Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File:                     OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier:          15jfiye0snMDyiNokKF/0FpWVc0hzIIyzDdDcAPXlXM=
Subject key identifier:   EF:90:82:70:8B:C7:AA:ED:A5:07:54:26:97:B8:14:69:EA:9F:14:D8
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer:       /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial:       019F19E7FEE1F611A8DE5A75EFDADDE647B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number:          0AA5
Signing time:             Tue 30 Jun 2026 19:01:02 +0000
Manifest this update:     Tue 30 Jun 2026 19:01:02 +0000
Manifest next update:     Wed 01 Jul 2026 19:01:02 +0000
Files and hashes:         1: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: 4NlUhNCuYwonL37Fr0jvKIx6GJynH+F2SV10bi3Gbw0=)
                          2: futCv-J21MxYYna1NlT0XMLEUxQ.roa (hash: Nuw/WTHENdY0hVuqEP9gOdFLaQ350WDyvFQ78Xtrdks=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:e7:fe:e1:f6:11:a8:de:5a:75:ef:da:dd:e6:47:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
        Validity
            Not Before: Jun 30 19:01:02 2026 GMT
            Not After : Jul  1 19:01:02 2026 GMT
        Subject: CN=ef9082708bc7aaeda507542697b81469ea9f14d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:1b:c0:49:7b:c5:56:a5:35:14:dc:3d:b5:03:
                    db:23:3a:10:09:b9:e8:74:2a:9c:9e:79:98:dd:69:
                    2d:fe:6a:59:13:b8:0a:32:9d:56:30:16:6b:7a:ac:
                    a4:a8:b4:0a:0f:9b:e1:46:2c:9c:3c:84:7e:1a:d4:
                    eb:76:0a:8e:cf:dc:a7:21:55:bb:1c:fd:6b:5e:18:
                    93:fb:ea:8e:7d:39:c0:7f:1c:32:8d:84:0e:8e:6b:
                    52:84:8c:dd:bf:d7:8b:b0:a8:56:8d:5a:b7:aa:a2:
                    5e:c8:ec:4c:dd:b0:a7:3b:a8:88:85:21:43:22:af:
                    9e:51:b6:90:82:b9:93:0c:43:b0:74:e4:6a:b9:07:
                    69:4b:5c:eb:8d:f1:47:7a:ee:60:80:4c:3a:a7:29:
                    b1:e4:93:e3:c3:5f:0b:4f:dd:2e:af:6e:d9:63:b6:
                    9d:1b:72:d1:21:2d:99:e3:47:89:d7:ac:74:c0:db:
                    76:83:c5:b2:11:92:50:fb:3e:a6:d7:e4:eb:19:fa:
                    d5:0f:30:85:32:79:ab:d1:9a:d0:e7:20:6e:b2:d6:
                    b0:2b:91:f8:f7:01:a1:b4:16:4a:01:49:82:00:5e:
                    ff:b7:b0:0b:e7:56:4b:46:65:c4:4a:09:fc:c8:9c:
                    e4:f3:8e:61:c0:d9:5b:24:b4:23:7c:ec:b7:6e:a2:
                    33:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:90:82:70:8B:C7:AA:ED:A5:07:54:26:97:B8:14:69:EA:9F:14:D8
            X509v3 Authority Key Identifier:
                keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:e8:e0:2c:83:6a:a6:56:bc:b2:bb:ec:85:ca:3d:1c:c0:24:
         8a:f8:41:97:fc:33:a4:0c:c0:84:d4:e3:1c:bf:40:0d:e9:6e:
         df:43:9a:3a:84:1b:02:b4:20:ba:00:e9:7b:8a:1f:e8:e1:b0:
         d3:44:78:af:27:2a:a8:41:1a:a8:c8:7c:e1:a7:e1:e9:42:ee:
         2d:da:4d:de:f8:2f:7e:82:d7:8e:bd:3d:55:d4:33:24:8a:22:
         f2:5a:6d:b2:37:d1:ed:f0:84:67:0e:2b:fb:72:e1:4a:99:28:
         d1:d7:a1:51:f5:1a:8e:87:11:33:de:f0:a0:44:6b:dd:8d:8c:
         7f:f7:84:e1:44:8b:53:fa:94:7f:26:e4:e6:98:af:8f:1d:bc:
         9a:4f:3b:2b:fc:5e:b5:ba:24:aa:d5:6f:f8:60:21:9a:c4:91:
         7b:5c:8e:b2:37:cf:d0:9f:b8:e3:8d:8b:63:f3:12:29:45:eb:
         48:d3:2c:3c:9c:33:47:f9:92:60:05:e1:bb:1d:d4:60:fa:f3:
         ee:e3:a2:10:89:9e:c3:d0:36:03:dd:9f:8d:c2:c3:55:4a:9e:
         ca:02:3a:93:c9:87:99:11:a0:5a:cf:ac:7b:9a:fe:ab:30:70:
         b0:ef:d8:df:7f:87:8a:1d:1e:5e:f3:92:f2:34:83:14:d4:4a:
         01:9d:01:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 00:17:27 2026 by rpki-client