Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
File:                     iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json)
Hash identifier:          U/gcJypgQYQuuR0UvJt2HvmivblvOcaHf/OankwYFzk=
Subject key identifier:   29:DB:60:D9:68:16:9F:68:66:41:04:8B:C3:16:55:2F:11:59:77:5A
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Certificate issuer:       /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial:       019F4E0CD6575AF83658164D785CB6AB63C3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
Manifest number:          19A5
Signing time:             Fri 10 Jul 2026 22:01:31 +0000
Manifest this update:     Fri 10 Jul 2026 22:01:31 +0000
Manifest next update:     Sat 11 Jul 2026 22:01:31 +0000
Files and hashes:         1: XCD8aXlAzGnzxXRVOLV38VoENzs.roa (hash: nXyOSXVfXWMbU4dphXnH7dDUeGh2mNE9IwSEdv2yiZs=)
                          2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: o2R1lXyLIxfiyoeiyU3WEqTOaWWIATjKmG8ebiOenIw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 11 Jul 2026 22:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:4e:0c:d6:57:5a:f8:36:58:16:4d:78:5c:b6:ab:63:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
        Validity
            Not Before: Jul 10 22:01:31 2026 GMT
            Not After : Jul 11 22:01:31 2026 GMT
        Subject: CN=29db60d968169f686641048bc316552f1159775a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:45:6e:70:66:25:0f:6f:79:b7:2b:9f:2b:a9:
                    bb:98:62:23:3a:a8:32:ab:25:b2:94:ea:d9:54:c9:
                    07:21:dd:5f:ee:8d:22:03:43:d8:99:fb:25:82:44:
                    af:af:a3:df:e6:2a:51:1d:90:6b:77:db:e7:21:fe:
                    19:12:65:9c:55:cb:47:fd:ee:f7:e7:c5:8d:73:5b:
                    2d:7f:3b:28:11:d2:76:37:ea:76:c2:ee:05:e2:74:
                    88:37:1e:19:1d:bd:3c:16:e4:86:ee:6b:26:6e:d3:
                    7d:99:d6:b4:34:64:ac:ca:8d:44:97:aa:86:f0:0f:
                    f8:46:4c:a8:31:5b:d2:e0:fb:f4:5a:bc:6a:44:f6:
                    3a:41:0c:76:9c:81:08:4c:52:36:6a:73:73:74:b4:
                    db:82:04:28:f2:71:47:69:4e:2c:c1:cd:b1:e6:ed:
                    1d:8a:ec:4f:81:b3:d7:b0:79:4e:7e:33:20:0f:85:
                    a4:7b:9b:aa:1d:52:9b:0a:a0:37:73:9b:0a:3f:4d:
                    3e:1a:47:2a:ed:1f:67:c5:8b:1f:e5:f8:d9:c1:ac:
                    40:07:95:e9:9d:c7:98:45:e2:65:09:bd:8f:96:d8:
                    ab:16:13:06:3d:db:f5:ad:47:87:2f:f4:4e:73:b3:
                    eb:f2:7a:dc:be:18:5f:3b:dd:77:22:a4:a6:fa:d4:
                    ea:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:DB:60:D9:68:16:9F:68:66:41:04:8B:C3:16:55:2F:11:59:77:5A
            X509v3 Authority Key Identifier:
                keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:a7:d2:63:be:15:88:14:f0:e4:30:b1:02:05:8b:98:aa:a5:
         c7:11:c5:f1:b9:be:ce:d4:94:24:e8:ff:48:83:aa:8e:18:e0:
         85:f7:97:f2:ab:4d:a9:7c:ad:53:c5:5f:22:b4:1f:16:9a:90:
         f9:a4:18:d5:11:9e:75:a9:10:bb:87:ec:76:34:12:4e:51:6c:
         dd:2e:3d:04:59:cf:16:57:db:a4:1c:c4:b0:91:1e:1e:e0:df:
         0c:dc:fb:18:de:e9:61:1d:0e:e4:87:94:c9:3f:4d:ef:86:b2:
         a7:bf:c1:44:f3:9c:a8:1e:13:70:2a:bc:9c:c3:27:12:03:dd:
         6b:3c:b4:c1:b1:39:e7:f4:e5:f6:0a:58:44:cb:53:29:35:24:
         cb:5c:51:22:a9:78:1f:7f:49:d1:85:dc:29:9a:f9:dd:84:7e:
         94:46:bf:4a:45:d6:7c:3b:80:45:e7:7a:36:8e:7f:9a:7d:a4:
         f4:2e:45:c3:d1:e2:41:d2:17:d8:48:69:38:ee:1e:dd:c5:e7:
         44:a5:0d:e7:ba:46:ea:0c:51:1f:4b:57:49:28:3b:6a:8a:f5:
         1b:26:ab:42:a9:74:e2:f7:4e:12:20:4b:d8:0d:98:af:17:67:
         39:b6:2a:fd:7f:e3:d8:60:6b:80:c7:3d:48:75:d3:e4:c9:8e:
         03:f8:38:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 03:53:43 2026 by rpki-client