Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File:                     Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier:          +8UO9FTNPvLjjLGeJwcsWEnxa5dn1yXpkIsy6Ftgkac=
Subject key identifier:   50:0A:56:38:69:7D:33:30:25:E7:11:6F:20:B3:A3:20:67:23:CE:52
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer:       /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial:       019F1A8DAD2787DD9FAE67FD18924B2A23B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number:          057C
Signing time:             Tue 30 Jun 2026 22:02:00 +0000
Manifest this update:     Tue 30 Jun 2026 22:02:00 +0000
Manifest next update:     Wed 01 Jul 2026 22:02:00 +0000
Files and hashes:         1: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: ETV+82sxboWoo767jJ1IoArloR9t6lDaQKdm8aQOLK4=)
                          2: bHxNQUrJC8Eh62QodMXQrjbnmgg.roa (hash: 1d3ZqMZQAbRLtC6TZNo/vpwZQcPk90gTwtcmQgBCgII=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:1a:8d:ad:27:87:dd:9f:ae:67:fd:18:92:4b:2a:23:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
        Validity
            Not Before: Jun 30 22:02:00 2026 GMT
            Not After : Jul  1 22:02:00 2026 GMT
        Subject: CN=500a5638697d333025e7116f20b3a3206723ce52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:ae:a8:5b:bd:07:ec:46:55:0c:98:d4:77:d9:
                    28:d0:e2:37:77:4f:ff:cd:7b:b7:b4:26:a9:54:88:
                    c8:91:eb:fe:52:c1:51:20:1f:d5:94:ed:e9:5c:41:
                    79:62:25:6f:07:a4:69:53:89:bf:9a:1f:ac:3d:9f:
                    24:b7:ce:8a:ce:b2:13:d0:6c:02:d9:7e:7f:39:6e:
                    e1:92:65:d8:c7:43:e6:b2:a4:a4:65:19:0f:53:6f:
                    33:63:33:b9:1e:11:1b:df:5a:23:d7:be:f8:78:d7:
                    e1:88:26:d9:46:11:08:2e:c4:a9:95:96:94:15:e2:
                    b4:65:07:ed:dd:d2:36:b4:9a:6b:b5:f0:ee:c3:e7:
                    ff:f1:93:7c:c3:48:fd:cd:55:27:92:f3:bf:02:b6:
                    4a:72:d0:f4:d8:1d:d6:fd:5c:98:bd:72:56:a3:39:
                    93:cf:6e:c7:39:84:90:0b:d6:c3:66:de:f4:f5:41:
                    e8:1b:9f:bd:7c:6d:e5:51:f8:a7:3d:bb:97:88:14:
                    6a:6d:d8:f2:4f:6c:47:e9:a3:a9:85:f5:75:94:71:
                    00:ec:89:5c:f0:a1:e4:f6:5f:46:36:18:3e:6a:c6:
                    8e:22:55:60:fc:11:0a:11:83:84:61:48:de:9a:68:
                    11:73:92:c9:5c:de:52:80:96:0e:7c:00:6e:64:bb:
                    5f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:0A:56:38:69:7D:33:30:25:E7:11:6F:20:B3:A3:20:67:23:CE:52
            X509v3 Authority Key Identifier:
                keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:5a:2e:27:d5:ad:0c:d4:a6:9d:81:62:74:e8:e8:bb:0a:83:
         a7:49:49:b9:ca:3b:ac:eb:c3:b9:be:8a:04:28:00:00:2d:9a:
         19:fc:30:cb:49:05:68:72:4d:f0:ad:96:c3:f1:f3:20:52:4c:
         a2:ec:28:ac:3e:8a:ec:e3:26:23:95:f2:55:2a:3a:1e:42:ad:
         7b:bc:fd:48:00:90:c0:b3:11:e0:db:49:a6:09:da:c6:b5:5b:
         9b:4c:70:fc:de:54:32:e7:ae:0e:a0:0e:d5:c9:80:12:de:2d:
         7a:5c:ad:40:87:03:af:7a:c8:af:36:a3:e3:90:65:b3:42:35:
         af:27:0a:e1:11:69:40:d1:55:fa:c8:97:80:68:5b:25:0e:35:
         5f:e4:c7:5e:7d:f9:3d:0c:ca:5b:bf:b2:92:7f:5d:bb:d9:d7:
         95:8d:05:c5:4b:28:19:54:d2:cc:56:00:21:06:9a:ac:40:52:
         98:a5:c9:52:d4:d1:c4:84:69:4f:c1:d2:3f:f4:5b:38:47:d6:
         29:85:09:86:95:0a:78:bb:e3:57:c7:44:46:67:e8:ab:9a:20:
         fa:65:70:d3:22:6f:ef:7f:bf:8a:6e:58:ff:aa:72:dc:cf:71:
         5c:6e:19:05:40:bb:81:01:63:7f:6e:51:9a:db:a3:24:b1:00:
         2a:c4:25:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 00:36:20 2026 by rpki-client