QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEdyMVRtVll6OGhpVXBSdVJwS3JrbmQ4RGhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yODNmZWUtMmMzNi00ZTcwLWJiZTQt
MDdlMzZlZmM1ZTQyLzEvaEdyMVRtVll6OGhpVXBSdVJwS3JrbmQ4RGhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8yODNmZWUtMmMzNi00ZTcwLWJiZTQtMDdlMzZlZmM1ZTQy
LzEvaEdyMVRtVll6OGhpVXBSdVJwS3JrbmQ4RGhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvHKuXe4
ZjG1BGtGxFYF8X7MICyw10ZB/z4LaPkZ4Ok2nX+7Pw4t4apEbJHEX9CRj/Ha6RWD
2OBM06QPDEQjNYz0Y1R7ASY1k/EH9QPog1RQTaiSNnDbXz0nRlw9ACo1L38o2mRq
7QoT2ZOoTyIVo/ntf4DgtYTgWG3UW0BhqE7aqPlEtX2zjGkg7Mp2lUYiPHqc80EK
Z7GY/W2QGGSXFr6UNP5y7ztqecNqajmqS1pZsM7I9uEWVs3ywPoAHTZ09REuODKZ
I0qum/uVb5RXDXP/9O/hh4CudmniPTRCSwO5TBARZ5gIfyE6mLG48l1BKiU0EG4f
vbmwXf90VbbFYQ==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:15:53 2026 by rpki-client