Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
File:                     GOk3wQPbBG8iVT75lDj6KVkkDaU.mft (raw, json)
Hash identifier:          eHMKZMVXLEZIUhIKau/mHXYeEFac3Yg1fNVWVyQFINA=
Subject key identifier:   3F:33:76:91:08:44:81:0E:80:49:31:F9:ED:0B:CF:46:D2:53:38:06
Authority key identifier: 18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
Certificate issuer:       /CN=18e937c103db046f22553ef99438fa2959240da5
Certificate serial:       019F38CEBCB9E12CD7F83CA6481033764A9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
Manifest number:          199A
Signing time:             Mon 06 Jul 2026 19:01:40 +0000
Manifest this update:     Mon 06 Jul 2026 19:01:40 +0000
Manifest next update:     Tue 07 Jul 2026 19:01:40 +0000
Files and hashes:         1: FO1lQiG9ScdzQtlxdlw1FlKQ-I0.roa (hash: PRoV3H39Cr/JXk4LsEV4xIWemZ70bZuFShd6vkqQqrE=)
                          2: GOk3wQPbBG8iVT75lDj6KVkkDaU.crl (hash: /T+flpAqB0qoaGER7PEwgut+jrcZpJCzNbKFbM1mQq4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:38:ce:bc:b9:e1:2c:d7:f8:3c:a6:48:10:33:76:4a:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18e937c103db046f22553ef99438fa2959240da5
        Validity
            Not Before: Jul  6 19:01:40 2026 GMT
            Not After : Jul  7 19:01:40 2026 GMT
        Subject: CN=3f3376910844810e804931f9ed0bcf46d2533806
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:c6:b2:a5:90:5c:7c:3f:3b:62:e7:6c:08:79:
                    c0:e5:b2:34:e5:72:3d:af:80:1c:7c:6c:45:e2:2e:
                    08:43:7a:65:53:fe:ad:4a:2f:59:de:19:e7:3f:05:
                    bc:12:db:ab:08:e1:5a:df:9b:92:d5:12:62:93:58:
                    3b:60:5a:f4:79:9c:bc:6b:13:59:23:28:44:09:fe:
                    54:d0:d7:40:b0:85:42:36:c3:2d:04:84:bd:ea:dd:
                    14:0b:28:4a:06:62:31:f1:68:39:d3:8c:07:59:2f:
                    a7:00:25:e6:31:cb:3b:8f:93:87:65:45:4c:81:d9:
                    64:e0:6b:e0:d3:c3:55:1f:d7:06:e6:ba:29:51:54:
                    3b:7d:ac:cb:1e:5d:dc:68:9f:a1:5f:08:c7:92:4b:
                    6f:c8:3b:4c:46:f3:4e:29:80:58:ae:dd:a3:5e:26:
                    2f:70:e7:a8:9c:bb:98:6e:d9:87:81:34:ab:84:f2:
                    63:42:3b:8e:f9:f0:a7:6e:ed:4d:10:92:88:92:0a:
                    96:58:1d:f0:53:8c:01:d9:0e:b4:57:90:eb:e3:75:
                    08:89:86:31:39:c1:20:74:9e:0a:91:4a:62:f8:a3:
                    c1:0a:61:36:75:c9:fb:d6:ba:dd:dc:1b:70:7e:01:
                    19:93:e1:08:2c:e6:90:1a:91:b4:a3:d7:81:a3:aa:
                    8f:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:33:76:91:08:44:81:0E:80:49:31:F9:ED:0B:CF:46:D2:53:38:06
            X509v3 Authority Key Identifier:
                keyid:18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:4e:78:3d:44:1a:57:8f:a3:54:f4:04:ed:cf:5d:7b:e2:06:
         ee:95:55:54:47:21:1e:b9:35:e8:3f:c0:d9:1d:8a:d4:d9:6a:
         81:fe:e5:09:2f:72:92:11:3f:bf:c5:19:c3:7d:f3:e1:5d:df:
         7a:e1:07:16:62:ef:c0:14:f2:fc:f2:01:98:90:79:a4:9d:32:
         d7:98:99:f5:56:83:2a:1c:be:f0:6e:95:da:da:20:0f:b5:9e:
         4b:83:e4:7b:c2:c7:0c:bb:6e:8f:85:60:ac:c8:9f:fd:43:5c:
         df:1c:e9:44:45:fc:fe:f6:7a:f9:a3:47:1b:19:f7:3d:71:34:
         22:7f:8d:fe:bb:f5:1f:d6:15:9b:a0:6e:45:6f:57:17:71:2a:
         ad:72:e6:45:cd:69:4a:5d:da:4f:fd:14:ac:e2:b5:cb:a4:18:
         f9:e0:26:e1:58:6c:65:3a:99:03:86:d6:03:1b:9a:5d:68:01:
         c8:eb:78:5a:36:e2:4c:02:e0:1e:a9:c0:e5:72:98:cb:b8:e0:
         69:32:9e:c6:d9:9b:f0:a0:80:67:83:a8:9c:20:5d:a0:6f:32:
         82:e1:46:57:28:a9:8e:cc:f9:e4:4f:0b:11:a1:26:de:06:ae:
         0d:72:04:85:a1:a0:79:3b:7d:53:a3:c0:1f:e6:cd:59:7c:58:
         79:e2:07:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:24:12 2026 by rpki-client