Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
File:                     _H1Kt3YauiTzPVtt-8J8q3OLte4.mft (raw, json)
Hash identifier:          szD4JWws7AfLRaE8l7Gj1m/7jJKQT3aP6wzolI5cllQ=
Subject key identifier:   76:76:A5:8C:9D:77:C8:68:BC:F6:32:AF:5F:0D:24:82:44:91:A5:2C
Authority key identifier: FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
Certificate issuer:       /CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Certificate serial:       019F3A4EEA8A6AA7F7EB6CE7C16477938D7F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
Manifest number:          1638
Signing time:             Tue 07 Jul 2026 02:01:18 +0000
Manifest this update:     Tue 07 Jul 2026 02:01:18 +0000
Manifest next update:     Wed 08 Jul 2026 02:01:18 +0000
Files and hashes:         1: _H1Kt3YauiTzPVtt-8J8q3OLte4.crl (hash: c+OSqb03qXwE07Q06KljhxqFFxPYWgNy5fFKS0jeQFA=)
                          2: pIzu0UPpsP8clP4GJvMQ5mOsgdU.roa (hash: cY4H2iigWEWrWAaGXnc1Tjbm637H9ISvb9VWaDHjJoE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 08 Jul 2026 02:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:3a:4e:ea:8a:6a:a7:f7:eb:6c:e7:c1:64:77:93:8d:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
        Validity
            Not Before: Jul  7 02:01:18 2026 GMT
            Not After : Jul  8 02:01:18 2026 GMT
        Subject: CN=7676a58c9d77c868bcf632af5f0d24824491a52c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:ac:a9:3c:35:5a:aa:7d:dc:05:41:1c:fb:2e:
                    e3:0d:77:3d:98:13:d8:01:a0:66:55:53:ea:a5:1a:
                    6c:82:8f:08:37:fa:fb:b9:8d:a2:95:b9:63:75:77:
                    cd:0d:44:a9:2b:d3:81:e3:04:d6:d0:ea:81:78:a6:
                    47:96:ab:7c:2e:64:93:28:6d:8a:0b:d2:4b:5f:4a:
                    c9:1a:58:97:ad:8e:db:1e:c8:62:7f:e6:2f:18:39:
                    01:ce:fc:16:a8:e1:35:c5:00:b7:d5:ef:9a:d4:01:
                    06:a0:be:fc:46:7d:91:5a:eb:60:7a:7a:79:4e:99:
                    dc:63:b8:e2:3b:76:ae:ef:5a:b3:85:49:1a:01:c0:
                    2b:cb:24:24:5d:be:54:67:10:1c:34:e5:ca:17:16:
                    0f:74:2d:7f:42:0a:48:11:e2:08:e1:5e:eb:3f:4e:
                    d6:c3:b9:67:92:da:c3:a1:73:e9:b1:ed:0c:f3:c8:
                    db:fb:2e:bc:50:42:57:42:03:85:03:fe:55:dd:d8:
                    0b:38:8c:e4:e6:30:20:34:70:1b:f0:61:19:be:22:
                    4a:39:2e:b3:f3:e5:27:c7:4f:df:48:b5:c8:5a:ea:
                    ab:18:f9:1f:9d:74:9c:8e:20:a7:ed:52:44:78:b5:
                    a0:71:38:00:fc:c3:fc:8c:55:8b:a3:27:02:7e:33:
                    74:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:76:A5:8C:9D:77:C8:68:BC:F6:32:AF:5F:0D:24:82:44:91:A5:2C
            X509v3 Authority Key Identifier:
                keyid:FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:17:d0:97:c4:74:89:49:73:16:0a:4e:ca:32:7a:02:9c:c8:
         d9:c9:98:66:8b:20:8c:ce:39:73:45:71:93:23:e8:c1:ee:a0:
         34:4e:0a:80:84:15:12:e2:ef:29:05:de:35:ea:b3:f2:c7:06:
         f2:5f:ef:74:d9:a1:bf:b8:86:04:27:1f:2a:42:d4:f8:c0:14:
         03:8e:25:90:fc:24:39:86:7a:4c:1c:17:3f:d0:0e:94:92:94:
         62:ec:73:03:aa:a1:75:d0:78:60:d7:b1:62:ce:b4:24:08:3a:
         1d:c1:54:0a:43:c2:de:42:03:24:82:29:fc:3c:a3:1f:1a:d1:
         d1:e2:e3:be:b8:69:f0:33:01:b2:01:6f:e4:1a:e9:3d:c7:98:
         da:2a:b2:70:26:52:48:1c:52:b2:f5:f9:2c:89:75:15:11:be:
         74:3b:2e:11:9e:5d:d8:b9:26:2b:2a:d8:42:8e:8f:83:58:86:
         d5:53:d1:77:9b:6b:39:11:73:3c:7b:c3:ee:81:c2:e5:d2:53:
         e9:b8:29:de:2a:b4:f6:a2:f8:30:f0:5c:a3:df:a0:06:28:2e:
         16:9b:96:37:c8:b4:ff:91:dd:3b:2b:06:75:77:e8:e9:76:7e:
         4c:40:4a:54:c0:f8:7d:e1:cb:90:a3:4e:c5:80:a8:18:26:b3:
         1f:0f:68:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 10:46:01 2026 by rpki-client