Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
File:                     96wXOfUp2vTMczgkibgFl-ugf0E.mft (raw, json)
Hash identifier:          KhKP5DigF38F1rKCxcMoXjIC2S8svLu4lapryWlIRu8=
Subject key identifier:   8F:DE:9B:76:9C:C7:A3:CE:59:E6:E1:E9:3B:D7:90:BE:EB:74:7C:AB
Authority key identifier: F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
Certificate issuer:       /CN=f7ac1739f529daf4cc73382489b80597eba07f41
Certificate serial:       019F17F9146BDEA9A4EF398D0D18ADDEAB48
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
Manifest number:          0BC0
Signing time:             Tue 30 Jun 2026 10:00:27 +0000
Manifest this update:     Tue 30 Jun 2026 10:00:27 +0000
Manifest next update:     Wed 01 Jul 2026 10:00:27 +0000
Files and hashes:         1: 96wXOfUp2vTMczgkibgFl-ugf0E.crl (hash: kJkn4o644+hIFzQRAAmZzLQkMSbW9S79p4NQsUvS9Co=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 10:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:f9:14:6b:de:a9:a4:ef:39:8d:0d:18:ad:de:ab:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f7ac1739f529daf4cc73382489b80597eba07f41
        Validity
            Not Before: Jun 30 10:00:27 2026 GMT
            Not After : Jul  1 10:00:27 2026 GMT
        Subject: CN=8fde9b769cc7a3ce59e6e1e93bd790beeb747cab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:5d:bc:63:e9:da:78:03:63:a4:d7:b6:3b:2d:
                    0f:b8:31:3e:fd:52:60:43:b5:b4:3c:c8:d7:fb:e6:
                    55:f9:50:d6:4d:2e:94:16:82:55:f2:21:c5:53:01:
                    cb:e3:c4:69:2b:f3:98:fb:7b:ca:47:af:e3:84:67:
                    4b:d1:06:5c:dc:d0:4c:e2:6b:ca:e9:f9:a8:c9:66:
                    19:ac:83:61:92:db:7b:05:9c:81:4c:d2:a7:bd:b5:
                    71:db:ed:4c:b4:df:b3:86:4e:3e:4a:39:21:3b:3d:
                    9f:b6:9c:bf:20:d7:f4:0e:24:7c:28:0d:6b:8d:ba:
                    37:2f:57:86:02:b4:b5:b8:a5:c6:62:ce:f2:dc:a0:
                    cc:a6:ca:bf:4c:11:88:c1:f3:23:a2:ce:4c:02:e7:
                    cb:93:25:be:f8:8a:ae:93:51:e9:b7:cc:57:25:b4:
                    b2:21:5d:37:89:07:1e:4e:26:58:62:92:59:9f:f7:
                    e5:97:5a:72:86:7e:b7:33:bf:bb:65:b7:30:ce:93:
                    e2:d6:a1:76:7c:cb:7f:76:e7:84:2a:5d:47:ab:67:
                    ce:57:d8:2d:c9:01:43:10:03:4b:fd:20:3c:44:cf:
                    8b:44:c2:58:af:0d:46:b7:f3:a7:ad:fd:c5:74:45:
                    f9:6f:a9:e3:4d:f2:b2:c1:ca:ef:a7:2a:6d:e1:90:
                    6d:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:DE:9B:76:9C:C7:A3:CE:59:E6:E1:E9:3B:D7:90:BE:EB:74:7C:AB
            X509v3 Authority Key Identifier:
