Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
File:                     KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json)
Hash identifier:          YWp43bzrE9X4xH1YVVGdodtB/lUiBgwd5XkqFeKRUEg=
Subject key identifier:   32:55:F9:49:D5:98:B4:95:EE:93:11:40:FC:8A:5A:BB:61:32:7C:7A
Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
Certificate issuer:       /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Certificate serial:       019F1B316E1728A9CAD947E7EDA0A371B6BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
Manifest number:          198A
Signing time:             Wed 01 Jul 2026 01:00:52 +0000
Manifest this update:     Wed 01 Jul 2026 01:00:52 +0000
Manifest next update:     Thu 02 Jul 2026 01:00:52 +0000
Files and hashes:         1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: fdMUwKaC8+y3NWVz0Z1RW1Ta2EuZLnY0UpUvy5fcjhg=)
                          2: PHk_vBlGAMsxS-MnrekIlyqTI-4.roa (hash: DfXZCDYGxK8xf8JFedzWYQFF9T3pi36VwRR9xAmGXEk=)
                          3: weNArfvB6aIBhliGWgRmku9NM4k.roa (hash: 5cqXzpfVcXD0jTHKSY2NMKnFRtchriM7ulhLtiSinGQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 23:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:1b:31:6e:17:28:a9:ca:d9:47:e7:ed:a0:a3:71:b6:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
        Validity
            Not Before: Jul  1 01:00:52 2026 GMT
            Not After : Jul  2 01:00:52 2026 GMT
        Subject: CN=3255f949d598b495ee931140fc8a5abb61327c7a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:0f:bd:a9:bd:57:1c:f6:3d:9f:06:c0:95:9d:
                    10:11:46:1a:7c:28:db:7f:aa:be:d0:1e:9d:cb:a3:
                    5d:d3:f8:66:71:8e:d2:65:ed:f6:d0:6f:cc:d3:02:
                    c4:a1:1d:4e:27:c0:1d:84:10:88:d1:48:96:e5:0d:
                    c1:9e:8f:ca:8d:29:bf:d7:e8:a3:2a:9b:17:a2:17:
                    eb:b7:68:ce:3d:d7:19:28:1f:37:e6:74:8c:a6:54:
                    e4:5b:8f:33:37:d7:e6:67:9a:ef:3a:29:d7:49:ab:
                    69:a1:e9:d1:e5:d9:f9:42:aa:5d:aa:bb:ac:90:0f:
                    d9:8f:10:12:ad:9d:80:39:cb:37:0f:9e:ee:fd:ba:
                    2c:8a:31:2d:cb:3d:bd:b7:a5:c5:c1:83:7c:ed:fa:
                    6a:c3:05:5b:db:18:01:e5:d7:f2:2d:7c:d0:2f:1b:
                    69:00:98:f5:c9:0c:9b:d8:6e:03:45:10:d9:1c:2f:
                    97:8c:18:a1:f6:f1:0b:62:30:9a:a1:b2:3c:c1:5d:
                    cb:bb:e5:8f:62:e3:03:18:72:b0:3a:c6:46:d3:54:
                    9a:b3:ad:51:7f:af:78:5f:fb:8e:a4:04:d5:3b:93:
                    30:7e:f3:cb:44:0c:6a:f0:f9:4d:8a:f6:9b:de:93:
                    ae:10:fe:a1:9e:01:22:74:04:74:f6:33:47:26:ca:
                    01:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:55:F9:49:D5:98:B4:95:EE:93:11:40:FC:8A:5A:BB:61:32:7C:7A
            X509v3 Authority Key Identifier:
                keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:48:7f:5c:3e:1e:5b:ce:e4:72:6b:7b:8f:74:70:fe:72:93:
         ac:15:14:0a:2a:12:b7:3e:0a:6a:20:53:f0:78:28:3c:ec:91:
         a6:f2:5d:5f:16:58:38:38:9e:5e:40:99:6d:06:60:f2:5f:c3:
         18:33:b3:62:93:ed:ab:a2:2f:eb:f4:a3:68:50:88:88:d7:3d:
         af:ef:ef:a3:44:65:36:c4:80:a1:54:ea:9f:8e:7a:32:91:00:
         68:53:fe:4a:21:59:b5:64:f6:34:18:27:9d:3c:11:50:6f:49:
         39:18:f3:4c:c1:a1:fa:7f:ea:35:8e:d9:8f:78:c8:48:73:36:
         82:c6:24:39:c6:14:cd:e5:20:62:80:fa:db:ed:47:a9:27:09:
         93:3e:05:65:e7:00:ad:f2:f1:50:8d:09:8f:d2:fc:2e:d5:ad:
         96:2a:e1:87:00:b6:8d:e7:db:26:de:70:93:ab:63:8d:82:6e:
         81:a9:31:58:41:74:b3:62:2c:e3:02:90:2c:ed:a8:b5:d1:b8:
         71:95:4e:d6:7d:39:81:39:8a:80:46:79:74:36:30:e9:2c:dd:
         8f:2d:01:15:96:9a:49:b5:8a:87:0c:19:35:12:f3:8d:27:1d:
         aa:4a:df:f0:06:29:0e:aa:3f:52:11:77:ed:27:3d:fd:3c:18:
         89:a6:f6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 09:02:53 2026 by rpki-client