Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
File:                     lvMFpB83TbAVgTN3CNHHnr6nlxw.mft (raw, json)
Hash identifier:          Kb+LrXoMSncF+n5uioujvueG7pkUIJfzo6vRNDg/EB8=
Subject key identifier:   B6:99:FA:20:EB:55:D6:2F:0A:06:34:02:44:45:2A:22:DD:AE:7B:D8
Authority key identifier: 96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C
Certificate issuer:       /CN=96f305a41f374db01581337708d1c79ebea7971c
Certificate serial:       019EB6C5BD77927992324457849E6B92C02F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
Manifest number:          07D7
Signing time:             Thu 11 Jun 2026 13:01:12 +0000
Manifest this update:     Thu 11 Jun 2026 13:01:12 +0000
Manifest next update:     Fri 12 Jun 2026 13:01:12 +0000
Files and hashes:         1: lvMFpB83TbAVgTN3CNHHnr6nlxw.crl (hash: mFUcxj/zZ1h2lWO+2Pu/PF4Ry6QUhmojEDY/k+MvdaQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 13:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b6:c5:bd:77:92:79:92:32:44:57:84:9e:6b:92:c0:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96f305a41f374db01581337708d1c79ebea7971c
        Validity
            Not Before: Jun 11 13:01:12 2026 GMT
            Not After : Jun 12 13:01:12 2026 GMT
        Subject: CN=b699fa20eb55d62f0a06340244452a22ddae7bd8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:db:6c:1c:bf:51:ce:ab:e1:cf:6d:b3:bc:d0:
                    f0:d9:26:ac:fb:68:6f:9d:bc:6f:10:ab:72:6f:47:
                    d4:26:6f:29:c0:5e:5c:a4:f9:df:16:18:2f:4e:e1:
                    5b:43:f1:c6:42:07:c2:fc:4c:b2:71:32:6e:bd:40:
                    51:b8:2f:f4:d3:f7:76:ce:1b:bb:7f:d9:b4:ee:5b:
                    64:e8:28:d2:59:19:4c:91:99:cc:fc:6c:b9:95:25:
                    42:ec:dd:db:01:39:6a:9a:fa:a6:00:ec:38:6a:ba:
                    6e:21:83:1e:cb:88:d2:63:04:07:5a:b7:1a:65:52:
                    dd:b4:4d:20:9a:6f:b2:e1:9a:b7:39:b9:bf:d3:92:
                    58:ce:c7:97:12:d0:4e:30:80:8e:99:13:d3:ca:ea:
                    10:48:e5:3b:2b:be:30:ac:a4:6d:d8:8d:7d:de:4d:
                    86:d2:b0:0c:a4:fd:f6:44:15:01:de:14:80:b8:82:
                    80:d3:0c:cc:78:d8:12:5f:a7:a8:d3:ad:76:3f:3e:
                    58:30:90:41:7f:fd:5c:49:3f:e8:73:57:b6:88:9d:
                    84:c8:96:c1:05:43:6d:30:59:d7:5b:65:7c:6d:8f:
                    06:d7:da:ec:41:8c:5b:48:93:66:57:b9:8f:be:c8:
                    01:a5:9c:89:50:b5:7a:36:90:89:56:4e:b6:da:36:
                    e4:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:99:FA:20:EB:55:D6:2F:0A:06:34:02:44:45:2A:22:DD:AE:7B:D8
            X509v3 Authority Key Identifier:
