Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
File:                     nHPZRT--37gMRUO7Up_DMMH4wc4.mft (raw, json)
Hash identifier:          2LU/pIZBDULViPjWKnY+hua/rpzAtKwakMHBSJy0Bsk=
Subject key identifier:   A6:52:2F:7B:53:02:B0:D0:46:63:78:40:3F:33:BB:26:25:0E:9C:7C
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Certificate issuer:       /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial:       019F30A6A1FB1CF73B2568815C6959FB9458
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
Manifest number:          0F4C
Signing time:             Sun 05 Jul 2026 05:00:54 +0000
Manifest this update:     Sun 05 Jul 2026 05:00:54 +0000
Manifest next update:     Mon 06 Jul 2026 05:00:54 +0000
Files and hashes:         1: MuR4aEGFWe7wl3Vh052cNYMzM2g.roa (hash: eJ30VAn7X7leuPQPqFb0aOSFx4e32kdxI4xgek8Nhr0=)
                          2: WAj8AC6cZrbept-Nm9z-z_zHUD4.roa (hash: P3ihNDztpQFazGFe+CWzMgjczagukwmAc6Qo3EggvCQ=)
                          3: gGP5a4m9bqAKT7-QVYaan-KR00I.roa (hash: mPbwa7sA/SB0OJubO3AAY0Oa/zRc0RaIx2vSZkJEB4w=)
                          4: nHPZRT--37gMRUO7Up_DMMH4wc4.crl (hash: hTPl+vTzEq+96l7OzwXNfItNBoopXW3HCJQ4RSCM/cA=)
                          5: piHfYItCMRZJoIEsDJ__Qf2pGaA.roa (hash: RezZZPRB2YkkE5M8DiOZbDxcJLsNR31nGSqMJCGciug=)
                          6: rkgYpLaSooeAeaPc6HeDMNwsGSE.roa (hash: dwK5xzYUrSSoaqAtejdAj3gsVAadyZPLwc0zD6SmFNo=)
                          7: xG7DXHJDVjNk9kPfRoD--_ZHu-c.roa (hash: i8nmPH8ECpbJgdaxdjOGq7PZ1dfP/YgPF/IPT9Hb4to=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 06 Jul 2026 05:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:30:a6:a1:fb:1c:f7:3b:25:68:81:5c:69:59:fb:94:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
        Validity
            Not Before: Jul  5 05:00:54 2026 GMT
            Not After : Jul  6 05:00:54 2026 GMT
        Subject: CN=a6522f7b5302b0d0466378403f33bb26250e9c7c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:5a:32:bc:9a:d4:a7:fb:b7:de:a0:99:d6:15:
                    1a:92:38:3f:61:68:5f:7b:7f:c6:e8:d3:54:9a:d1:
                    bb:a1:91:e6:13:59:ff:db:0f:da:b5:39:93:e7:b0:
                    fd:aa:b5:fc:ff:f3:25:28:11:0e:9c:a2:00:6f:c1:
                    94:fe:e0:0c:9c:b1:af:11:4c:cc:bb:fb:78:00:98:
                    43:67:7d:6a:3b:9d:28:5f:2e:16:0d:a3:ea:f3:13:
                    5f:b6:9b:5a:aa:88:24:4e:a7:f8:a2:47:3c:7f:7c:
                    92:6d:05:40:97:2b:8c:2b:a6:b6:e6:ec:f8:41:97:
                    4d:51:6d:94:18:6d:77:0f:a6:8c:d3:4a:71:ee:0b:
                    7f:36:be:cd:1d:24:3a:e0:92:79:90:e8:6b:d4:93:
                    d7:b2:bd:f9:67:c7:4b:a0:ac:3c:16:59:c2:3a:0d:
                    f0:5f:bf:7f:be:5d:70:49:3c:cd:5f:ec:dd:b1:d6:
                    65:8b:47:9c:a0:24:95:fc:d3:10:19:ed:ee:70:36:
                    67:b3:59:be:7e:de:04:34:47:a3:61:bf:df:61:4c:
                    67:04:b4:01:76:46:27:43:98:3a:25:bd:d1:45:85:
                    e0:c9:9c:b8:09:95:70:d2:23:dc:2a:e2:c2:47:bf:
                    ab:62:8c:9a:b4:05:52:ef:22:30:98:7d:b9:a7:d7:
                    16:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:52:2F:7B:53:02:B0:D0:46:63:78:40:3F:33:BB:26:25:0E:9C:7C
            X509v3 Authority Key Identifier:
                keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:1c:56:f9:ee:4e:c8:ed:8f:ca:c0:84:aa:17:ef:8e:a0:74:
         0f:a4:8d:41:1a:47:7b:f2:0c:29:ad:be:bc:41:fb:bd:d1:2e:
         38:ef:2a:c3:34:7a:ee:12:e2:33:c0:f6:45:af:35:a8:0b:8b:
         a2:85:00:f5:0d:9b:35:ca:a2:b4:bf:09:24:62:a2:56:83:ee:
         72:69:9f:4e:fd:a1:17:25:09:52:2f:7e:82:75:1a:5a:9a:72:
         36:51:ac:ea:11:4d:f3:51:f6:41:f8:2c:3d:25:88:c1:68:46:
         a0:8a:88:85:29:7e:5e:f6:64:b2:d1:d3:63:92:09:2f:07:8b:
         3e:5b:1b:ff:83:0e:0a:a0:a7:fc:b8:d6:7c:50:8c:fc:30:d9:
         33:cc:0e:dc:56:d8:90:01:bd:91:3b:d5:f4:a7:2f:89:7d:48:
         c8:7e:ae:70:c7:51:5d:89:1c:74:58:0b:da:4c:c0:ae:a1:d3:
         58:3a:93:a5:c6:5a:9a:88:17:46:7c:79:2c:b6:e8:83:9d:2f:
         dd:3c:66:08:3e:b6:27:07:52:15:ed:9b:50:ac:71:c0:8f:1e:
         25:f6:6b:2b:07:0f:83:36:74:f8:5d:26:ae:13:ff:ef:5e:c3:
         bc:da:5a:71:a8:5a:18:2b:ed:39:d5:05:29:9d:f6:7a:7a:02:
         c6:6a:2e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:35:37 2026 by rpki-client