Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File:                     d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier:          SvnhG/lR3qSi5KjcfC+k3ZsCuW/G1WPH6sj4g4JEX+w=
Subject key identifier:   62:C7:64:19:2A:A9:7E:20:E6:8F:1C:02:67:04:73:F8:9E:BF:2A:1B
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer:       /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial:       019F37F2B31CAADF678612BA812063B010CE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number:          0AAC
Signing time:             Mon 06 Jul 2026 15:01:20 +0000
Manifest this update:     Mon 06 Jul 2026 15:01:20 +0000
Manifest next update:     Tue 07 Jul 2026 15:01:20 +0000
Files and hashes:         1: 2aVju54fgg9bD1JRsSNN37U-9Hk.roa (hash: gQ2ZXX3Kuvxj5T+dbec4hU1fv3yACHxOQmVvGeAb560=)
                          2: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: LNEdqAJErDi4owK/lusMbeeDVOM7GJvK6/qY8BDtFbg=)
                          3: sRYXppUiSNJrW5d1MVXqJ1v0U0g.roa (hash: e8cW0JrKBdNEagEPQSlGciScba5vYX0jEPFos43/Uno=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:37:f2:b3:1c:aa:df:67:86:12:ba:81:20:63:b0:10:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
        Validity
            Not Before: Jul  6 15:01:20 2026 GMT
            Not After : Jul  7 15:01:20 2026 GMT
        Subject: CN=62c764192aa97e20e68f1c02670473f89ebf2a1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:46:0f:07:01:65:07:4b:9a:c6:08:5c:ca:06:
                    07:b8:0e:6d:b6:fe:77:ae:86:1a:ce:81:06:7c:25:
                    ad:54:6e:c6:5b:7c:7a:d9:af:cc:5e:99:eb:28:e0:
                    2e:d0:32:0b:7d:62:84:18:1e:52:65:6e:56:fc:61:
                    52:c4:8a:01:59:4d:1d:03:1f:8c:ef:4d:46:7f:c4:
                    fc:61:d3:27:98:ee:cd:9a:77:6d:34:12:d2:08:79:
                    ff:90:d8:11:9c:ca:90:59:5f:49:f1:2a:ca:26:d5:
                    50:45:aa:bb:54:a6:f7:0e:25:1c:6d:9e:a7:00:a4:
                    12:08:ab:11:3a:d3:0a:35:7d:41:7a:c0:3b:2a:ce:
                    4c:ea:04:b9:70:44:ce:e2:c7:9e:54:58:92:f2:c7:
                    e4:85:fa:89:d8:32:e7:8c:c3:18:cc:d4:e4:31:91:
                    60:ac:3d:4c:8d:4d:bd:7d:7e:9e:ba:b9:a0:17:e9:
                    fd:c9:fc:b6:ea:6a:65:94:1b:13:f8:53:ad:eb:f6:
                    50:98:51:c2:00:9d:cf:b2:d9:2c:60:d3:68:f3:5b:
                    a5:8a:8a:1b:9e:aa:d3:cd:5e:d3:ff:e9:e9:6d:8a:
                    51:c2:d0:8e:0d:2a:37:1a:93:bc:45:09:32:df:ef:
                    92:9b:43:a5:45:62:22:17:03:91:92:c0:43:c9:a5:
                    96:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:C7:64:19:2A:A9:7E:20:E6:8F:1C:02:67:04:73:F8:9E:BF:2A:1B
            X509v3 Authority Key Identifier:
                keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:c8:0a:2f:61:a3:1c:51:6a:3e:f0:94:f1:2d:d3:b9:aa:60:
         75:df:88:80:57:6a:4d:01:57:2b:d3:68:2f:ca:73:54:6e:c9:
         14:69:cd:24:3c:fe:da:9d:e7:4b:31:a5:56:a1:19:bf:0b:69:
         53:a5:9e:bf:96:ee:f8:5f:80:58:6c:38:91:bf:14:6b:8b:99:
         af:e5:67:bb:cc:1c:ff:16:d7:ca:7b:35:52:8c:48:6d:3a:69:
         6f:c9:37:7e:b4:54:b5:b6:8c:27:df:98:b7:40:27:d1:06:08:
         9f:9b:4a:be:c1:b0:8f:d6:0f:dc:e6:f8:00:b6:67:8f:3e:86:
         e1:73:c9:12:c5:a2:c7:55:68:46:00:75:e6:69:e1:9c:c0:f1:
         cd:d4:bb:6c:2b:e5:2a:57:d7:16:cd:99:e4:bb:17:2d:fe:c6:
         3f:e3:14:f0:24:84:3d:3a:7a:bc:93:8e:55:6d:61:58:52:5f:
         a6:c8:f4:4d:a5:85:27:2f:df:d1:42:d3:83:5e:5a:ce:00:cf:
         8a:b2:00:77:53:3d:0e:2c:76:bf:3a:2b:de:e4:17:f3:b8:b7:
         d9:80:a7:4f:1a:2a:f6:f1:eb:3e:af:7c:30:22:5c:b0:d4:1b:
         8e:23:3c:5a:db:eb:53:87:ab:47:77:4c:da:b7:46:3b:b3:a3:
         1d:9a:ba:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:29:57 2026 by rpki-client