Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File:                     CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier:          2AWCmmr+OYNXwPVsrrfA2gXPVNjml+eZSywxzaAVe/0=
Subject key identifier:   D7:EF:A6:35:D1:70:64:24:F0:08:FE:9B:F0:7E:F0:27:AA:BB:6C:2F
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer:       /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial:       019F6614B0CCDCDA0561C608441C927FD140
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number:          0DDE
Signing time:             Wed 15 Jul 2026 14:00:59 +0000
Manifest this update:     Wed 15 Jul 2026 14:00:59 +0000
Manifest next update:     Thu 16 Jul 2026 14:00:59 +0000
Files and hashes:         1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: pATI/mQ4nWhCYPykeKgtbnymObKvtYQPnX7w0diIS24=)
                          2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
                          3: Z9-G8jBlIUV8JXo4mpweyF3YJ1U.roa (hash: dj5hMhYWdWHJcm+043OLfnQ2pOg2DSF2L7CpAN4Js2w=)
                          4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
                          5: fnggY0IhO9mDzoeT1t0WuzkAzWI.roa (hash: 9e6IMcnEkPPF9sv33WqexenQbytaWL15Ul9zWEcxcQo=)
                          6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
                          7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 16 Jul 2026 14:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:66:14:b0:cc:dc:da:05:61:c6:08:44:1c:92:7f:d1:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
        Validity
            Not Before: Jul 15 14:00:59 2026 GMT
            Not After : Jul 16 14:00:59 2026 GMT
        Subject: CN=d7efa635d1706424f008fe9bf07ef027aabb6c2f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:af:bc:14:66:c6:db:72:de:a9:6c:b3:96:33:
                    66:0d:de:5f:34:4d:4a:4b:c7:f1:ef:f5:ba:92:8f:
                    e9:3a:9a:14:fd:e8:9c:d7:f3:8c:6b:18:e6:da:d7:
                    9e:55:c9:8a:1c:d9:88:76:f5:64:ae:7d:5c:8e:92:
                    bd:79:48:cb:b7:1c:dc:c0:c3:ba:32:09:dd:f8:59:
                    38:63:a3:e7:15:5c:05:b5:09:32:5d:55:6f:5f:15:
                    1a:1b:47:2d:12:fb:0e:d7:93:37:cb:cd:8a:c6:95:
                    90:b9:d8:ce:01:32:3e:70:e1:0d:fa:15:0b:ff:d0:
                    b2:80:d4:93:0d:af:ca:45:48:e6:11:e0:b1:58:cc:
                    d1:b1:08:ce:99:c3:b9:a5:66:1e:d7:31:25:02:8b:
                    55:48:02:8c:5c:56:03:1f:f7:e0:bf:44:fb:a6:7d:
                    6e:cd:70:c4:c5:db:2f:72:54:58:15:2a:73:2a:26:
                    74:51:e6:2f:98:92:2f:7b:37:25:19:8c:f1:ed:fe:
                    ab:a4:c4:96:a2:bf:4c:f4:84:25:4a:1d:a0:80:b9:
                    1e:d9:e7:47:ae:ac:1d:86:54:3c:99:58:81:a5:d7:
                    5d:e4:6d:7b:cf:cf:2f:30:f9:be:ce:3b:34:27:6a:
                    de:90:29:13:21:72:cc:bd:33:47:f3:36:c3:77:77:
                    ea:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:EF:A6:35:D1:70:64:24:F0:08:FE:9B:F0:7E:F0:27:AA:BB:6C:2F
            X509v3 Authority Key Identifier:
                keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:c4:4a:d9:43:64:eb:13:66:d1:bd:07:e8:00:6e:50:1d:a9:
         37:70:01:1b:63:fa:be:aa:fc:fe:b9:0e:25:ee:34:b3:c5:4d:
         aa:35:9c:70:c2:e4:0b:f2:39:5f:b4:85:08:28:58:c5:19:c1:
         86:24:64:84:fc:3a:29:17:71:3d:1b:2a:68:8f:e1:db:17:8c:
         86:16:c6:38:da:d7:33:8d:a6:57:54:40:f2:5c:ba:c8:41:ef:
         31:ea:e2:4a:cf:ed:6b:56:85:1f:95:28:fe:56:e4:0e:1b:7a:
         2f:17:76:09:02:26:ab:1c:09:48:df:96:fa:09:a1:4e:2b:19:
         b7:cc:5a:c2:84:b2:df:de:65:a0:2c:38:97:bd:16:37:c2:3f:
         a5:3a:4b:00:35:ae:48:63:72:ee:a2:75:9b:8e:d5:ca:d5:15:
         5b:74:be:44:ea:d2:d0:d4:2d:40:d4:38:d4:7b:8b:ff:b0:40:
         63:1f:ec:95:bb:4e:c8:0a:ee:63:b8:2b:42:4d:09:52:2d:84:
         3b:33:37:99:98:de:3f:a2:39:eb:bc:a2:b0:10:60:e5:dc:af:
         3f:a5:cf:12:7f:89:2f:78:8e:6e:e2:a4:98:d7:bc:b1:8d:8d:
         f6:cf:59:bd:a0:c1:a7:55:21:53:8c:ed:d8:04:23:cc:4a:63:
         f8:23:c4:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 18:19:02 2026 by rpki-client