Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
File:                     UfSwsEaesNBxmUzYI480vvAMb74.mft (raw, json)
Hash identifier:          mpe1jatzy2Y4341fBu+/mWcdXvVOc3BU3C/afkfzXhM=
Subject key identifier:   40:AC:52:D7:1C:B3:7D:C9:20:2D:9E:AD:05:27:C7:D7:E6:F2:6B:B1
Authority key identifier: 51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE
Certificate issuer:       /CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
Certificate serial:       019F28B6B1B6416A985641DEDBA154EC59E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
Manifest number:          0912
Signing time:             Fri 03 Jul 2026 16:01:29 +0000
Manifest this update:     Fri 03 Jul 2026 16:01:29 +0000
Manifest next update:     Sat 04 Jul 2026 16:01:29 +0000
Files and hashes:         1: 1Z9CK4rPbzAMA97TMp2bKUfntRw.roa (hash: LpR7I8xQuFg1r5Rgn2WWeCosLxa5m8Ntho2zm0Of2+c=)
                          2: BLM9s6E3uNgLbo5hUAJYzpxbAgk.roa (hash: 5Ht0651estCzoETFmaG2dTMoJGv16B5IZmwbZaHDuac=)
                          3: UfSwsEaesNBxmUzYI480vvAMb74.crl (hash: c69klYs/EY+PlhIYwFPrN0+l3GGLxjJAEiFUtgezJk8=)
                          4: aBkGIeHaROiVyf6y4zQUYjIbWLo.roa (hash: QrqArFPVF1/qMWn5zOGo4TUbL6WlcsofMlRqGn2AHJw=)
                          5: aq9niQ1ZlLfgZPSmUPOgIOI3M2c.roa (hash: dNTF2xB3WZEo4xS7rRBBdp1UPiHc48uFIsc0/3W0AY8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 16:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:28:b6:b1:b6:41:6a:98:56:41:de:db:a1:54:ec:59:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
        Validity
            Not Before: Jul  3 16:01:29 2026 GMT
            Not After : Jul  4 16:01:29 2026 GMT
        Subject: CN=40ac52d71cb37dc9202d9ead0527c7d7e6f26bb1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:4a:fa:1c:b0:1a:a7:d9:75:f6:eb:63:c3:c6:
                    34:48:5a:9e:39:37:12:39:67:99:3d:23:30:24:28:
                    5e:00:dc:d6:33:1c:f2:82:17:44:2b:1b:51:23:04:
                    73:85:b4:64:16:03:15:ba:ae:ec:01:2d:c8:c9:38:
                    f1:6b:ba:20:9a:54:0c:09:46:09:ae:2d:f5:9e:7d:
                    5e:ae:09:05:ad:cf:72:75:a8:ea:24:a6:58:65:62:
                    32:df:74:06:e9:f6:1c:38:c2:53:84:71:18:de:9f:
                    46:17:5c:53:57:c8:ac:09:bb:4e:8b:e0:4a:3a:cb:
                    17:ee:6c:03:aa:b7:a0:cf:b1:d1:e7:9d:b8:ca:dd:
                    00:78:78:c0:95:e6:0a:96:3b:ad:2b:76:8f:df:4d:
                    f9:90:14:4c:c5:5a:16:44:38:d5:36:c8:1f:3a:9d:
                    33:de:f1:ff:ad:31:f5:15:8a:ff:eb:f9:ba:e9:03:
                    64:23:72:24:77:92:e6:f3:24:cc:0f:df:5c:75:cb:
                    c1:c1:59:68:81:b1:33:22:45:d0:5e:13:ae:aa:84:
                    0f:a1:eb:02:00:0d:28:d2:c1:49:d1:4e:82:d3:5c:
                    2b:2d:20:79:03:34:97:18:ce:06:bf:e5:76:d8:cc:
                    f6:57:87:9c:3a:ea:e7:a7:c1:f5:29:55:66:9e:53:
                    de:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:AC:52:D7:1C:B3:7D:C9:20:2D:9E:AD:05:27:C7:D7:E6:F2:6B:B1
            X509v3 Authority Key Identifier:
                keyid:51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:4b:12:b9:52:11:46:9d:e7:95:43:9d:4b:47:2b:75:18:e1:
         b7:8a:b4:d7:0e:7c:e7:c1:8c:a9:07:7f:02:b7:bf:46:7f:43:
         07:eb:20:27:04:8b:93:ce:d8:65:53:76:53:9b:29:6c:c5:d2:
         c6:53:68:6b:ac:5a:a0:ff:fa:06:b5:d1:32:9d:2c:bf:ee:b3:
         cc:41:c9:8c:26:c9:a8:26:ee:4b:b7:4a:d4:dc:be:26:11:93:
         0f:f7:36:03:8e:a9:b7:1e:2f:82:9d:4b:67:c0:11:e2:5d:b7:
         54:a5:a1:1e:74:b6:88:0a:2c:1d:1e:b7:79:0d:ab:c5:90:f8:
         46:50:73:9f:a2:7f:8a:98:32:25:c5:30:75:54:f6:c1:2e:b1:
         01:c9:a0:74:d6:8b:bd:ce:35:8e:f5:42:90:86:ed:31:4d:1f:
         4d:8c:ee:08:95:6c:62:2a:47:90:ad:38:5d:a5:07:85:64:8a:
         7f:e4:12:7f:9e:50:a1:d8:5c:7c:c0:b9:58:97:ad:d3:62:d0:
         c9:ea:48:63:10:35:71:38:e6:c6:c0:10:57:45:e6:37:2f:61:
         c8:05:79:b5:65:85:7a:54:48:65:39:0f:3b:44:a4:be:e5:68:
         bd:2f:d3:12:e6:b3:0f:d9:80:a7:61:1a:64:93:17:06:8d:51:
         3c:0b:b0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:46:01 2026 by rpki-client