Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File:                     dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier:          U3FG3FKMV0mLwE+UeaQ4v+bBmuempBTz2It4DOBzROk=
Subject key identifier:   F7:7E:58:59:35:39:23:E9:0E:A4:77:EC:73:D1:E8:3F:51:61:D3:15
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer:       /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial:       019F389707292A740008922BC75FB88F75AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number:          06B5
Signing time:             Mon 06 Jul 2026 18:00:49 +0000
Manifest this update:     Mon 06 Jul 2026 18:00:49 +0000
Manifest next update:     Tue 07 Jul 2026 18:00:49 +0000
Files and hashes:         1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
                          2: NZYrDqHNM7w06ZqIbetRmQuvkI8.roa (hash: aqDX81Tnke9g7oa5zcmS5K2aP4v9bwtCbdPJWZIvsEE=)
                          3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: rfsbfBtAF09AnQpVtbYeeDD+q/1rzQ8LG7yEq2DZ2R8=)
                          4: j7E0VOUyJDRGY1mXB_LTgfCHtec.roa (hash: DmIJX6VYUzzGV5IX9wpqM+xTHY2Teuv8gdmzrljcdLA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:38:97:07:29:2a:74:00:08:92:2b:c7:5f:b8:8f:75:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
        Validity
            Not Before: Jul  6 18:00:49 2026 GMT
            Not After : Jul  7 18:00:49 2026 GMT
        Subject: CN=f77e5859353923e90ea477ec73d1e83f5161d315
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:f1:ef:5a:2e:1f:9a:3c:7f:69:09:8f:0c:27:
                    f7:dd:49:50:18:a2:8a:b4:57:86:82:9a:4b:02:da:
                    76:45:12:39:56:82:2d:df:d6:17:a9:c6:43:79:67:
                    41:17:99:62:3d:69:c0:03:44:9b:8e:19:94:3d:52:
                    a2:bd:2a:5a:ec:4e:c4:da:1d:0b:5f:e8:5d:99:d9:
                    84:1e:81:98:95:f6:1c:97:aa:8a:54:35:f4:7b:3e:
                    bb:1a:d5:5a:62:44:57:15:3d:94:eb:c5:b6:4c:75:
                    80:ee:45:a0:89:fc:10:97:26:7c:8a:4a:51:07:98:
                    45:87:8b:47:27:10:d7:42:04:75:4d:40:49:32:ed:
                    31:19:fc:7b:ec:b1:19:53:f3:fe:de:6c:c7:ff:df:
                    bb:44:e4:08:f4:e6:46:cd:3d:48:00:57:5a:df:bb:
                    a5:60:9e:36:ae:6a:52:30:ba:af:88:96:a4:ac:9d:
                    d7:22:c5:cf:3b:17:0f:65:5b:47:d1:23:eb:7e:78:
                    ff:de:fb:13:2e:3d:5a:e8:7f:97:66:5d:56:af:e3:
                    f5:b7:06:ee:af:88:14:10:59:51:0d:b5:4f:26:38:
                    b6:8a:f9:95:65:b9:8f:7d:fe:ef:ab:95:76:b3:d9:
                    58:3f:84:92:96:19:68:db:ca:a6:35:6c:ed:8f:cf:
                    df:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:7E:58:59:35:39:23:E9:0E:A4:77:EC:73:D1:E8:3F:51:61:D3:15
            X509v3 Authority Key Identifier:
                keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:f2:3e:4f:1d:d0:47:e4:a4:d6:5c:a7:6f:d4:19:f7:1d:62:
         ff:e2:32:d8:f0:1f:a8:fb:f3:bd:a9:86:78:94:28:3d:b7:94:
         8e:74:54:6f:d4:9a:d9:47:38:f8:4c:06:09:4f:71:a0:3b:ad:
         59:1b:22:fc:48:9d:21:07:9b:e3:08:ff:11:5b:50:33:c6:ab:
         4e:38:67:b0:5e:99:14:cd:21:69:7d:f8:ee:42:6f:5f:90:43:
         20:08:26:89:67:46:bb:39:f1:d2:87:ff:42:71:74:5e:7e:44:
         37:b3:e1:2c:90:ce:32:c5:ca:0e:29:b8:43:6c:7c:e1:d2:72:
         19:38:05:3d:67:55:05:9d:88:7f:7a:33:2e:1d:5b:44:25:ce:
         4d:f9:c4:78:0f:c3:ce:ab:c4:b4:a9:97:be:d7:8b:da:32:22:
         21:22:eb:e3:ce:97:58:21:d9:db:b5:64:81:c7:7e:61:47:c4:
         8b:4c:c9:e7:3f:68:5b:3b:2b:1b:88:ca:57:99:17:74:c5:29:
         56:5d:52:d4:8f:07:95:7e:64:76:b7:e6:17:07:b3:e5:2f:a0:
         9f:59:be:54:e0:07:ec:fa:f9:d4:f9:f1:37:2d:2c:40:9a:bd:
         af:92:28:63:e1:47:5a:0d:f6:00:be:8a:fa:56:d0:f2:97:b8:
         42:88:b2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 20:28:55 2026 by rpki-client