Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
File:                     tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft (raw, json)
Hash identifier:          0hMhU65YUwdiQKssnkPOiumCaIHwAe1oVgFs4E+0VVY=
Subject key identifier:   78:50:22:8A:BB:EA:34:EF:5F:B6:43:20:0D:57:0E:CF:F0:CC:43:F0
Authority key identifier: B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5
Certificate issuer:       /CN=b483bc0a71a52d0cf3989522367575959ebdcef5
Certificate serial:       019F33A7FB4EB3B6F45169DF18912CD42CE2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
Manifest number:          1924
Signing time:             Sun 05 Jul 2026 19:01:14 +0000
Manifest this update:     Sun 05 Jul 2026 19:01:14 +0000
Manifest next update:     Mon 06 Jul 2026 19:01:14 +0000
Files and hashes:         1: qJnVj3Zs2i38NS_GvtNSRBYOWbE.roa (hash: h7mzOdGL4lo+Kqx9x5P2yddSOacnumyUrjBXBH0gi30=)
                          2: tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl (hash: lT/UyTFjq67rtZHb345w9osRrZwEhGM036piq7969yU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 06 Jul 2026 19:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:33:a7:fb:4e:b3:b6:f4:51:69:df:18:91:2c:d4:2c:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b483bc0a71a52d0cf3989522367575959ebdcef5
        Validity
            Not Before: Jul  5 19:01:14 2026 GMT
            Not After : Jul  6 19:01:14 2026 GMT
        Subject: CN=7850228abbea34ef5fb643200d570ecff0cc43f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:64:e0:ee:b4:e8:eb:0e:c7:bf:54:f9:bc:61:
                    24:0d:92:41:d4:12:71:0e:a9:3c:ba:6c:67:9b:64:
                    01:8f:87:74:a3:d7:e6:d4:fb:19:d5:f4:22:38:23:
                    30:5e:77:1c:42:48:11:ce:fd:b9:9c:3a:17:a0:27:
                    bd:70:0f:aa:83:1d:45:c5:8b:03:1c:8d:f6:99:37:
                    8c:9f:fa:97:a2:98:5b:8f:39:4b:67:6a:6e:2a:4e:
                    5c:21:14:81:9c:99:77:a7:fb:49:b5:b0:6a:1e:40:
                    84:7b:56:9a:0a:d0:9a:84:db:98:a1:e8:f1:7b:fc:
                    e2:7d:57:ff:04:4a:a6:32:48:e7:0d:be:bf:ed:41:
                    80:90:1a:eb:31:92:a8:7f:29:6c:b5:7f:aa:36:78:
                    1e:8e:41:27:fa:16:91:ca:8c:6e:e2:03:49:06:75:
                    76:87:83:14:a8:34:83:01:73:2b:b9:9b:07:c3:bb:
                    12:99:18:87:41:ea:ee:7a:19:5f:17:8e:fc:a8:51:
                    d0:ad:59:6a:24:86:5a:6c:86:1a:9f:8f:b7:86:7a:
                    d8:72:40:0b:49:8a:8c:7a:19:f3:31:51:67:88:d5:
                    14:4d:10:5c:8c:53:43:71:4c:b3:e2:5d:5b:a7:1c:
                    06:fa:d0:69:96:ea:0f:af:18:d5:60:d4:86:ff:61:
                    83:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:50:22:8A:BB:EA:34:EF:5F:B6:43:20:0D:57:0E:CF:F0:CC:43:F0
            X509v3 Authority Key Identifier:
                keyid:B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:99:9e:24:c7:e9:b1:22:0b:04:d8:dd:1d:2c:1d:c1:88:b8:
         3f:4c:c1:3c:0b:f6:9c:51:1b:07:b2:b2:9a:72:e4:db:cf:fd:
         76:cf:7c:a6:b2:7d:49:85:a2:d9:8b:c1:d7:f6:91:9b:d1:e6:
         0d:b0:2d:8d:2e:0e:dc:ea:12:37:c8:05:b9:1f:fb:ea:05:cb:
         6a:61:9b:ce:a9:65:b4:45:14:0e:6c:44:3c:0b:3e:c6:a7:90:
         a6:03:ef:19:62:3a:24:6b:41:95:92:f8:f7:9f:f9:72:9d:72:
         69:5b:ad:67:a1:3e:bd:73:5f:42:d9:7f:82:a3:9a:55:b8:8c:
         2c:00:82:ae:f3:10:23:5a:8a:4e:48:98:d6:b9:0c:8c:1c:ab:
         ea:64:d4:6d:5d:60:53:d9:81:09:e2:52:1a:b5:29:f7:ec:16:
         dc:ac:25:17:26:b0:6d:e9:dd:30:ed:2c:30:f6:78:27:ca:92:
         40:89:b3:2d:0f:ba:1e:e3:c5:92:07:64:f8:a0:5f:4b:d9:4b:
         0d:a9:a6:92:fe:73:45:56:13:22:af:be:9d:59:10:d0:4c:e7:
         e0:3a:b6:cc:f6:67:98:47:78:63:9f:33:4e:a2:db:f6:12:2d:
         6f:b8:d3:17:7e:9c:82:6b:f0:70:3a:fe:e7:33:6b:62:08:b4:
         b5:90:11:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 03:55:53 2026 by rpki-client