Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File:                     Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier:          cPrkNTxUC1QzMkgb80equyOMM27W1vojQFXMG5/yOe4=
Subject key identifier:   81:EE:32:22:D2:2C:7B:54:AE:CC:18:F2:D6:A8:6A:BB:DD:00:38:15
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer:       /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial:       019E9CCEBEF400D2B004FA7F520FEB1B4F5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number:          15DD
Signing time:             Sat 06 Jun 2026 12:00:55 +0000
Manifest this update:     Sat 06 Jun 2026 12:00:55 +0000
Manifest next update:     Sun 07 Jun 2026 12:00:55 +0000
Files and hashes:         1: N0lWMYy9L6tUgt5C_ALrdVgjFpM.roa (hash: 3TxHIvizHgvT9zapL1jqZMumyRmsqmWLMCRlhTI/E5A=)
                          2: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: 0bfji1TOCtBGHyIguo+87WQfOmPLfTOIgx56dbUVLhs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 07 Jun 2026 04:00:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:9c:ce:be:f4:00:d2:b0:04:fa:7f:52:0f:eb:1b:4f:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
        Validity
            Not Before: Jun  6 12:00:55 2026 GMT
            Not After : Jun  7 12:00:55 2026 GMT
        Subject: CN=81ee3222d22c7b54aecc18f2d6a86abbdd003815
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:37:32:36:01:5e:fc:e8:ee:7f:63:16:4c:96:
                    94:23:b9:64:18:4a:04:a1:50:8d:4b:b0:dc:b4:6e:
                    b6:8d:ed:85:0e:7f:d3:9e:01:80:cd:37:ca:87:1f:
                    c3:03:12:98:a1:b7:55:ed:17:47:35:ee:89:eb:33:
                    66:2c:95:73:93:aa:76:c5:cf:8d:0c:b6:bc:94:ed:
                    a2:c7:8a:58:6a:c3:38:f5:e6:70:76:17:be:38:65:
                    b1:3f:5c:d7:0d:98:36:41:7d:6b:b4:ab:77:9e:ac:
                    b8:a9:2a:5f:fe:60:34:50:4e:83:a6:58:28:ab:7f:
                    89:c3:fd:a8:7c:74:05:0f:ca:39:d7:7a:b0:63:0a:
                    db:e8:43:d0:3d:f3:f4:92:77:9e:b4:b1:24:d7:e2:
                    76:1f:38:1b:3f:82:35:1d:5f:af:a7:a9:f6:df:e0:
                    9d:e7:4a:9e:9e:31:d1:55:a4:48:11:13:89:48:7f:
                    ad:a1:db:0f:f2:21:cc:b3:59:09:62:46:5a:e5:25:
                    2e:30:ca:9b:08:30:6e:67:f6:e5:01:e7:ab:e6:14:
                    5d:06:8f:a5:d8:b6:b4:aa:76:89:a0:ae:8b:16:0d:
                    be:5a:db:02:fc:ef:bd:8a:09:83:c1:dc:66:b1:6b:
                    8c:25:88:8c:f7:f5:6d:32:ef:31:7b:59:7a:58:e6:
                    cd:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:EE:32:22:D2:2C:7B:54:AE:CC:18:F2:D6:A8:6A:BB:DD:00:38:15
            X509v3 Authority Key Identifier:
                keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:d4:7e:2f:1c:dd:65:41:fe:66:f3:57:5e:bf:bf:00:9c:de:
         ef:f6:a7:6f:39:26:a4:85:13:cb:d6:71:10:df:0a:36:8d:75:
         9f:d7:c2:79:12:5e:a9:2c:3e:94:a0:ba:78:8e:13:48:19:4a:
         fe:83:51:d2:fd:d6:17:c6:67:05:67:2a:2e:1d:84:e3:b7:b9:
         a1:22:45:14:58:a2:2a:45:01:47:4d:02:84:ff:0d:80:50:83:
         79:c7:22:c9:85:b4:61:44:b8:37:8d:e0:8e:12:2c:59:23:e7:
         05:85:91:21:3e:6b:e0:72:54:aa:fb:b5:f4:9b:27:d1:3d:54:
         c6:3a:e2:6f:f8:d8:26:c6:7e:e4:34:13:db:6a:92:77:6b:0f:
         4d:4e:c8:95:fd:c4:d3:81:5a:8b:7f:05:69:4e:e7:88:db:f2:
         13:c4:0a:0a:ca:35:e2:10:ae:d3:3c:ac:0c:00:1a:2b:f8:c4:
         a9:ee:10:9c:b6:24:ab:b3:7d:e4:6f:ce:ac:b4:a1:53:1b:61:
         6b:1b:9b:49:f2:ce:67:85:94:f2:1b:a0:64:68:7d:72:d5:72:
         f2:b7:2f:75:e9:9f:31:e3:a4:e3:0a:39:1a:50:f4:8b:3c:69:
         31:27:bf:0f:d0:b9:cd:f3:9f:c4:3b:7e:31:9a:3c:d7:10:64:
         cc:ee:95:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:20:51 2026 by rpki-client