Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
File:                     bws2ahNvj8xd9SPI1G95B5HBs7s.mft (raw, json)
Hash identifier:          GRYvcJxU+zo6AFmSh1olyN94DesNN9uRmzCveWYrWN4=
Subject key identifier:   9C:24:ED:9E:1C:D4:7B:91:34:3E:66:05:47:52:44:2D:FA:71:D3:CA
Authority key identifier: 6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
Certificate issuer:       /CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Certificate serial:       019F26FF4E19BF77895261AD6CA740A648E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
Manifest number:          1203
Signing time:             Fri 03 Jul 2026 08:01:33 +0000
Manifest this update:     Fri 03 Jul 2026 08:01:33 +0000
Manifest next update:     Sat 04 Jul 2026 08:01:33 +0000
Files and hashes:         1: bws2ahNvj8xd9SPI1G95B5HBs7s.crl (hash: xluwUArV/Ja7/PoLw7p+FTNneONkX0aotyBa2yK0zco=)
                          2: egKdfoe4jr_OcoA2zw7t88jvhNw.roa (hash: Rm9ZrDiXC3MyZptxhCKpvW8pxI8d9wrZAzUEIDnaY8I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 08:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:26:ff:4e:19:bf:77:89:52:61:ad:6c:a7:40:a6:48:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
        Validity
            Not Before: Jul  3 08:01:33 2026 GMT
            Not After : Jul  4 08:01:33 2026 GMT
        Subject: CN=9c24ed9e1cd47b91343e66054752442dfa71d3ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:50:4c:cd:74:03:9f:c5:a9:7c:22:d2:56:84:
                    2a:02:b7:2f:47:35:d0:5f:b7:0b:1c:63:86:ff:83:
                    d3:8a:85:ef:5f:0d:6d:0a:c0:e3:ed:21:f6:26:db:
                    7b:1d:36:6d:4c:15:c9:83:fb:3e:2e:36:69:82:ab:
                    a1:a3:31:3e:ea:71:32:7c:4e:ea:12:7f:a4:9e:0b:
                    93:24:45:d3:41:24:3d:7e:54:f6:16:ff:1b:64:2e:
                    97:f3:d7:03:ba:e5:c3:ea:eb:66:50:2a:e0:4d:19:
                    20:b2:14:80:be:d3:e4:a4:cb:c0:ba:bc:af:c1:d7:
                    93:26:a7:1c:88:5e:73:73:a7:e9:a3:6c:e9:47:82:
                    ae:51:f5:63:fc:66:fe:12:a6:81:20:b8:b8:53:8d:
                    93:8c:00:34:16:20:05:b5:8f:db:7f:47:45:69:93:
                    e0:41:15:ec:ee:bd:2c:40:b8:df:0e:af:9c:b8:32:
                    66:27:ea:c4:ef:5a:f1:36:0b:d8:46:65:80:fa:72:
                    78:f0:a9:0c:73:28:a6:a6:17:2c:9e:e5:52:92:6a:
                    ba:94:08:0a:96:44:d5:17:2c:b0:d6:52:69:27:e5:
                    13:c0:81:7b:91:2d:02:de:05:8d:f0:74:05:3f:0e:
                    c5:3f:54:5c:14:44:ac:2a:d2:b4:43:15:63:e1:61:
                    c5:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:24:ED:9E:1C:D4:7B:91:34:3E:66:05:47:52:44:2D:FA:71:D3:CA
            X509v3 Authority Key Identifier:
                keyid:6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:58:d5:f1:28:5e:78:1c:db:90:2b:e5:ac:3f:5e:d5:b3:71:
         8b:a8:7a:da:7e:96:43:f6:f8:5c:7e:1c:e3:b0:1e:6b:fb:48:
         c2:47:bf:71:69:85:60:83:b5:15:e2:aa:c5:fb:12:3b:3f:d4:
         61:89:ae:a3:c4:3d:d7:13:3f:b6:3e:50:4a:0d:09:c1:91:7d:
         12:83:d1:51:5a:f4:d3:95:3a:47:9c:28:0d:97:31:dc:5f:17:
         3f:fe:82:60:ad:fe:7f:39:85:5a:9c:9b:35:fc:f1:f2:b1:18:
         20:fd:ed:f0:69:d5:68:02:d5:63:fd:b5:33:1f:44:1b:16:26:
         f7:04:cd:7e:02:25:59:5e:f9:f7:fb:69:ca:14:b6:2a:0e:00:
         47:09:a4:a3:07:91:90:e4:ab:de:91:02:b7:64:be:26:ad:75:
         9a:50:a0:d2:71:0e:01:c4:b8:d0:b5:7b:35:69:c7:10:77:be:
         71:b9:8e:78:e8:90:e2:ab:4f:c7:ef:98:1c:8d:ba:e5:ec:d8:
         84:f3:79:11:06:0c:cd:54:82:80:09:e3:62:a8:2b:11:29:0d:
         bc:8d:11:56:e1:d0:1d:e9:85:08:94:b1:72:db:4d:47:07:ba:
         ae:11:67:a2:fb:7d:7e:21:0b:1b:85:43:7b:81:d6:a0:87:8a:
         1c:1b:45:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 17:36:57 2026 by rpki-client