Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
File:                     DQMTeXANNd0Akr0GHGA-bLJWGnU.mft (raw, json)
Hash identifier:          EydCa30+S9X4kjPThLJfD66Ti6LekIBx9wIhsl6adVU=
Subject key identifier:   E0:3F:CA:7F:36:7C:3A:34:C8:70:82:C5:A9:5B:4B:72:A1:92:5A:F8
Authority key identifier: 0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
Certificate issuer:       /CN=0d031379700d35dd0092bd061c603e6cb2561a75
Certificate serial:       019F3BCF9844C0B6C26CBD05762099B9B31F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
Manifest number:          0429
Signing time:             Tue 07 Jul 2026 09:01:28 +0000
Manifest this update:     Tue 07 Jul 2026 09:01:28 +0000
Manifest next update:     Wed 08 Jul 2026 09:01:28 +0000
Files and hashes:         1: DQMTeXANNd0Akr0GHGA-bLJWGnU.crl (hash: qsN7fM8efoSpWPcgQNM0sIpm28utxVy/xtIKsEgksVs=)
                          2: Lpz2qCyi_pclLucNORkTQKN3m6Y.roa (hash: Q2l7VmCgH626w3ti2dW3eJLOPal4uK77R7IRCnO8dUI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 08 Jul 2026 08:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:3b:cf:98:44:c0:b6:c2:6c:bd:05:76:20:99:b9:b3:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d031379700d35dd0092bd061c603e6cb2561a75
        Validity
            Not Before: Jul  7 09:01:28 2026 GMT
            Not After : Jul  8 09:01:28 2026 GMT
        Subject: CN=e03fca7f367c3a34c87082c5a95b4b72a1925af8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:55:4c:a6:7e:28:33:d2:6b:ff:4f:1a:49:fd:
                    ae:85:48:a9:52:43:bd:88:6c:21:e9:53:70:02:51:
                    a6:9d:b5:73:44:d6:73:4f:b2:44:25:64:f1:ef:d9:
                    7a:8f:cb:d8:cc:54:d1:ad:81:70:e4:4f:e3:40:6b:
                    bc:02:b8:6a:28:39:e7:5a:fa:66:00:b4:e4:e3:33:
                    74:1d:94:a4:c7:e2:32:1d:f8:b7:36:98:6e:8b:f9:
                    d9:26:6a:dd:ca:c3:44:1b:fb:70:87:d3:0e:b8:fd:
                    4f:93:01:75:59:75:5b:5b:fd:34:c0:ad:4b:76:22:
                    bc:bd:9a:d6:11:45:8f:12:e3:b0:4e:20:0b:51:fc:
                    0e:63:42:05:2a:eb:36:b5:43:22:6f:68:39:ca:9a:
                    52:5e:3c:9e:c2:e7:d5:66:c5:48:2f:ce:cb:86:16:
                    16:20:34:ea:91:54:25:a5:dc:d3:7f:f6:e5:cf:a5:
                    2b:c5:62:a4:da:c0:22:f2:7e:a2:2d:51:0e:1a:de:
                    81:63:3d:24:06:0c:b4:ec:33:52:70:98:70:b0:1c:
                    60:3d:87:12:6e:5d:10:82:32:3e:09:0b:4f:7e:1d:
                    a7:b1:53:02:6a:5b:d5:ba:c9:79:22:cd:d1:ff:68:
                    9e:00:c8:77:10:9e:99:cb:fc:24:78:46:42:58:fc:
                    a5:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:3F:CA:7F:36:7C:3A:34:C8:70:82:C5:A9:5B:4B:72:A1:92:5A:F8
            X509v3 Authority Key Identifier:
                keyid:0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:62:5c:d7:47:5c:7a:c3:f9:44:03:e4:66:84:21:55:f2:b2:
         96:ec:67:91:fc:b7:a8:20:cd:d3:ca:3f:51:2b:af:bc:e4:04:
         05:60:0a:f5:9a:ed:a7:23:94:71:3f:40:82:92:5a:5b:8a:16:
         6d:bc:c9:52:41:45:84:ce:f9:99:83:9b:bc:a0:a5:83:f0:7b:
         52:70:f7:28:7a:52:35:d3:07:9c:91:d5:ee:de:34:26:4b:67:
         6d:d5:8c:8b:0b:5c:5f:06:ec:c2:eb:e0:4c:c1:9c:91:2b:0f:
         4c:b5:35:75:b1:d0:ba:6b:70:2e:1c:5d:0e:b3:1a:3e:3d:92:
         1f:13:f7:80:f3:d2:aa:8d:36:49:f6:ae:f8:bd:61:d8:83:3f:
         f8:a6:c5:fb:61:4a:eb:e7:61:0d:04:6f:55:d7:ff:3d:0b:98:
         ab:b2:51:ce:fa:0b:bb:03:b6:40:42:68:1d:02:f1:59:55:49:
         b3:37:75:3e:74:f9:08:67:96:63:9f:a2:12:4c:4b:0a:88:87:
         88:59:3e:94:15:64:59:a9:12:bc:4a:e6:6e:f9:9a:f0:8c:8f:
         1e:1b:fe:46:d8:f4:09:b3:39:b6:86:7b:c8:d3:6f:54:2c:92:
         e0:83:50:81:89:08:61:d8:bf:bf:29:a1:26:e6:ab:16:53:6a:
         2a:fb:83:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:48:59 2026 by rpki-client