Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File:                     CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier:          Q0jLYdW6XVIrsi4y4aIWef26vqqwcPMfGWhS3UbrpwA=
Subject key identifier:   42:1D:06:9D:A3:FC:89:E8:3B:92:27:2E:5B:69:D8:FE:3C:E1:2A:32
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer:       /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial:       019F473A3240574E200A98E9C0A886D5CFFB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number:          0DCE
Signing time:             Thu 09 Jul 2026 14:13:43 +0000
Manifest this update:     Thu 09 Jul 2026 14:13:43 +0000
Manifest next update:     Fri 10 Jul 2026 14:13:43 +0000
Files and hashes:         1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: GWUW8apOQTUGDJLu8e3StiFcbml7FHT0A2lQW13uH+o=)
                          2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
                          3: Z9-G8jBlIUV8JXo4mpweyF3YJ1U.roa (hash: dj5hMhYWdWHJcm+043OLfnQ2pOg2DSF2L7CpAN4Js2w=)
                          4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
                          5: fnggY0IhO9mDzoeT1t0WuzkAzWI.roa (hash: 9e6IMcnEkPPF9sv33WqexenQbytaWL15Ul9zWEcxcQo=)
                          6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
                          7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 10 Jul 2026 14:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:47:3a:32:40:57:4e:20:0a:98:e9:c0:a8:86:d5:cf:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
        Validity
            Not Before: Jul  9 14:13:43 2026 GMT
            Not After : Jul 10 14:13:43 2026 GMT
        Subject: CN=421d069da3fc89e83b92272e5b69d8fe3ce12a32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:84:92:18:05:d7:a7:1d:14:07:f2:7f:7e:8a:
                    ba:14:ca:52:b2:92:93:47:a9:8b:a6:19:55:b9:8a:
                    8d:6f:3b:01:0f:ca:f4:f9:86:3f:b6:f4:9c:fe:af:
                    ed:78:db:ab:64:f9:fe:f1:d2:04:0f:a4:63:1b:ad:
                    7e:d1:e3:3b:4b:3c:10:68:0b:48:92:bb:fa:3e:28:
                    69:ae:33:72:da:20:fd:60:16:71:51:05:b7:e5:5c:
                    0a:56:08:c9:a7:b7:63:64:3d:6a:37:df:e4:c4:f8:
                    98:ed:dc:b6:df:c4:68:71:dc:24:67:6d:e4:5b:68:
                    37:1e:47:68:dd:cc:62:ff:66:86:ef:0f:b4:89:e9:
                    ef:0d:13:54:03:b6:f5:a7:43:3b:48:82:2c:45:63:
                    f0:45:2b:31:8c:e4:3c:09:e7:59:50:51:4c:31:f9:
                    ad:0f:bf:0e:84:df:7b:ed:93:dc:89:2c:62:28:e4:
                    8f:4f:3a:c8:dc:e6:02:89:93:bf:b9:34:d7:86:e0:
                    76:f7:62:d3:72:a8:e1:42:be:d9:fd:b9:e8:49:88:
                    cf:89:37:b7:cb:89:62:45:72:b6:9f:fb:28:8d:cf:
                    07:99:db:47:84:95:cd:e1:f2:43:29:c5:f6:60:4f:
                    96:fe:a7:08:9d:e6:3c:16:9f:6a:22:d5:28:7a:3c:
                    73:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:1D:06:9D:A3:FC:89:E8:3B:92:27:2E:5B:69:D8:FE:3C:E1:2A:32
            X509v3 Authority Key Identifier:
                keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:dc:43:be:79:3c:8f:ff:62:a6:3a:16:64:ff:cf:4b:f6:ab:
         4f:a5:63:f0:b1:df:54:3a:22:e2:0c:60:f7:ec:1a:96:d4:39:
         d2:cb:7c:d5:4f:a1:ed:13:26:93:e4:39:2a:0d:cb:6c:68:51:
         7c:66:5e:85:e5:4c:c6:c1:7c:8d:47:7b:95:4a:e8:77:28:2d:
         de:96:50:f6:d4:b2:7d:7e:d2:35:b9:78:70:3b:f4:2a:e4:6a:
         a2:7b:30:94:70:72:3d:40:e0:ec:9e:4b:3b:e2:c4:e0:fa:e1:
         17:85:58:01:7d:5c:b9:de:d1:87:1c:59:31:27:e4:78:21:cb:
         1d:88:52:cd:40:a1:d0:43:ac:cf:1f:9e:35:d2:0a:7a:a6:51:
         e6:52:0c:95:2b:02:a0:17:c0:8c:21:14:79:25:da:45:a5:01:
         24:e6:e5:2e:ec:60:c0:d1:41:69:e7:c4:96:93:41:08:90:e0:
         fe:81:f0:c8:33:c1:ec:55:c0:eb:c9:3d:05:6f:aa:d9:84:1d:
         ac:5d:9d:9c:be:1a:ce:b4:4e:21:08:d9:9c:4a:70:5c:04:f2:
         11:de:cb:59:60:1c:a6:17:74:f2:53:aa:02:96:7d:19:2a:43:
         c8:d4:a9:75:d8:74:7c:97:29:e7:36:a5:44:b2:9d:49:9c:8c:
         84:8c:f8:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9HOjJAV04gCpjpwKiG1c/7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1
NmRiZmQwHhcNMjYwNzA5MTQxMzQzWhcNMjYwNzEwMTQxMzQzWjAzMTEwLwYDVQQD
Eyg0MjFkMDY5ZGEzZmM4OWU4M2I5MjI3MmU1YjY5ZDhmZTNjZTEyYTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ISSGAXXpx0UB/J/foq6FMpSspKT
R6mLphlVuYqNbzsBD8r0+YY/tvSc/q/teNurZPn+8dIED6RjG61+0eM7SzwQaAtI
krv6PihprjNy2iD9YBZxUQW35VwKVgjJp7djZD1qN9/kxPiY7dy238RocdwkZ23k
W2g3Hkdo3cxi/2aG7w+0ienvDRNUA7b1p0M7SIIsRWPwRSsxjOQ8CedZUFFMMfmt
D78OhN977ZPciSxiKOSPTzrI3OYCiZO/uTTXhuB292LTcqjhQr7Z/bnoSYjPiTe3
y4liRXK2n/sojc8HmdtHhJXN4fJDKcX2YE+W/qcIneY8Fp9qItUoejxzYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIdBp2j/InoO5InLltp2P484SoyMB8GA1UdIwQY
MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt
ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm
LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMdxDvnk8
j/9ipjoWZP/PS/arT6Vj8LHfVDoi4gxg9+waltQ50st81U+h7RMmk+Q5Kg3LbGhR
fGZeheVMxsF8jUd7lUrodygt3pZQ9tSyfX7SNbl4cDv0KuRqonswlHByPUDg7J5L
O+LE4PrhF4VYAX1cud7RhxxZMSfkeCHLHYhSzUCh0EOszx+eNdIKeqZR5lIMlSsC
oBfAjCEUeSXaRaUBJOblLuxgwNFBaefElpNBCJDg/oHwyDPB7FXA68k9BW+q2YQd
rF2dnL4azrROIQjZnEpwXATyEd7LWWAcphd08lOqApZ9GSpDyNSpddh0fJcp5zal
RLKdSZyMhIz4MA==
-----END CERTIFICATE-----
Generated at Thu Jul 9 17:38:36 2026 by rpki-client