Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
File:                     iq94tpd0pVUH3qv4xMlpQunvDSA.mft (raw, json)
Hash identifier:          On+SQkTWA8uHcgtELnif/a7elVnoAQBgQ5h335EA2j4=
Subject key identifier:   61:D6:E2:C7:0D:C6:7D:6A:33:BE:72:A1:96:E9:E1:6C:70:A2:38:B7
Authority key identifier: 8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
Certificate issuer:       /CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Certificate serial:       019F3415D1656E2EB012A3BAEFF41A84E890
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
Manifest number:          1092
Signing time:             Sun 05 Jul 2026 21:01:12 +0000
Manifest this update:     Sun 05 Jul 2026 21:01:12 +0000
Manifest next update:     Mon 06 Jul 2026 21:01:12 +0000
Files and hashes:         1: AOuKaEFuAus3hz3w0WC3j7I2mqc.roa (hash: YMOsepey7pZcM4gw70d5HgYaXkzZjfvaKQx2Aill38c=)
                          2: iq94tpd0pVUH3qv4xMlpQunvDSA.crl (hash: Gb9UMFKqzYLjKcLsez8CFdPEQV0Bqe6baOP2S6hdnU4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 06 Jul 2026 20:13:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:34:15:d1:65:6e:2e:b0:12:a3:ba:ef:f4:1a:84:e8:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
        Validity
            Not Before: Jul  5 21:01:12 2026 GMT
            Not After : Jul  6 21:01:12 2026 GMT
        Subject: CN=61d6e2c70dc67d6a33be72a196e9e16c70a238b7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:56:69:c6:88:d8:1d:b6:34:0c:07:e9:cd:8d:
                    38:47:7e:97:1b:9e:00:12:ca:d0:f4:75:f4:5e:c0:
                    19:8e:db:24:25:26:c7:80:1c:56:84:f1:26:d5:91:
                    82:f3:e4:7d:95:33:82:78:b5:eb:33:6d:a6:70:32:
                    c1:d7:fc:c5:09:b8:1b:93:61:2c:f6:8d:9e:e0:73:
                    db:a5:af:24:d7:28:51:79:8b:e9:81:ef:3d:8d:5b:
                    bd:5b:a6:ce:a9:dc:59:71:d7:50:b6:1c:0a:9e:7b:
                    17:74:1c:1c:82:1b:2e:b2:22:b5:b3:ee:ed:fc:6d:
                    ea:a6:62:9b:2c:eb:a3:16:c5:4c:7b:47:ea:56:f2:
                    f8:28:aa:a7:c8:bc:1b:93:90:2c:fc:89:dd:f3:ad:
                    d6:be:7e:06:a2:72:23:fd:1a:61:d6:38:e6:12:22:
                    2d:8c:9f:66:d0:87:ea:3d:b8:67:37:f6:c8:5d:b8:
                    17:2e:b2:96:85:9d:fa:1b:88:5c:e7:44:27:8d:5a:
                    39:ad:d9:db:67:9a:3b:5a:a5:61:46:32:5b:3b:77:
                    c8:e9:21:a7:7e:69:c2:29:87:1b:c6:19:d5:aa:fe:
                    d5:06:47:df:44:97:50:f5:07:5f:f1:8c:bd:97:3a:
                    d8:f2:d1:e7:fc:b7:98:84:d4:58:d6:32:06:94:28:
                    60:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:D6:E2:C7:0D:C6:7D:6A:33:BE:72:A1:96:E9:E1:6C:70:A2:38:B7
            X509v3 Authority Key Identifier:
                keyid:8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:5b:77:e0:09:a3:97:8a:0a:a6:71:f2:0a:3b:11:53:47:78:
         07:9c:5a:88:35:0d:c6:fb:9d:30:c4:c1:4b:96:18:64:c3:a9:
         05:92:68:43:83:e8:7f:82:cf:cc:33:99:f6:c2:03:84:22:d2:
         9a:f3:9e:d7:3c:b5:03:e9:d5:bb:00:24:70:fc:fa:50:32:17:
         08:59:4f:a2:08:ff:41:93:ed:de:85:20:73:88:b3:c7:9a:b9:
         ca:70:e9:f8:f6:d7:2c:cb:fb:f7:0b:9e:9b:c1:38:7b:bd:7a:
         cc:4f:81:b5:4d:f3:d3:b4:2f:6a:7d:25:ee:cc:43:e6:b9:d1:
         ca:c8:c2:cb:48:26:8f:62:6e:af:dc:6b:54:8c:8b:45:02:02:
         ba:8f:45:b7:c6:67:19:e7:6f:7c:b9:ab:74:1d:19:76:7a:02:
         d5:63:a8:a0:73:0e:ef:15:3d:4e:be:88:71:14:4e:6d:ea:8d:
         78:44:e8:fa:d5:39:03:e4:ce:79:65:da:3a:38:75:e8:9f:46:
         2e:62:05:fe:5c:a9:25:f2:60:8e:70:88:f3:19:6a:70:80:c9:
         33:f8:9e:e0:37:5a:d9:02:d9:17:18:3c:e7:a4:01:ff:3e:15:
         92:98:bc:61:a8:49:4a:4b:6e:f3:64:34:59:aa:3a:0d:50:e1:
         86:34:be:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 03:10:00 2026 by rpki-client