Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
File:                     kBZCwNRvjU5MI0wzr771pIOcaiI.mft (raw, json)
Hash identifier:          rtCZVrFkuCf6qZ+dYvsuvIybefI4UZE1KQrG5MbxYyk=
Subject key identifier:   87:D8:13:74:AF:0C:F3:65:BB:3B:BD:63:CC:41:A5:D3:5D:0A:C1:87
Authority key identifier: 90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
Certificate issuer:       /CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Certificate serial:       019F1A8D1E963D8B38D44FCDD64E87878E28
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
Manifest number:          01C6
Signing time:             Tue 30 Jun 2026 22:01:23 +0000
Manifest this update:     Tue 30 Jun 2026 22:01:23 +0000
Manifest next update:     Wed 01 Jul 2026 22:01:23 +0000
Files and hashes:         1: A9-wOdp_rVCM0ESzhr89kQtrxAk.roa (hash: EEXrwqrXm4OhbrVH1e+ftGoZf1df8IiOvwtrHVI9K44=)
                          2: kBZCwNRvjU5MI0wzr771pIOcaiI.crl (hash: xY1Qyzbm927F3Cio66PEQI+833lZ5zcYoOFT6mMDK2k=)
                          3: oUxyNiL8a-AOoVb7hvCWizwaEaI.roa (hash: s30Arx9jmVniBQHeZV05te3a62N7rkcg5xppFWIofXA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 20:30:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:1a:8d:1e:96:3d:8b:38:d4:4f:cd:d6:4e:87:87:8e:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
        Validity
            Not Before: Jun 30 22:01:23 2026 GMT
            Not After : Jul  1 22:01:23 2026 GMT
        Subject: CN=87d81374af0cf365bb3bbd63cc41a5d35d0ac187
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:f7:11:2b:1c:48:f0:15:10:9e:de:a3:10:c7:
                    13:60:21:21:6b:f1:45:41:28:cb:f4:1b:19:4d:fd:
                    a2:96:12:36:08:27:ee:cd:65:b0:33:64:7a:e2:7b:
                    0e:2a:a4:49:f9:b1:0a:26:de:b8:48:4b:22:cc:6e:
                    ab:72:7f:b9:64:d6:36:97:06:7a:81:79:aa:a7:ba:
                    e0:51:c7:22:a8:c1:ab:e2:91:ad:0f:ce:10:a8:74:
                    29:03:63:5e:e6:57:25:b7:f8:08:c7:5b:40:bb:68:
                    d8:fa:05:86:38:77:f7:9a:ce:e5:77:e9:11:4a:9f:
                    29:04:80:32:8f:a4:63:ef:0a:4a:a2:2b:f0:da:6a:
                    cd:b2:9a:a2:e9:b7:2e:96:70:a4:d3:d6:3e:ab:f1:
                    87:0b:c2:8c:aa:ec:10:b1:c6:34:b0:cc:b1:de:14:
                    f8:44:c9:67:9a:d3:cf:2b:53:96:cf:df:50:ae:ac:
                    ec:54:a6:e8:ac:86:42:fb:8e:a6:57:6b:1d:4e:cc:
                    8d:42:ac:8d:7b:56:98:8b:5b:d4:76:ec:10:c6:88:
                    10:66:4d:ce:15:05:a5:65:e7:46:eb:f5:31:bc:c8:
                    28:4f:8f:b7:25:30:4e:b6:c7:72:2f:0f:e9:9d:2d:
                    7a:12:a8:46:c1:bc:82:29:d1:e0:b1:d2:49:0f:3a:
