Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File:                     HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier:          KWhKXdi1yXheOfzkdEV9BlS8eeAsnT7GfcMDxEkX75c=
Subject key identifier:   37:8E:E1:C5:CF:03:2E:04:76:C5:1F:10:06:32:01:15:F2:84:1B:86
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer:       /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial:       019EB732BCA5E2CCDF07A1911A283324FB18
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number:          056C
Signing time:             Thu 11 Jun 2026 15:00:16 +0000
Manifest this update:     Thu 11 Jun 2026 15:00:16 +0000
Manifest next update:     Fri 12 Jun 2026 15:00:16 +0000
Files and hashes:         1: 1-eF7e7FBTv1kNZvAqKgKcchP_r8.roa (hash: NJzA8zp4PiibAViDgdZjRywfinrsmcRR8mpxvA7kUN8=)
                          2: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: luJm0WY3SvAUC3ZsfMXvpRtx+hrPbSEbxWqTfhMYXFw=)
                          3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 15:00:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b7:32:bc:a5:e2:cc:df:07:a1:91:1a:28:33:24:fb:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
        Validity
            Not Before: Jun 11 15:00:16 2026 GMT
            Not After : Jun 12 15:00:16 2026 GMT
        Subject: CN=378ee1c5cf032e0476c51f1006320115f2841b86
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:52:0e:08:9c:c6:21:a8:f8:e5:57:8f:31:11:
                    be:ff:4d:28:dc:ab:50:4b:89:d0:cc:9e:32:29:ee:
                    55:76:df:2e:99:89:26:68:ad:fe:40:a9:a9:e8:5c:
                    be:bc:f8:63:79:5e:7a:ed:cd:9b:fe:cd:a7:6a:b2:
                    d6:6f:e6:bf:39:61:e3:6c:7b:30:fe:af:cb:b8:46:
                    86:72:9b:ea:e9:f4:83:eb:e5:6f:a7:8b:ed:85:2d:
                    7b:3d:81:3b:41:32:1e:eb:76:cb:87:28:f9:c2:20:
                    1a:2e:1b:80:04:0e:76:1a:c1:7e:20:11:a1:af:22:
                    bd:7e:4f:ef:2c:8a:59:cd:f2:a7:20:54:92:a6:7b:
                    44:b1:8d:91:ac:2c:3f:36:eb:4f:95:59:bb:48:01:
                    2c:99:ac:53:e9:d8:d7:6f:47:77:2f:20:48:0e:1d:
                    b6:5f:aa:40:c4:fe:c6:92:39:7f:4a:7a:57:a2:17:
                    5e:8e:51:4d:ae:5f:83:9a:10:4a:f2:7d:f8:1f:c0:
                    5a:ed:b3:bf:de:77:df:06:8c:c0:ec:2d:e6:12:7f:
                    a1:1e:aa:36:6b:e2:d6:58:32:94:b9:2c:13:08:6b:
                    5b:93:5e:44:4e:2d:7d:d9:d0:0c:61:2b:ff:9a:0a:
                    86:7e:c7:97:a1:8b:27:ad:6d:a9:04:c7:ae:fa:fb:
                    75:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:8E:E1:C5:CF:03:2E:04:76:C5:1F:10:06:32:01:15:F2:84:1B:86
            X509v3 Authority Key Identifier:
                keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:25:de:5e:94:ae:aa:8c:ed:28:46:3c:e1:65:fc:80:a2:f9:
         c6:af:bf:10:d3:17:7b:59:be:46:51:93:b7:99:0e:b4:87:24:
         84:7b:37:4b:99:0e:a5:0f:a8:e0:85:11:fb:d2:e3:8f:2d:3e:
         6d:80:f1:87:f5:29:85:3a:fe:63:ed:3c:0f:0e:68:a7:e7:c5:
         39:5f:3c:f4:11:c5:02:75:c6:c7:bb:42:7b:e3:33:66:ee:0e:
         f0:aa:25:2a:13:68:64:11:a5:5e:5c:e9:76:3c:d4:2e:b3:05:
         8c:99:18:e5:c3:e9:fb:4f:4a:ac:49:c9:0b:d3:60:71:71:c8:
         19:c5:eb:ce:c3:b0:38:df:99:78:22:db:53:5c:e0:11:96:5e:
         2f:69:d4:cc:13:d1:3e:36:0c:01:50:21:82:04:47:e5:ea:26:
         24:90:a7:1d:5b:26:b1:26:25:25:91:63:de:b1:ff:5d:e4:ca:
         a8:18:73:d1:6a:bf:c8:f9:9f:10:da:8c:a8:6d:c6:81:73:df:
         c2:71:a6:f3:a1:b7:e0:1d:e9:8f:89:ec:5c:75:3d:f1:55:9e:
         16:99:ee:3c:4e:be:81:f1:7f:fd:c0:35:84:31:75:c9:d6:ef:
         40:94:67:5b:d1:8a:3e:dc:2a:1b:1a:66:1a:b5:34:46:80:60:
         00:a0:d8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:32:58 2026 by rpki-client