Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File:                     h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier:          mK3azza80PlDOTLJ0OBx1voEGkRgrDSG91c7tHsja8Q=
Subject key identifier:   CB:AE:02:59:DD:D5:19:88:FF:E0:96:3E:E2:5C:AD:77:1E:78:B4:79
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer:       /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial:       019F1C0E1ACA533A2349081118B189F4942C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number:          198B
Signing time:             Wed 01 Jul 2026 05:01:54 +0000
Manifest this update:     Wed 01 Jul 2026 05:01:54 +0000
Manifest next update:     Thu 02 Jul 2026 05:01:54 +0000
Files and hashes:         1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: mElLUQu8DAG1gyC1J4jWilelmRYp8OANSBpaSD03voU=)
                          2: uOT6tJlrkH7uNore0SwrHv6B2q8.roa (hash: sj7kmuH/7FdqL+TtQaRY1OsxURdzt9SlOSUYNlEq6iI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 23:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:1c:0e:1a:ca:53:3a:23:49:08:11:18:b1:89:f4:94:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
        Validity
            Not Before: Jul  1 05:01:54 2026 GMT
            Not After : Jul  2 05:01:54 2026 GMT
        Subject: CN=cbae0259ddd51988ffe0963ee25cad771e78b479
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:f2:05:0b:63:a1:07:a3:6a:51:b8:45:17:67:
                    07:42:98:03:f8:42:9e:42:40:af:c6:8f:d3:a7:78:
                    26:e2:2c:b9:dd:c0:ec:39:2a:b9:5d:12:08:27:ff:
                    0d:29:1c:57:0a:94:2c:57:4d:93:21:46:8b:f1:b4:
                    a9:85:bc:2c:fe:27:ce:8e:c5:13:0d:f6:7a:d6:f2:
                    33:da:ae:c4:0a:83:57:90:43:ca:26:0a:23:36:de:
                    71:2f:d0:2b:38:79:7a:b5:0a:eb:a5:29:4f:f2:27:
                    e8:63:f2:2a:f4:82:32:cb:3f:a0:cf:24:11:aa:7e:
                    7e:d9:04:d2:20:56:23:cd:60:76:50:17:d2:41:53:
                    3d:d7:ff:4a:88:53:40:b5:3a:1b:1d:6b:f2:63:7a:
                    b9:9b:da:ed:8b:c3:90:25:01:6b:e6:8a:38:b8:07:
                    22:9f:d4:2e:3f:90:6c:9e:6f:92:53:5e:c4:55:a6:
                    cb:4b:8a:98:24:67:5a:db:ce:74:ac:d3:f9:72:bb:
                    52:3c:70:eb:64:db:46:a8:fd:d3:2a:74:eb:3c:20:
                    49:06:fb:15:b4:2b:33:1e:f2:20:d8:0f:6f:e8:12:
                    c5:b2:98:1d:41:f0:24:d3:1b:2e:87:06:27:07:e8:
                    0e:4d:f6:fc:cb:ee:68:7c:42:59:55:b3:22:c2:eb:
                    e1:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:AE:02:59:DD:D5:19:88:FF:E0:96:3E:E2:5C:AD:77:1E:78:B4:79
            X509v3 Authority Key Identifier:
                keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:8c:94:41:e0:59:e0:8c:83:e2:f7:0f:7f:f8:5e:c6:13:0e:
         74:8c:e5:71:dd:16:3f:94:05:ba:60:42:0e:e6:b8:b6:0c:f6:
         da:b1:e9:7f:7b:ce:4b:e7:be:8f:d2:0b:61:dd:89:bd:be:0e:
         ef:f3:fd:32:4b:5b:7f:05:99:88:f6:81:dd:dc:bf:39:97:29:
         0c:1e:26:c2:3e:39:41:e4:b8:40:06:49:fe:ef:aa:b7:10:68:
         4a:e5:fa:36:36:da:c1:44:83:fd:5e:dd:f7:aa:e1:77:0b:74:
         e6:b4:90:78:bd:85:59:a2:63:cd:1a:3e:70:be:e6:a0:50:69:
         d9:e6:86:3c:eb:47:9c:49:63:9f:1b:c0:cd:32:15:26:ae:50:
         13:11:41:40:e7:c9:40:55:ee:1e:61:4b:d3:24:e4:6d:9e:50:
         e9:c2:9e:a4:63:cc:c1:89:a8:96:9b:7c:9f:44:8d:0a:cf:b9:
         e4:ce:38:4e:64:d7:83:b6:7b:12:75:40:f0:7d:54:52:3b:44:
         3f:ad:38:db:0d:30:1d:bd:de:cb:84:a6:8b:48:af:dc:53:1c:
         e1:0e:ac:bd:0c:a6:f3:08:2a:34:bb:6c:27:a5:7d:47:b3:59:
         89:21:f1:a3:ad:b0:c3:a9:35:ab:2c:18:dd:0c:8b:d0:55:02:
         35:d4:cd:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8cDhrKUzojSQgRGLGJ9JQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTkyMDg4ZTc2NTVjYjEzNDAyMGNhOTViMGU1N2Q0ZTZk
YWY0MGYwHhcNMjYwNzAxMDUwMTU0WhcNMjYwNzAyMDUwMTU0WjAzMTEwLwYDVQQD
EyhjYmFlMDI1OWRkZDUxOTg4ZmZlMDk2M2VlMjVjYWQ3NzFlNzhiNDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/IFC2OhB6NqUbhFF2cHQpgD+EKe
QkCvxo/Tp3gm4iy53cDsOSq5XRIIJ/8NKRxXCpQsV02TIUaL8bSphbws/ifOjsUT
DfZ61vIz2q7ECoNXkEPKJgojNt5xL9ArOHl6tQrrpSlP8ifoY/Iq9IIyyz+gzyQR
qn5+2QTSIFYjzWB2UBfSQVM91/9KiFNAtTobHWvyY3q5m9rti8OQJQFr5oo4uAci
n9QuP5Bsnm+SU17EVabLS4qYJGda2850rNP5crtSPHDrZNtGqP3TKnTrPCBJBvsV
tCszHvIg2A9v6BLFspgdQfAk0xsuhwYnB+gOTfb8y+5ofEJZVbMiwuvhqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMuuAlnd1RmI/+CWPuJcrXceeLR5MB8GA1UdIwQY
MBaAFIeZIIjnZVyxNAIMqVsOV9Tm2vQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMt
ODVlYTYzYzI0NDc0LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMtODVlYTYzYzI0NDc0
LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVIyUQeBZ
4IyD4vcPf/hexhMOdIzlcd0WP5QFumBCDua4tgz22rHpf3vOS+e+j9ILYd2Jvb4O
7/P9MktbfwWZiPaB3dy/OZcpDB4mwj45QeS4QAZJ/u+qtxBoSuX6NjbawUSD/V7d
96rhdwt05rSQeL2FWaJjzRo+cL7moFBp2eaGPOtHnEljnxvAzTIVJq5QExFBQOfJ
QFXuHmFL0yTkbZ5Q6cKepGPMwYmolpt8n0SNCs+55M44TmTXg7Z7EnVA8H1UUjtE
P6042w0wHb3ey4Smi0iv3FMc4Q6svQym8wgqNLtsJ6V9R7NZiSHxo62ww6k1qywY
3QyL0FUCNdTNWQ==
-----END CERTIFICATE-----
Generated at Wed Jul 1 09:02:52 2026 by rpki-client