Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
File:                     nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft (raw, json)
Hash identifier:          GCvtluSg4MYMfOZAplbJPVymhL8snMuahg2PwPlxi00=
Subject key identifier:   FA:EF:7F:EA:B3:06:A2:B9:3C:60:D5:38:F5:A2:C0:11:CD:4A:21:1E
Authority key identifier: 9F:2A:68:6B:1C:25:D4:4C:7D:BD:4D:4A:31:FE:0C:7A:FD:02:A1:2E
Certificate issuer:       /CN=9f2a686b1c25d44c7dbd4d4a31fe0c7afd02a12e
Certificate serial:       019F13AF3E4A996A662C870F3F2037FE5BE1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
Manifest number:          010F
Signing time:             Mon 29 Jun 2026 14:01:19 +0000
Manifest this update:     Mon 29 Jun 2026 14:01:19 +0000
Manifest next update:     Tue 30 Jun 2026 14:01:19 +0000
Files and hashes:         1: 1-vCuLQv8-0dOJxqABaWxM4UUc8I.roa (hash: E0Bqgi4xo21RkZJec+827sz7pg8AMyWIq6lhPjrYbo8=)
                          2: nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl (hash: 4DnUO+1Sc4z8MvpjnEhs5N3+Qt1xoxncXJCww9ddMjA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 30 Jun 2026 14:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:13:af:3e:4a:99:6a:66:2c:87:0f:3f:20:37:fe:5b:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f2a686b1c25d44c7dbd4d4a31fe0c7afd02a12e
        Validity
            Not Before: Jun 29 14:01:19 2026 GMT
            Not After : Jun 30 14:01:19 2026 GMT
        Subject: CN=faef7feab306a2b93c60d538f5a2c011cd4a211e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:5e:e5:0c:a3:7c:99:3b:09:09:59:73:80:ff:
                    e5:0e:f5:25:5d:8d:45:40:f3:bd:eb:8a:25:11:2a:
                    69:86:ac:17:cb:32:14:16:30:68:e8:33:aa:d5:e8:
                    f8:7c:36:c2:62:ad:ca:78:4e:ea:25:ff:41:01:6a:
                    ed:ac:bb:3b:51:8c:0d:39:d8:ee:f3:24:ad:ce:e5:
                    7e:ce:c9:58:bc:ad:ec:72:92:34:57:d7:74:26:34:
                    cd:8e:5d:a3:37:6c:fb:6c:87:e0:94:32:9d:0b:f6:
                    a5:e6:91:d0:14:15:bd:df:30:fb:a4:c9:29:f6:17:
                    9a:90:00:5f:c4:38:7c:5f:ae:e3:51:23:46:64:7e:
                    aa:31:da:eb:81:cb:da:2f:79:58:fd:91:ec:49:4b:
                    52:17:07:dd:1d:93:bc:f2:1c:22:ba:ff:4d:b4:61:
                    1c:cc:d3:9a:78:8f:95:0f:e8:e9:56:48:8e:0b:76:
                    7d:d0:6b:0d:fe:3d:18:b2:f2:81:5a:53:69:be:ca:
                    08:c1:34:48:e2:5a:9d:44:73:6e:b6:e8:70:f6:f6:
                    4b:1e:ee:54:ab:b6:1f:b7:1c:1b:97:4f:53:64:ad:
                    69:dd:63:cb:a4:9d:60:38:92:8c:69:aa:09:fd:85:
                    0d:5c:20:9a:4e:86:eb:d7:8d:78:bb:9e:8e:4d:8a:
                    18:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:EF:7F:EA:B3:06:A2:B9:3C:60:D5:38:F5:A2:C0:11:CD:4A:21:1E
            X509v3 Authority Key Identifier:
                keyid:9F:2A:68:6B:1C:25:D4:4C:7D:BD:4D:4A:31:FE:0C:7A:FD:02:A1:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:72:b2:c9:87:2a:34:55:b4:33:62:7f:97:53:2e:f7:12:c4:
         5b:2b:cc:62:c0:fb:66:1c:a6:f8:64:21:ad:9c:47:81:be:49:
         71:3d:31:85:c1:14:52:1c:07:5d:37:ab:20:b7:f8:b3:dd:54:
         bc:43:4d:99:c9:59:63:ee:4c:b3:e7:82:ee:ab:f7:17:69:1e:
         d2:3f:ff:9d:ce:39:bc:61:62:b2:bf:24:77:ff:35:01:e2:d9:
         ea:86:d5:f7:65:9f:c9:6e:d8:26:3f:44:fc:cc:4a:b7:b0:e0:
         37:1c:a1:0b:f1:26:02:71:5c:ed:af:93:0f:f6:19:ff:2a:51:
         43:a5:f1:81:fb:68:2c:eb:56:5b:c7:bc:9b:9d:30:15:8b:9d:
         43:8a:7b:1d:ae:cb:0d:af:17:c0:5c:8c:ec:08:76:0b:50:44:
         d5:ce:f9:fc:a3:79:50:7f:f8:b8:94:1c:33:55:92:ae:a7:47:
         f4:c9:9a:92:59:40:82:bd:72:b2:c6:5a:9f:42:c1:f0:16:ff:
         18:bf:f0:98:dc:9a:b7:58:70:59:59:c8:b2:86:6d:ca:af:45:
         63:9f:3e:61:0e:4f:57:b2:36:55:cd:b6:3d:d5:e5:29:96:f6:
         76:2a:94:4f:a0:6a:e0:5b:53:e1:77:6b:3a:b7:85:7d:17:a1:
         63:96:cf:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 16:36:04 2026 by rpki-client