Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
File:                     rtyPMnpGGWTAqHqceAlAHFfIbUE.mft (raw, json)
Hash identifier:          hhR+AP5PvN/ivv6evg3wil+vliTODEzjdIwOx6r5FQo=
Subject key identifier:   EA:64:63:52:A9:10:D3:88:E2:0C:0A:4B:E1:29:F2:2F:97:5D:71:03
Authority key identifier: AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
Certificate issuer:       /CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Certificate serial:       019F295B6FAAA04AB71BE9D408939893B427
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
Manifest number:          1990
Signing time:             Fri 03 Jul 2026 19:01:25 +0000
Manifest this update:     Fri 03 Jul 2026 19:01:25 +0000
Manifest next update:     Sat 04 Jul 2026 19:01:25 +0000
Files and hashes:         1: r9eaNKOzK8PPUei6RdKb9LkqhTI.roa (hash: +R7LC8z04wYSjkyWe1Pk5HhKfodwp2zyyiW39xvrzog=)
                          2: rtyPMnpGGWTAqHqceAlAHFfIbUE.crl (hash: Mx3UCNRL1DuSMklMmjEUNOwu6I9raASrarebjkuwlBs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 19:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:29:5b:6f:aa:a0:4a:b7:1b:e9:d4:08:93:98:93:b4:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aedc8f327a461964c0a87a9c7809401c57c86d41
        Validity
            Not Before: Jul  3 19:01:25 2026 GMT
            Not After : Jul  4 19:01:25 2026 GMT
        Subject: CN=ea646352a910d388e20c0a4be129f22f975d7103
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:1d:18:08:a6:d9:03:50:dc:4a:9f:82:98:e7:
                    fe:6f:fd:bb:bd:a7:e7:1d:58:50:67:d8:eb:60:ac:
                    c3:2c:be:a5:90:e1:31:83:28:ab:a3:59:de:ac:ef:
                    a2:c4:78:cb:c7:f1:c6:47:60:89:1b:07:5a:7d:83:
                    6f:2c:f6:d2:2a:28:74:9d:e0:2a:6e:70:ec:46:4c:
                    56:0d:c7:4e:80:f0:0f:2e:38:17:74:18:dc:83:4a:
                    99:b4:28:1c:38:a4:f2:c7:6d:cc:c9:6c:2c:eb:07:
                    fb:14:0a:04:e9:8a:f4:73:98:70:ec:25:6a:50:a2:
                    a0:bb:2a:34:f0:3b:a0:e1:a5:c6:49:c2:c3:c5:5f:
                    e8:8f:91:73:93:95:a7:20:78:4f:3a:92:7e:91:5e:
                    dd:f8:11:e8:0b:32:b8:34:bc:39:49:8d:d4:90:05:
                    92:63:d1:ae:3e:f0:04:a5:b5:ac:75:f6:3f:2e:11:
                    87:1b:6f:76:f5:9e:ac:0f:74:0c:bf:fc:b3:1e:a1:
                    91:cf:2a:cf:47:27:68:7d:08:31:01:c5:0c:fd:29:
                    48:e1:a8:e6:1b:1a:94:11:ad:51:7d:56:e8:96:d8:
                    81:09:bd:08:69:d9:0a:9a:c9:49:1a:16:7d:b7:18:
                    5e:81:5a:95:48:94:6d:48:b0:e0:af:62:e2:c0:a3:
                    70:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:64:63:52:A9:10:D3:88:E2:0C:0A:4B:E1:29:F2:2F:97:5D:71:03
            X509v3 Authority Key Identifier:
                keyid:AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:5a:b8:11:1b:70:a9:5e:3a:5c:4a:be:56:4c:a1:be:ae:26:
         39:b1:c6:53:e3:2d:fb:39:af:82:cd:b4:df:13:c9:4d:40:74:
         a4:ec:7b:21:28:f7:f1:32:f3:2c:02:55:6e:a5:1c:39:2b:66:
         2c:9b:b7:8d:53:96:c6:46:7c:1f:55:ec:49:6f:85:16:3f:52:
         4e:79:28:9f:61:d2:24:09:ec:27:9f:77:c5:97:93:1b:a5:42:
         05:96:79:c8:0d:d8:12:0f:d0:8b:fd:c0:a5:b5:98:e1:25:35:
         79:eb:c8:e9:96:5a:b5:70:a0:4f:41:7b:89:3d:ea:57:a4:28:
         01:d2:a1:96:1d:6b:f9:67:bf:02:be:e9:90:fc:39:51:bf:85:
         4d:e8:f2:f0:67:20:13:db:4e:38:70:5a:47:b7:f2:ee:01:0b:
         ae:45:e7:ef:1f:b9:ba:01:ac:ee:b4:5b:d2:b5:08:e7:b1:1c:
         21:e2:1d:ae:35:44:66:d5:f2:0d:1c:94:d0:ce:c7:db:ef:c5:
         1d:e3:da:89:e5:55:6e:b7:e5:29:12:30:a2:1d:ad:9d:22:bf:
         f0:d2:16:33:3d:1b:1d:3a:c3:60:26:fa:b5:6e:7d:7e:06:84:
         24:48:64:45:1b:02:f2:57:87:5a:3c:cb:bf:f7:83:6e:c8:06:
         a9:a9:c5:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 22:33:51 2026 by rpki-client