                    57:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:D8:13:74:AF:0C:F3:65:BB:3B:BD:63:CC:41:A5:D3:5D:0A:C1:87
            X509v3 Authority Key Identifier:
                keyid:90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:33:6a:ae:80:76:a1:5c:92:8a:26:e6:df:f0:32:9a:85:a5:
         94:cd:a0:f0:44:10:5b:08:10:9c:2c:cb:9d:c1:f6:6f:ad:ff:
         1e:ed:a0:48:1d:a0:cc:9b:21:c6:43:be:42:75:90:88:42:13:
         d5:7b:8b:6a:32:d1:e5:c4:dd:a5:ea:5b:65:16:14:e4:e7:e1:
         d0:53:d6:6f:89:91:d6:4c:9c:c5:5a:5d:c9:44:c3:37:f9:04:
         0f:25:20:fd:ca:e0:9e:6a:a2:c3:fb:f9:8c:1a:79:cc:ad:1a:
         17:a8:7c:17:98:8d:96:55:79:ab:0e:1d:22:a8:78:36:24:e5:
         5b:28:67:66:29:3a:10:d0:01:f4:7a:03:7d:83:cd:2a:53:cf:
         0f:92:41:b3:7d:80:37:00:05:cb:c2:7e:6e:37:91:f1:9e:9b:
         b3:d1:0c:6a:79:49:85:c9:57:60:da:b7:ca:ce:fc:a5:b3:36:
         49:4f:76:81:ef:6b:7a:2f:0e:d9:67:16:ec:51:26:f9:82:4a:
         79:a9:cd:bd:9b:23:25:9b:03:da:83:4c:44:44:e4:a2:4c:e7:
         81:c1:05:5b:a2:56:76:7f:ee:a1:1e:29:27:5f:ba:83:8a:84:
         2e:a5:51:b3:03:c9:eb:52:76:56:c8:ef:15:3a:37:c2:03:a3:
         66:e6:8e:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ajR6WPYs41E/N1k6Hh44oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMTY0MmMwZDQ2ZjhkNGU0YzIzNGMzM2FmYmVmNWE0ODM5
YzZhMjIwHhcNMjYwNjMwMjIwMTIzWhcNMjYwNzAxMjIwMTIzWjAzMTEwLwYDVQQD
Eyg4N2Q4MTM3NGFmMGNmMzY1YmIzYmJkNjNjYzQxYTVkMzVkMGFjMTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfcRKxxI8BUQnt6jEMcTYCEha/FF
QSjL9BsZTf2ilhI2CCfuzWWwM2R64nsOKqRJ+bEKJt64SEsizG6rcn+5ZNY2lwZ6
gXmqp7rgUcciqMGr4pGtD84QqHQpA2Ne5lclt/gIx1tAu2jY+gWGOHf3ms7ld+kR
Sp8pBIAyj6Rj7wpKoivw2mrNspqi6bculnCk09Y+q/GHC8KMquwQscY0sMyx3hT4
RMlnmtPPK1OWz99QrqzsVKborIZC+46mV2sdTsyNQqyNe1aYi1vUduwQxogQZk3O
FQWlZedG6/UxvMgoT4+3JTBOtsdyLw/pnS16EqhGwbyCKdHgsdJJDzpXtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIfYE3SvDPNluzu9Y8xBpdNdCsGHMB8GA1UdIwQY
MBaAFJAWQsDUb41OTCNMM6++9aSDnGoiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mMTZiNTEtNWEyMi00ZGI0LWI4OTAt
NDMxMjViZjA5NmIxLzEva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9mMTZiNTEtNWEyMi00ZGI0LWI4OTAtNDMxMjViZjA5NmIx
LzEva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASDNqroB2
oVySiibm3/AymoWllM2g8EQQWwgQnCzLncH2b63/Hu2gSB2gzJshxkO+QnWQiEIT
1XuLajLR5cTdpepbZRYU5Ofh0FPWb4mR1kycxVpdyUTDN/kEDyUg/crgnmqiw/v5
jBp5zK0aF6h8F5iNllV5qw4dIqh4NiTlWyhnZik6ENAB9HoDfYPNKlPPD5JBs32A
NwAFy8J+bjeR8Z6bs9EManlJhclXYNq3ys78pbM2SU92ge9rei8O2WcW7FEm+YJK
eanNvZsjJZsD2oNMRETkokzngcEFW6JWdn/uoR4pJ1+6g4qELqVRswPJ61J2Vsjv
FTo3wgOjZuaO5w==
-----END CERTIFICATE-----
Generated at Wed Jul 1 04:25:58 2026 by rpki-client