Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
File:                     rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft (raw, json)
Hash identifier:          rtRcV65ngT8IRjYIMJpLHLzQhpz8EDzv+uSpTV0hfxU=
Subject key identifier:   42:81:FE:F6:50:6F:F9:ED:0A:AE:FF:5C:A1:4E:A8:AF:AE:B8:89:16
Authority key identifier: AC:8B:77:1E:25:7B:AF:27:DD:A1:0A:08:AB:58:B2:6C:F8:F7:5E:09
Certificate issuer:       /CN=ac8b771e257baf27dda10a08ab58b26cf8f75e09
Certificate serial:       019F19B1FCFE0C5A307302A66381289F3703
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rIt3HiV7ryfdoQoIq1iybPj3Xgk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
Manifest number:          0116
Signing time:             Tue 30 Jun 2026 18:02:02 +0000
Manifest this update:     Tue 30 Jun 2026 18:02:02 +0000
Manifest next update:     Wed 01 Jul 2026 18:02:02 +0000
Files and hashes:         1: rIt3HiV7ryfdoQoIq1iybPj3Xgk.crl (hash: 0sSa/dSXBB1QZupdgNdy5iM9fM6PjNlC5zCiQRiMIpM=)
                          2: rcclP2fW2M9d6FzhFGpcIug6Slw.roa (hash: Ah4o3LwYLB7WSaBBzcrCq3rn0s5Unn57tKa0V6nN2u0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rIt3HiV7ryfdoQoIq1iybPj3Xgk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 18:02:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:b1:fc:fe:0c:5a:30:73:02:a6:63:81:28:9f:37:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ac8b771e257baf27dda10a08ab58b26cf8f75e09
        Validity
            Not Before: Jun 30 18:02:02 2026 GMT
            Not After : Jul  1 18:02:02 2026 GMT
        Subject: CN=4281fef6506ff9ed0aaeff5ca14ea8afaeb88916
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:26:e3:59:c2:2e:4f:73:17:00:88:c3:a6:ce:
                    86:85:10:5e:c1:32:bf:81:28:88:63:05:42:92:82:
                    d6:5e:38:23:4a:96:52:ff:e2:92:87:4c:02:43:d7:
                    48:75:8e:43:3a:b6:95:11:72:b0:25:ff:87:7a:13:
                    33:ed:bf:8c:1c:4e:6d:66:fa:30:36:44:d0:e6:e2:
                    76:99:99:7a:fa:d0:15:70:bf:04:52:24:ed:81:df:
                    23:85:3f:94:e7:f2:30:fd:03:59:ca:bc:eb:93:a6:
                    d7:06:67:d0:64:be:f0:79:cd:46:3a:3a:70:fa:7f:
                    9b:b3:f6:14:41:77:a4:18:60:56:c5:b3:bc:45:0a:
                    51:25:06:c4:ae:bc:f3:97:80:02:46:bc:ec:26:27:
                    3c:52:9f:c4:5d:87:24:1b:7b:bd:57:6f:12:e0:1b:
                    17:e7:52:3c:58:15:98:66:95:56:58:f1:f6:00:e7:
                    06:eb:69:15:64:6a:95:9e:e3:ca:8e:47:08:60:2d:
                    29:29:6e:5f:5c:da:08:03:65:2a:49:08:d9:c1:e7:
                    bc:e4:1e:1c:ca:ec:d0:be:fe:fb:95:b8:a4:f5:73:
                    0b:dc:52:0b:1b:9b:05:30:c6:b1:0f:ef:79:00:b0:
                    75:9f:5e:77:13:d6:23:12:93:a9:fd:45:ba:f4:a6:
                    b8:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:81:FE:F6:50:6F:F9:ED:0A:AE:FF:5C:A1:4E:A8:AF:AE:B8:89:16
            X509v3 Authority Key Identifier:
                keyid:AC:8B:77:1E:25:7B:AF:27:DD:A1:0A:08:AB:58:B2:6C:F8:F7:5E:09

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIt3HiV7ryfdoQoIq1iybPj3Xgk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:06:93:62:ae:6c:60:74:ff:d2:e1:3d:35:08:93:8a:37:09:
         44:0e:fa:d5:3c:ce:34:bb:e7:26:f5:be:91:87:84:bc:c9:d9:
         07:ce:e1:71:65:7b:70:84:27:a1:9b:39:bc:95:38:46:95:70:
         74:d3:04:ac:a8:e9:1a:56:4f:8c:21:0b:2c:4a:b4:f1:32:7d:
         8c:bd:7d:05:5d:71:a3:9d:b6:23:84:24:8f:fe:00:4e:c8:a1:
         3b:bf:6f:89:06:88:fc:09:09:be:36:49:d4:d8:c4:81:70:84:
         7a:1d:87:00:cb:f0:f0:9b:3e:1e:10:7d:06:cb:72:14:6a:76:
         a9:74:1b:88:4f:1f:8a:66:2b:82:58:01:77:5a:10:64:80:f5:
         76:e4:a6:8a:d6:4c:50:3f:88:90:3b:81:a4:ad:f6:38:15:4e:
         ec:9e:64:3f:49:ad:75:09:0e:4a:0f:6b:2b:3b:c2:21:ac:23:
         d3:de:fd:1d:10:6c:d4:8d:88:b7:f9:a5:b4:24:e3:1f:55:75:
         41:b2:6b:fd:f2:44:25:d4:58:90:74:e4:11:5d:07:b8:79:fa:
         ca:a4:4c:47:9c:95:ac:f0:11:34:b1:29:de:1c:18:2c:8d:b7:
         7c:15:45:48:f2:2b:05:f4:e6:f4:3f:bf:90:00:a6:1a:73:c1:
         cf:7b:e6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 02:39:53 2026 by rpki-client