Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
File:                     1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft (raw, json)
Hash identifier:          QL1kvR8X4EQ/d5XY5RgA7TdZEOEu5sLt1C8syCaGcvk=
Subject key identifier:   78:95:E9:B7:38:DF:A8:68:19:25:4F:F7:3F:99:84:63:BD:77:5C:FB
Authority key identifier: D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21
Certificate issuer:       /CN=d60ce3443860a7f70d43350776909a4810a48621
Certificate serial:       019F19435BA57A2EB58F4C4432EE4972E2E1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
Manifest number:          0ECD
Signing time:             Tue 30 Jun 2026 16:01:12 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:12 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:12 +0000
Files and hashes:         1: 1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl (hash: eYEUTWiKzNS2Wz9Hglj11XhpByNqMDU3boVGs9gXAY4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:5b:a5:7a:2e:b5:8f:4c:44:32:ee:49:72:e2:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d60ce3443860a7f70d43350776909a4810a48621
        Validity
            Not Before: Jun 30 16:01:12 2026 GMT
            Not After : Jul  1 16:01:12 2026 GMT
        Subject: CN=7895e9b738dfa86819254ff73f998463bd775cfb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:eb:6f:a1:4e:55:5c:2f:7d:42:45:09:68:54:
                    6f:60:32:43:ba:a2:a8:ba:13:c9:63:45:70:53:73:
                    bc:ec:a7:de:33:e9:d5:ba:5b:e6:68:ab:8c:fe:9d:
                    54:67:90:91:84:41:7c:3b:64:52:cf:24:14:bb:6d:
                    d4:e8:38:06:2a:50:d0:5c:78:74:33:64:28:5b:f0:
                    6a:66:06:46:b3:24:97:9b:33:78:55:86:b0:e7:46:
                    fb:28:99:bb:fb:14:80:62:4a:53:25:cd:60:c7:b4:
                    4d:98:53:44:b1:48:6c:3b:d9:de:4a:de:cd:24:bd:
                    00:e6:4d:0a:a3:8d:7e:71:35:2e:e3:62:bc:b2:37:
                    4f:37:e4:fc:80:72:1d:db:f6:3b:b3:63:8b:65:ac:
                    86:c8:0b:91:67:ee:b0:b9:2e:8b:a5:bc:5c:b9:27:
                    c8:9e:6a:c0:4c:da:8c:55:b3:46:a6:3a:63:18:7f:
                    03:0e:c6:b9:f3:bc:a9:85:c0:7a:43:f1:a8:ba:4d:
                    a0:32:b2:55:c7:d8:75:cb:f0:51:14:72:2f:fd:cb:
                    6f:0b:27:16:33:30:58:f7:d3:50:bd:bb:2f:d4:d8:
                    7f:54:b1:4f:ab:67:62:9d:51:72:cd:c1:c2:f2:25:
                    f9:37:57:92:fe:13:9b:26:e5:5a:9d:e6:19:a8:34:
                    18:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:95:E9:B7:38:DF:A8:68:19:25:4F:F7:3F:99:84:63:BD:77:5C:FB
            X509v3 Authority Key Identifier:
                keyid:D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:2d:c9:ac:0a:88:ac:0a:2a:92:70:d9:ed:7d:aa:ac:bc:2c:
         a5:80:98:d0:e6:bc:20:26:5c:2c:fa:b1:28:70:44:94:1c:82:
         f6:09:97:d1:69:6d:aa:f8:60:9b:75:81:57:f0:41:34:87:b8:
         ff:40:81:86:6b:bb:bd:3c:f9:de:86:07:0b:35:4f:16:b5:51:
         bd:52:aa:58:1b:89:ba:9f:df:de:27:4b:c2:3e:82:7a:b6:68:
         79:df:d1:9d:b6:ad:ec:23:4a:be:27:b9:9d:7a:ea:4b:03:69:
         ce:13:83:8c:14:fa:29:30:e5:8c:8c:ad:94:43:a6:a5:5a:8b:
         c2:79:e1:c3:9e:7e:7a:66:62:1d:04:be:d0:71:9f:e9:7a:37:
         7e:13:a9:4f:ee:e8:37:b7:9e:cb:13:e0:2b:70:e4:00:81:f8:
         f3:1d:9b:02:b4:f2:75:64:cd:16:22:f0:5c:da:83:bb:b2:8e:
         93:5c:8c:5e:4f:0b:83:53:68:c7:d9:34:e8:04:88:99:87:a3:
         ea:56:4e:89:6c:38:53:c6:a8:83:d1:bd:68:bb:3f:5d:bf:d3:
         79:28:da:c8:0d:57:d6:da:89:29:a0:f1:ae:6a:9d:b8:b5:da:
         96:49:17:62:0d:2e:d2:fa:4c:63:30:00:7d:e0:75:7a:19:4e:
         de:5a:db:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ1ulei61j0xEMu5JcuLhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MGNlMzQ0Mzg2MGE3ZjcwZDQzMzUwNzc2OTA5YTQ4MTBh
NDg2MjEwHhcNMjYwNjMwMTYwMTEyWhcNMjYwNzAxMTYwMTEyWjAzMTEwLwYDVQQD
Eyg3ODk1ZTliNzM4ZGZhODY4MTkyNTRmZjczZjk5ODQ2M2JkNzc1Y2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7+tvoU5VXC99QkUJaFRvYDJDuqKo
uhPJY0VwU3O87KfeM+nVulvmaKuM/p1UZ5CRhEF8O2RSzyQUu23U6DgGKlDQXHh0
M2QoW/BqZgZGsySXmzN4VYaw50b7KJm7+xSAYkpTJc1gx7RNmFNEsUhsO9neSt7N
JL0A5k0Ko41+cTUu42K8sjdPN+T8gHId2/Y7s2OLZayGyAuRZ+6wuS6LpbxcuSfI
nmrATNqMVbNGpjpjGH8DDsa587yphcB6Q/Gouk2gMrJVx9h1y/BRFHIv/ctvCycW
MzBY99NQvbsv1Nh/VLFPq2dinVFyzcHC8iX5N1eS/hObJuVaneYZqDQYRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHiV6bc436hoGSVP9z+ZhGO9d1z7MB8GA1UdIwQY
MBaAFNYM40Q4YKf3DUM1B3aQmkgQpIYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWd6alJEaGdwX2NOUXpVSGRwQ2FTQkNraGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8wODY0YzMtODYwYi00MWMwLTk0MTct
ZGFmZmU1MmI5ZjBkLzEvMWd6alJEaGdwX2NOUXpVSGRwQ2FTQkNraGlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8wODY0YzMtODYwYi00MWMwLTk0MTctZGFmZmU1MmI5ZjBk
LzEvMWd6alJEaGdwX2NOUXpVSGRwQ2FTQkNraGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMS3JrAqI
rAoqknDZ7X2qrLwspYCY0Oa8ICZcLPqxKHBElByC9gmX0Wltqvhgm3WBV/BBNIe4
/0CBhmu7vTz53oYHCzVPFrVRvVKqWBuJup/f3idLwj6CerZoed/Rnbat7CNKvie5
nXrqSwNpzhODjBT6KTDljIytlEOmpVqLwnnhw55+emZiHQS+0HGf6Xo3fhOpT+7o
N7eeyxPgK3DkAIH48x2bArTydWTNFiLwXNqDu7KOk1yMXk8Lg1Nox9k06ASImYej
6lZOiWw4U8aog9G9aLs/Xb/TeSjayA1X1tqJKaDxrmqduLXalkkXYg0u0vpMYzAA
feB1ehlO3lrbIA==
-----END CERTIFICATE-----