Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File:                     PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier:          1q5eGxVshipkjiHTdNht2Cf9tVZjKcdPgz8LWAnH1k8=
Subject key identifier:   6F:43:EC:E8:07:B9:17:E1:14:A2:21:71:FC:61:15:93:C1:D9:DC:62
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer:       /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial:       019F71E1F5DD93EDF6DAEBE9A9DB9C663ADA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number:          0DBE
Signing time:             Fri 17 Jul 2026 21:01:01 +0000
Manifest this update:     Fri 17 Jul 2026 21:01:01 +0000
Manifest next update:     Sat 18 Jul 2026 21:01:01 +0000
Files and hashes:         1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=)
                          2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=)
                          3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: Rzfxkgs6I9asxm/F7U+8krCIZyzOfJk8QKoPEAU+zSc=)
                          4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=)
                          5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Jul 2026 17:00:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:71:e1:f5:dd:93:ed:f6:da:eb:e9:a9:db:9c:66:3a:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
        Validity
            Not Before: Jul 17 21:01:01 2026 GMT
            Not After : Jul 18 21:01:01 2026 GMT
        Subject: CN=6f43ece807b917e114a22171fc611593c1d9dc62
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:e2:ca:6f:d7:f0:ff:7d:17:14:cf:67:2c:91:
                    cf:30:40:2f:a7:84:3a:06:8b:8f:5f:09:5a:9b:3c:
                    bf:cf:0a:27:05:12:c5:37:6f:ec:06:f6:07:b9:9e:
                    bc:ff:94:54:a7:f2:12:c2:80:cc:79:45:cb:d9:95:
                    52:13:6e:ec:95:95:49:d0:c1:a8:39:39:60:87:00:
                    21:6a:65:b2:30:1d:fd:cc:47:eb:f4:fe:4e:84:da:
                    b0:2b:81:2c:b3:7c:63:22:a5:47:94:19:89:35:2a:
                    0c:91:99:a5:50:48:d6:6c:e2:db:b5:fe:21:c7:11:
                    13:0a:dd:7c:4f:ed:d2:f6:09:c5:09:53:2d:12:63:
                    cd:a0:bc:e4:8c:ee:a1:eb:57:4e:b4:aa:98:d4:df:
                    5e:f8:a0:69:b5:1e:b7:a6:69:7e:0d:50:e8:c8:3d:
                    57:28:55:4a:fd:dc:60:b4:34:dc:eb:3a:23:f0:07:
                    dd:ad:a1:9d:b2:52:dc:f2:80:09:54:25:85:00:57:
                    00:25:85:83:66:ad:7f:cc:f0:1a:ec:87:30:90:fb:
                    4f:18:4f:ee:ea:ba:8e:18:4b:15:8b:26:ea:5f:51:
                    04:53:b8:fb:38:5e:e1:bf:9b:6c:86:79:1c:3f:32:
                    3a:37:19:93:6e:0e:53:fa:ac:e7:b2:dc:df:dc:7c:
                    97:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:43:EC:E8:07:B9:17:E1:14:A2:21:71:FC:61:15:93:C1:D9:DC:62
            X509v3 Authority Key Identifier:
                keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:92:22:c0:50:34:75:e2:18:57:f7:92:15:cd:56:98:2b:fc:
         69:39:f6:d8:81:e2:5f:6b:e2:b8:6a:2a:e5:18:6d:45:2e:77:
         7a:be:47:35:c9:54:6f:9c:39:30:cf:72:a9:4b:31:39:f4:62:
         60:b6:9d:f3:ae:16:4d:a3:31:4c:53:67:64:aa:30:1a:88:c4:
         11:a7:7d:dc:74:0f:2f:37:26:17:7c:40:99:41:24:86:94:90:
         24:ce:ba:37:ca:37:ba:0b:3d:02:7e:04:a6:37:c9:4a:4d:d9:
         ca:2b:32:9e:c7:e6:91:b7:c6:22:cb:f3:b7:5c:cc:dd:f4:27:
         02:eb:ed:b7:32:c3:bd:f4:48:b9:a0:89:ad:0e:0b:51:e5:92:
         43:2e:30:4c:e7:11:a8:29:64:7f:9c:d7:eb:1f:eb:1e:a1:0e:
         b7:b5:bc:79:a1:5a:94:ce:e1:b7:3b:3c:1e:f6:96:56:f0:6d:
         63:a2:35:f4:3f:fc:e9:99:15:f9:02:dd:67:3e:af:ab:7d:4a:
         c1:4f:0f:5f:d3:54:ba:ad:27:97:40:19:22:c9:81:07:be:15:
         d2:5f:18:43:2e:6e:91:e1:18:66:59:8d:7d:19:75:1f:cc:06:
         7b:75:c7:f7:f0:39:6c:7c:99:45:13:b1:de:ab:8c:6a:61:e1:
         6b:2e:13:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:28:46 2026 by rpki-client