                keyid:96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:86:19:d5:e0:f2:f2:47:e4:bc:d9:c3:c3:3b:63:bc:6c:a5:
         c0:9e:c1:3a:ca:aa:d3:bd:0c:6b:a5:65:55:01:d7:b6:65:24:
         b0:ec:fa:a6:3f:a2:3e:09:f3:26:98:d9:bd:2b:4f:93:ba:84:
         13:d2:2f:b7:a9:e2:e4:31:67:53:c4:b4:ca:8f:43:d1:b7:dd:
         bb:f6:56:91:79:c4:8a:e6:a7:31:98:32:fd:04:80:e0:10:0b:
         e0:63:43:14:c8:8f:cd:58:61:03:6e:73:92:90:52:5f:e3:58:
         cb:d9:e0:43:52:3d:bc:4a:1f:a9:d9:9d:70:86:cb:6e:a0:53:
         bd:5b:62:f3:6f:ca:13:b0:80:5b:c9:21:6c:af:08:a8:7f:fe:
         02:9c:72:a9:e4:b8:1a:de:73:0d:e9:0d:6f:cf:9e:1e:ac:7a:
         0f:7a:ad:dc:fc:85:e8:93:6c:e5:9b:8e:0b:45:b2:a1:65:31:
         7a:a4:39:fe:2c:c4:48:6f:0d:b6:fb:ba:02:8b:ea:c4:0f:b2:
         70:b3:a2:16:2f:e0:00:bc:9e:fc:4d:5c:3a:24:53:f8:ab:f2:
         aa:35:45:d5:c5:e6:d3:64:96:89:c4:91:74:e1:fd:9b:cd:2c:
         0d:1d:6e:ab:43:c6:f3:60:52:52:ee:8f:64:24:52:99:06:15:
         f7:e6:66:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ62xb13knmSMkRXhJ5rksAvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2ZjMwNWE0MWYzNzRkYjAxNTgxMzM3NzA4ZDFjNzllYmVh
Nzk3MWMwHhcNMjYwNjExMTMwMTEyWhcNMjYwNjEyMTMwMTEyWjAzMTEwLwYDVQQD
EyhiNjk5ZmEyMGViNTVkNjJmMGEwNjM0MDI0NDQ1MmEyMmRkYWU3YmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldtsHL9Rzqvhz22zvNDw2Sas+2hv
nbxvEKtyb0fUJm8pwF5cpPnfFhgvTuFbQ/HGQgfC/EyycTJuvUBRuC/00/d2zhu7
f9m07ltk6CjSWRlMkZnM/Gy5lSVC7N3bATlqmvqmAOw4arpuIYMey4jSYwQHWrca
ZVLdtE0gmm+y4Zq3Obm/05JYzseXEtBOMICOmRPTyuoQSOU7K74wrKRt2I193k2G
0rAMpP32RBUB3hSAuIKA0wzMeNgSX6eo0612Pz5YMJBBf/1cST/oc1e2iJ2EyJbB
BUNtMFnXW2V8bY8G19rsQYxbSJNmV7mPvsgBpZyJULV6NpCJVk622jbk0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLaZ+iDrVdYvCgY0AkRFKiLdrnvYMB8GA1UdIwQY
MBaAFJbzBaQfN02wFYEzdwjRx56+p5ccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHZNRnBCODNUYkFWZ1ROM0NOSEhucjZubHh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8zMTA4YTMtNWI1ZC00OGQyLTg1M2It
ZjEyYjZhYzVhMmIyLzEvbHZNRnBCODNUYkFWZ1ROM0NOSEhucjZubHh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC8zMTA4YTMtNWI1ZC00OGQyLTg1M2ItZjEyYjZhYzVhMmIy
LzEvbHZNRnBCODNUYkFWZ1ROM0NOSEhucjZubHh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL4YZ1eDy
8kfkvNnDwztjvGylwJ7BOsqq070Ma6VlVQHXtmUksOz6pj+iPgnzJpjZvStPk7qE
E9Ivt6ni5DFnU8S0yo9D0bfdu/ZWkXnEiuanMZgy/QSA4BAL4GNDFMiPzVhhA25z
kpBSX+NYy9ngQ1I9vEofqdmdcIbLbqBTvVti82/KE7CAW8khbK8IqH/+ApxyqeS4
Gt5zDekNb8+eHqx6D3qt3PyF6JNs5ZuOC0WyoWUxeqQ5/izESG8Ntvu6AovqxA+y
cLOiFi/gALye/E1cOiRT+KvyqjVF1cXm02SWicSRdOH9m80sDR1uq0PG82BSUu6P
ZCRSmQYV9+Zmlw==
-----END CERTIFICATE-----