Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
File:                     rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json)
Hash identifier:          JtBNKtcCtlvOhUA6SKC2FsFu+wl6nrNfeHI3x4SPiPo=
Subject key identifier:   E5:C0:0E:5A:4B:97:F4:E1:74:51:B0:A3:9B:6A:39:3A:AD:8A:14:BB
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Certificate issuer:       /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial:       019F3DBDFEF2391F08198F14B1AFBA601874
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
Manifest number:          19BD
Signing time:             Tue 07 Jul 2026 18:01:29 +0000
Manifest this update:     Tue 07 Jul 2026 18:01:29 +0000
Manifest next update:     Wed 08 Jul 2026 18:01:29 +0000
Files and hashes:         1: 16oj0KN5oVRu5RHVQyd660OcQhs.roa (hash: TLQlSbdPdjZyztttOHY25ysKwRVnJ6KupToVN+WGfno=)
                          2: 3vf-Yp-2fomUCGxxsuFuZBkPGGQ.roa (hash: LZ4veM7bkOEXkp7bq57kS6QDZIvIWlhUv4Gp6OCzQzs=)
                          3: YbRyztzAYyU1EQ0U7vEJD7T7-GQ.roa (hash: lc8H8Or878nYqwgvLpQaR10DBBjaXOJCSgikSKNMpVE=)
                          4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: pr90WY5ruGL83IEXh6/6Im0UQiK/8UROw4JaqOAqc3I=)
                          5: z-6NzODp7V-uHJv_U1uqHFUWgdY.roa (hash: Wpr01XsM6HL09hxowv58BJM3hnt+sJz/9fzPyIg61hU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 08 Jul 2026 14:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:3d:bd:fe:f2:39:1f:08:19:8f:14:b1:af:ba:60:18:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
        Validity
            Not Before: Jul  7 18:01:29 2026 GMT
            Not After : Jul  8 18:01:29 2026 GMT
        Subject: CN=e5c00e5a4b97f4e17451b0a39b6a393aad8a14bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:ad:8d:ef:dc:ca:9d:ec:08:9d:2e:6a:e9:54:
                    4e:61:5d:27:b5:a7:51:74:f4:08:12:a1:42:ae:0c:
                    0d:15:54:c4:2d:3b:9d:c3:94:57:9a:4e:4d:89:1d:
                    89:fd:a8:cf:a8:53:f2:65:75:90:f3:b1:e6:d1:df:
                    9f:64:83:01:a6:80:51:f1:7b:e2:8a:41:5c:48:04:
                    e5:5c:16:7a:a5:1c:41:df:38:eb:0b:08:2a:ae:e9:
                    33:d2:a7:2d:c9:9d:e9:9f:6b:2d:4c:0e:89:7a:2a:
                    d9:c0:f0:c1:1a:c5:1f:22:06:58:50:b8:1b:34:6f:
                    6f:76:f2:90:a3:df:8b:43:bb:9f:9c:7b:27:b3:df:
                    cc:76:00:f7:3e:37:54:4d:88:34:b6:de:dc:04:05:
                    d9:45:66:21:25:fd:55:b0:3e:a6:3b:8e:40:1b:81:
                    bd:32:50:c3:52:a2:41:48:96:58:7e:85:54:f5:a6:
                    cc:0d:23:d5:5c:02:af:32:56:4b:25:c1:ee:d2:de:
                    be:78:26:eb:3c:36:56:5e:59:f7:07:cf:ab:51:21:
                    70:f2:3c:60:a7:44:dc:c2:df:2f:ff:27:99:83:b7:
                    e2:e1:41:cf:98:2e:91:09:d5:d6:98:67:49:78:96:
                    ad:ae:0f:72:12:90:b1:32:8f:ba:95:6f:dc:20:96:
                    91:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:C0:0E:5A:4B:97:F4:E1:74:51:B0:A3:9B:6A:39:3A:AD:8A:14:BB
            X509v3 Authority Key Identifier:
                keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:ef:6a:fd:93:be:46:4a:98:62:90:c1:f3:fd:bd:38:c7:5a:
         9a:de:30:23:6d:11:5d:a7:c6:7d:a5:98:a9:a0:69:80:10:11:
         23:06:9f:10:2f:cf:2e:f6:24:c1:48:c6:26:5c:06:54:3e:27:
         fc:a4:8e:4d:f2:72:ac:12:ff:96:21:5a:1d:5c:68:b2:b8:b5:
         b9:78:1c:f9:ff:1f:57:9d:b5:b4:8b:57:d1:45:6c:a0:d7:8a:
         a2:d7:ec:1e:cc:7a:f4:b5:fa:fa:f2:c5:e0:92:7e:8b:a6:1a:
         95:ee:de:e6:77:b7:4e:66:74:01:59:1e:fe:1c:ac:fa:db:00:
         4b:ec:4f:ae:0e:f3:0a:24:6b:78:5c:81:7c:bb:99:66:16:29:
         42:f2:12:3e:9b:b6:b7:0b:52:ef:11:c6:a8:2b:94:91:78:cf:
         eb:7f:eb:0b:3a:d4:e6:54:5c:25:e9:27:49:35:b9:82:14:14:
         13:fb:a8:0d:ef:95:30:0f:a1:ae:45:bc:8e:8a:2d:e1:d8:73:
         24:f0:0d:6f:3c:bd:18:19:ff:16:26:60:25:b9:d8:67:ec:a2:
         27:9e:9a:a0:8e:e2:d4:ee:99:7a:b2:03:f7:19:99:c1:f2:3d:
         bc:8a:83:c3:36:68:57:9d:11:a8:35:e5:31:bc:6c:34:91:f6:
         33:1c:c2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 19:44:50 2026 by rpki-client