Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
File:                     ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json)
Hash identifier:          sYsuBzojK/dik8W0o/1WS/hIUhAYwbs4FXNI+psxu8k=
Subject key identifier:   D2:19:1F:80:23:7A:71:DD:2B:F1:CF:1C:D5:04:B7:3C:0C:C4:E9:8D
Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
Certificate issuer:       /CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Certificate serial:       019F42ADD2DC54F82EA59E20057C52347013
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
Manifest number:          18B6
Signing time:             Wed 08 Jul 2026 17:01:55 +0000
Manifest this update:     Wed 08 Jul 2026 17:01:55 +0000
Manifest next update:     Thu 09 Jul 2026 17:01:55 +0000
Files and hashes:         1: J-e1EK_LAkajkxzNj6LSi_DOMCQ.roa (hash: 2wHbXc4iH7fDMwb/pEgkJZF38SGZEaDWW6KVL/qYSzQ=)
                          2: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: M1sy5v3GZBb30Yn5tSvk8zrpwNOlTOxx0fJmr6CHpJY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 13:45:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:42:ad:d2:dc:54:f8:2e:a5:9e:20:05:7c:52:34:70:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba
        Validity
            Not Before: Jul  8 17:01:55 2026 GMT
            Not After : Jul  9 17:01:55 2026 GMT
        Subject: CN=d2191f80237a71dd2bf1cf1cd504b73c0cc4e98d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:c3:b4:54:c5:81:07:79:01:ae:c0:2a:b1:62:
                    68:7a:0f:2d:84:04:b5:19:3f:06:99:9d:85:f5:3a:
                    b2:a3:7a:76:10:23:3f:d8:f2:52:66:b1:bb:ea:d7:
                    ca:03:ec:b1:0e:3d:ae:0f:f6:f1:0e:43:91:a9:2f:
                    60:35:64:16:6d:90:e7:79:f8:cb:75:16:1a:17:41:
                    dc:4f:48:8d:84:a4:d2:44:ca:b1:39:07:1b:23:95:
                    87:a1:a9:dd:eb:9a:42:3b:8d:a9:38:28:4b:a6:13:
                    fe:ea:b1:b6:90:ed:36:fc:99:fe:75:e7:ca:d3:56:
                    bf:09:d9:fd:a7:2c:9e:23:a1:78:30:0b:88:67:e7:
                    54:c3:61:79:5b:4f:6e:4a:29:ed:79:d1:70:a9:81:
                    4f:aa:fe:f0:19:4f:58:ba:6f:75:ac:fe:d4:91:ff:
                    98:ff:24:89:64:89:4f:38:0d:9d:35:f0:84:dd:21:
                    22:6a:a7:2c:36:30:f8:40:1e:5b:1e:06:08:bf:89:
                    50:f6:37:23:22:a2:66:d3:c0:74:ee:45:a6:c4:ef:
                    96:24:40:73:4b:be:bd:f3:ac:74:4c:07:c0:1a:b3:
                    ad:b3:15:32:0b:48:a2:25:4b:d2:01:fa:61:66:ab:
                    f2:8c:81:b8:c2:19:e3:06:c3:97:b7:62:98:7a:15:
                    42:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:19:1F:80:23:7A:71:DD:2B:F1:CF:1C:D5:04:B7:3C:0C:C4:E9:8D
            X509v3 Authority Key Identifier:
                keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:c7:4c:07:5f:fe:cf:5f:47:2c:89:80:93:de:c7:6e:29:85:
         ad:1f:94:54:02:e6:54:9c:39:3b:82:74:17:51:b4:df:bc:c0:
         2c:4c:a9:51:11:d2:87:60:a5:95:50:31:1b:13:e5:1b:d6:7a:
         f5:bd:82:f4:d0:91:1a:78:31:43:46:ac:f9:6b:3e:08:c2:c0:
         82:8b:50:93:a8:24:75:7a:3f:b9:8d:1e:f9:e1:ac:92:72:57:
         fb:00:c2:3b:91:ea:29:62:ef:6a:21:87:a3:5a:39:42:54:a2:
         3d:fc:54:74:9f:97:a6:04:c6:9e:7f:53:8f:18:5e:be:8f:f5:
         75:07:8a:95:93:6c:f1:42:28:a7:d5:7d:3d:1b:71:2d:7b:99:
         3e:25:ac:10:f8:52:fb:36:90:81:7a:cb:9e:b0:b2:4d:66:42:
         7e:8e:c8:ba:63:a6:26:a6:0c:64:c3:37:0f:a1:42:d6:a1:84:
         28:3c:1b:09:cf:b2:d0:e1:4a:fa:c6:31:92:c3:4b:2d:98:ae:
         60:f3:06:92:6e:55:95:c0:5f:77:79:84:9f:30:3b:2d:d4:ac:
         67:3a:2c:ab:b8:2b:81:52:21:3a:42:71:d0:0c:b8:c4:09:d7:
         f3:ce:fd:58:f3:a0:ee:2d:1b:3c:55:79:fd:e4:73:43:14:34:
         cd:ab:b5:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 20:45:19 2026 by rpki-client