Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File:                     rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier:          qJmo3Pn3p3peVccUG0a0nnw+U4Ee7aEUD2T3ps7X86A=
Subject key identifier:   6C:40:63:93:E9:8E:64:7A:29:64:19:BA:88:0D:34:33:10:3A:41:4F
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer:       /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial:       019F420875DB5A11B52E4AB43AD3505DF047
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number:          0C6B
Signing time:             Wed 08 Jul 2026 14:01:18 +0000
Manifest this update:     Wed 08 Jul 2026 14:01:18 +0000
Manifest next update:     Thu 09 Jul 2026 14:01:18 +0000
Files and hashes:         1: 9tGzK-FCrgGlyf8btSGObHH6Jkw.roa (hash: NlammvVp7/v8P1KUtxpc69bkMW7FgZFFOJxxoLecI3k=)
                          2: NJAtBEz3Ixv_CCYeRvRJJECYvnk.roa (hash: 8VY+OH2qENoVZQA8QBMe/XGjN1hAsUDKuWI2emaWxMU=)
                          3: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: n5c2w/YHsXNAPAzE8mzye25IVWZ9GCbTTMV3RgGpmhk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 13:45:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:42:08:75:db:5a:11:b5:2e:4a:b4:3a:d3:50:5d:f0:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
        Validity
            Not Before: Jul  8 14:01:18 2026 GMT
            Not After : Jul  9 14:01:18 2026 GMT
        Subject: CN=6c406393e98e647a296419ba880d3433103a414f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:d7:45:59:02:80:b5:01:10:65:6e:1e:3d:52:
                    1b:a3:07:a5:47:bb:69:5b:9d:4e:30:3c:22:4a:26:
                    ac:da:cf:46:af:b5:e1:d8:a8:74:08:72:8d:86:2c:
                    fa:29:2c:8e:53:cf:53:4d:84:83:57:fa:ac:4e:2b:
                    0b:29:3c:97:ca:39:c9:c3:b0:c8:b0:61:2c:b1:3f:
                    a1:67:df:42:3c:d6:0d:95:57:7e:3a:58:c4:dd:bb:
                    7e:00:6b:73:ac:b3:be:b7:9f:a9:79:a0:d1:66:a0:
                    dc:0e:74:06:f5:5f:04:1b:70:d5:45:0a:29:18:26:
                    eb:2b:8d:2b:b6:e8:8c:08:5c:bb:7a:7c:18:ea:19:
                    99:20:d7:63:12:28:6a:ec:69:43:5f:5f:0e:64:39:
                    46:ac:b0:5e:9b:cb:5a:cf:eb:48:7b:1b:86:49:f7:
                    da:30:24:39:44:2d:fe:80:c7:52:c8:31:ed:06:3e:
                    84:4e:1d:5e:bf:c9:4f:03:41:cf:44:cd:e0:e4:6d:
                    65:7b:32:8f:5e:7f:9d:86:49:6c:3d:d5:99:2e:b7:
                    9c:d2:31:5e:92:31:43:b7:36:52:32:1f:34:83:c7:
                    93:bc:52:d9:2d:0e:b5:b6:aa:c8:b7:34:64:80:1c:
                    2d:ce:a1:95:07:de:20:4e:e3:2e:f8:3b:8b:c6:3e:
                    73:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:40:63:93:E9:8E:64:7A:29:64:19:BA:88:0D:34:33:10:3A:41:4F
            X509v3 Authority Key Identifier:
                keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:c0:44:b6:08:6c:e9:c0:e9:29:9c:5e:31:9c:3c:9a:56:b4:
         f3:ac:ff:8d:eb:1b:01:b1:d5:c1:10:1f:18:6f:07:17:10:d9:
         b4:af:e4:1d:af:e9:1b:56:04:e4:5c:9b:c7:34:a9:03:f8:c8:
         ba:84:ae:3d:2b:98:91:fc:59:2e:02:b3:79:ae:08:d8:ae:e3:
         15:75:26:fd:1d:5c:e4:9e:b3:3b:a8:f6:9d:c3:95:d1:df:b7:
         e8:ec:80:c3:0b:7e:78:27:37:da:be:af:96:45:86:d2:26:78:
         80:08:4f:0f:f3:05:b3:d2:80:78:5f:eb:cc:32:1c:6a:76:e6:
         46:e8:7a:f5:f6:68:a4:73:3e:ea:03:5c:d2:bc:ef:f9:52:be:
         08:5b:97:b5:37:f0:32:01:94:8c:8b:12:f9:92:56:8d:fb:7c:
         ba:87:9e:28:83:66:0d:33:bd:e3:88:04:fb:ab:14:7f:b0:d5:
         c2:3d:a8:4c:34:98:7d:8d:67:64:09:87:1c:1e:26:48:2a:e0:
         d3:60:b1:10:4c:dc:b3:e4:69:43:08:ed:af:1d:5d:71:00:df:
         9a:d3:90:5e:05:ae:07:8c:e7:75:f9:19:3d:d2:8e:80:21:b5:
         47:bf:2f:7e:93:44:43:71:fa:7c:59:a8:02:73:81:1a:5e:67:
         25:5b:1e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:41:35 2026 by rpki-client