Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File:                     JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier:          9Q3UYo+z+w9VVRSKmg2c2/qhrE8dCvkZ42Cqvwhx5yw=
Subject key identifier:   97:1E:AD:98:A4:89:77:63:F3:2D:47:3E:E2:1F:43:4F:18:9E:5A:D8
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer:       /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial:       019F2924E002D3F63ADB4B1248C2F81B6B73
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number:          0CDC
Signing time:             Fri 03 Jul 2026 18:01:50 +0000
Manifest this update:     Fri 03 Jul 2026 18:01:50 +0000
Manifest next update:     Sat 04 Jul 2026 18:01:50 +0000
Files and hashes:         1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
                          2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: EOhl+w96BRsechScMmd7XQmIFIO6hPvUQlX3tifxr/s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 18:01:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:29:24:e0:02:d3:f6:3a:db:4b:12:48:c2:f8:1b:6b:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=258f0753c033c1af091866d094264512696ca68b
        Validity
            Not Before: Jul  3 18:01:50 2026 GMT
            Not After : Jul  4 18:01:50 2026 GMT
        Subject: CN=971ead98a4897763f32d473ee21f434f189e5ad8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:c8:fb:fc:f4:1c:29:bf:f0:f4:e0:f2:82:bc:
                    f7:49:f2:89:69:2a:ab:60:93:e7:8a:3b:48:c2:e9:
                    91:36:ba:dd:05:5d:76:88:2d:6f:27:9f:e0:f6:9e:
                    10:b0:38:50:da:1c:1e:26:e7:53:76:81:57:63:b2:
                    bf:6b:aa:ad:f6:2a:90:0b:05:d0:dc:7c:93:cc:02:
                    43:c0:7c:b8:8a:e7:92:a9:9f:b9:8c:79:aa:69:54:
                    b1:08:5d:6d:62:03:55:bc:1e:d5:e2:4e:b2:72:43:
                    f2:8a:5f:ab:4c:8c:8e:02:d2:17:81:9b:41:31:fb:
                    8a:e7:70:b1:5c:16:63:16:20:2a:58:99:05:13:a8:
                    25:28:db:56:ca:56:7d:8b:2e:18:11:8c:a0:76:ed:
                    1a:11:c1:ce:85:25:33:6a:5a:09:5f:15:49:95:9f:
                    68:2f:d8:04:2f:ba:1c:76:03:32:e5:3f:eb:81:27:
                    6e:2e:a6:f6:d8:94:75:03:a5:89:90:3c:a1:fa:2d:
                    02:22:41:c9:e9:57:6b:b4:25:88:3f:9f:9f:82:7a:
                    3e:30:2b:d3:51:13:26:ec:4d:32:2c:1a:20:b9:71:
                    f2:e4:dc:d5:de:8f:c5:06:d3:6e:0c:de:c7:47:1a:
                    ba:c0:ee:bf:1b:ef:5a:b9:e0:14:48:8e:26:3c:d9:
                    13:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:1E:AD:98:A4:89:77:63:F3:2D:47:3E:E2:1F:43:4F:18:9E:5A:D8
            X509v3 Authority Key Identifier:
                keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:99:43:2b:26:f0:bd:42:4f:f2:10:3c:eb:e6:df:f9:49:39:
         f9:2a:4b:70:55:84:b7:dd:e8:eb:77:26:be:9c:c3:e3:cd:75:
         f0:73:1c:63:3e:3a:db:7f:01:34:2b:e3:6e:1a:cd:49:27:51:
         d6:38:c0:72:9e:42:d5:95:03:d3:fc:37:63:2e:ed:28:a5:8d:
         01:19:31:01:83:10:cb:4d:9f:c5:a4:1b:f4:5a:25:39:f1:0b:
         7f:ae:0a:5e:7d:60:22:71:21:21:57:bc:bb:92:5f:bb:93:2b:
         f6:7e:26:89:aa:54:16:c8:8b:61:53:7c:4f:89:9d:50:b1:62:
         1b:dd:7a:7c:65:77:e4:f8:c7:fb:a5:8f:e6:ec:cb:33:a5:29:
         fa:92:72:67:ba:f7:69:87:d2:2d:b0:b0:b2:36:8b:a4:b0:a7:
         43:23:f7:37:3f:95:e8:7b:af:46:a5:da:88:58:a8:21:07:8d:
         8a:72:86:f0:4f:0a:68:49:5f:6c:c1:57:fb:34:1c:ae:4d:bf:
         be:69:b5:52:da:a5:15:04:2d:bd:7c:59:75:22:41:f0:e9:77:
         79:d9:11:e7:b2:08:b8:7a:07:fc:1e:14:05:e2:cc:3e:9b:65:
         60:4a:40:f9:f2:e0:ed:bd:07:96:c4:e7:a1:bd:76:e0:c4:26:
         37:2e:17:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8pJOAC0/Y620sSSML4G2tzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2
Y2E2OGIwHhcNMjYwNzAzMTgwMTUwWhcNMjYwNzA0MTgwMTUwWjAzMTEwLwYDVQQD
Eyg5NzFlYWQ5OGE0ODk3NzYzZjMyZDQ3M2VlMjFmNDM0ZjE4OWU1YWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8j7/PQcKb/w9ODygrz3SfKJaSqr
YJPnijtIwumRNrrdBV12iC1vJ5/g9p4QsDhQ2hweJudTdoFXY7K/a6qt9iqQCwXQ
3HyTzAJDwHy4iueSqZ+5jHmqaVSxCF1tYgNVvB7V4k6yckPyil+rTIyOAtIXgZtB
MfuK53CxXBZjFiAqWJkFE6glKNtWylZ9iy4YEYygdu0aEcHOhSUzaloJXxVJlZ9o
L9gEL7ocdgMy5T/rgSduLqb22JR1A6WJkDyh+i0CIkHJ6VdrtCWIP5+fgno+MCvT
URMm7E0yLBoguXHy5NzV3o/FBtNuDN7HRxq6wO6/G+9aueAUSI4mPNkTqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcerZikiXdj8y1HPuIfQ08YnlrYMB8GA1UdIwQY
MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt
MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2
LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPZlDKybw
vUJP8hA86+bf+Uk5+SpLcFWEt93o63cmvpzD48118HMcYz46238BNCvjbhrNSSdR
1jjAcp5C1ZUD0/w3Yy7tKKWNARkxAYMQy02fxaQb9FolOfELf64KXn1gInEhIVe8
u5Jfu5Mr9n4miapUFsiLYVN8T4mdULFiG916fGV35PjH+6WP5uzLM6Up+pJyZ7r3
aYfSLbCwsjaLpLCnQyP3Nz+V6HuvRqXaiFioIQeNinKG8E8KaElfbMFX+zQcrk2/
vmm1UtqlFQQtvXxZdSJB8Ol3edkR57IIuHoH/B4UBeLMPptlYEpA+fLg7b0HlsTn
ob124MQmNy4Xxw==
-----END CERTIFICATE-----
Generated at Sat Jul 4 00:40:29 2026 by rpki-client