                keyid:F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:8b:16:29:b4:aa:eb:ab:a3:7c:95:90:f9:f8:da:36:71:42:
         ae:63:71:55:05:0d:75:77:db:4f:51:67:58:ba:49:af:c0:ef:
         37:d5:8c:bb:5d:47:f8:08:95:42:db:12:6d:2d:b1:f8:a0:22:
         db:98:e2:82:17:b1:27:04:44:ef:63:ad:74:5c:b9:20:64:bf:
         81:ec:2e:36:1e:eb:6e:7f:33:bb:a2:1b:5f:38:19:79:68:12:
         79:60:82:ee:79:fa:4d:8b:8b:c8:54:df:bf:54:39:d5:4f:3a:
         e2:d9:b5:11:72:9f:07:17:3f:c3:f0:d6:e3:b4:89:e8:c5:18:
         fb:db:27:58:3b:f4:32:77:29:4c:f8:c5:7f:b9:ff:28:bd:d9:
         c3:80:ad:79:a3:66:59:83:7e:a7:82:de:fc:be:96:c6:06:24:
         9b:8b:0a:c6:2f:b8:0e:5e:f8:07:ff:41:ea:6b:00:75:77:ad:
         a3:19:24:8a:a8:7b:d8:08:40:0a:72:82:ed:a0:82:2f:ee:07:
         23:84:9c:a5:8a:9b:08:33:21:7b:bc:dc:ae:d9:6e:5b:b2:93:
         7b:54:9f:d5:10:e4:70:2e:cd:60:ce:6c:eb:6b:f7:2a:ef:f8:
         75:8f:03:f1:3f:4c:ef:52:9a:a9:3c:7f:3c:ca:6f:b0:17:59:
         aa:06:09:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+RRr3qmk7zmNDRit3qtIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YWMxNzM5ZjUyOWRhZjRjYzczMzgyNDg5YjgwNTk3ZWJh
MDdmNDEwHhcNMjYwNjMwMTAwMDI3WhcNMjYwNzAxMTAwMDI3WjAzMTEwLwYDVQQD
Eyg4ZmRlOWI3NjljYzdhM2NlNTllNmUxZTkzYmQ3OTBiZWViNzQ3Y2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjF28Y+naeANjpNe2Oy0PuDE+/VJg
Q7W0PMjX++ZV+VDWTS6UFoJV8iHFUwHL48RpK/OY+3vKR6/jhGdL0QZc3NBM4mvK
6fmoyWYZrINhktt7BZyBTNKnvbVx2+1MtN+zhk4+SjkhOz2ftpy/INf0DiR8KA1r
jbo3L1eGArS1uKXGYs7y3KDMpsq/TBGIwfMjos5MAufLkyW++Iquk1Hpt8xXJbSy
IV03iQceTiZYYpJZn/fll1pyhn63M7+7ZbcwzpPi1qF2fMt/dueEKl1Hq2fOV9gt
yQFDEANL/SA8RM+LRMJYrw1Gt/Onrf3FdEX5b6njTfKywcrvpypt4ZBtMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI/em3acx6POWebh6TvXkL7rdHyrMB8GA1UdIwQY
MBaAFPesFzn1Kdr0zHM4JIm4BZfroH9BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTZ3WE9mVXAydlRNY3pna2liZ0ZsLXVnZjBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8xMjNiMjUtZmVlNC00OTBiLWJlMDAt
MGI4YTc5MmMxYjlkLzEvOTZ3WE9mVXAydlRNY3pna2liZ0ZsLXVnZjBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My8xMjNiMjUtZmVlNC00OTBiLWJlMDAtMGI4YTc5MmMxYjlk
LzEvOTZ3WE9mVXAydlRNY3pna2liZ0ZsLXVnZjBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeYsWKbSq
66ujfJWQ+fjaNnFCrmNxVQUNdXfbT1FnWLpJr8DvN9WMu11H+AiVQtsSbS2x+KAi
25jighexJwRE72OtdFy5IGS/gewuNh7rbn8zu6IbXzgZeWgSeWCC7nn6TYuLyFTf
v1Q51U864tm1EXKfBxc/w/DW47SJ6MUY+9snWDv0MncpTPjFf7n/KL3Zw4CteaNm
WYN+p4Le/L6WxgYkm4sKxi+4Dl74B/9B6msAdXetoxkkiqh72AhACnKC7aCCL+4H
I4ScpYqbCDMhe7zcrtluW7KTe1Sf1RDkcC7NYM5s62v3Ku/4dY8D8T9M71KaqTx/
PMpvsBdZqgYJvw==
-----END CERTIFICATE-----