Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File:                     o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier:          mE0SFIlTdhnJNvTguW+SMmTScVC7oURM5Dm4yrJ/6vs=
Subject key identifier:   9E:C8:16:B3:DF:19:26:3C:74:5C:40:A7:29:14:07:BC:09:2C:8C:EF
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer:       /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial:       019EB7D7BAA6EF26B73E6A0BC183DE80D509
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number:          13B7
Signing time:             Thu 11 Jun 2026 18:00:29 +0000
Manifest this update:     Thu 11 Jun 2026 18:00:29 +0000
Manifest next update:     Fri 12 Jun 2026 18:00:29 +0000
Files and hashes:         1: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: taqQFamzMlJ5gKZ1EFgnPLcVxVOhszXqleedMMa64iY=)
                          2: u-PjOq1WjK6PsqFBvXy59id7R_I.roa (hash: Pz8fOepb3H13pqdKO3L1FSkff2yUOqZGUk6QeB6m10U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 18:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b7:d7:ba:a6:ef:26:b7:3e:6a:0b:c1:83:de:80:d5:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
        Validity
            Not Before: Jun 11 18:00:29 2026 GMT
            Not After : Jun 12 18:00:29 2026 GMT
        Subject: CN=9ec816b3df19263c745c40a7291407bc092c8cef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:a4:bb:80:d4:36:b1:7c:04:d3:b8:11:65:d7:
                    8e:d5:d4:66:34:b5:de:ca:09:da:a0:4a:8b:60:e5:
                    35:b9:85:36:c9:15:85:c5:94:08:9e:40:14:9b:19:
                    8a:02:3d:16:58:22:66:c7:f6:4e:52:24:cc:05:e7:
                    b1:ec:39:96:23:49:cc:45:8d:69:ce:5b:d7:98:17:
                    6c:86:c0:ab:30:72:b2:82:c5:d5:8b:ab:7e:bb:17:
                    91:b3:23:08:17:5b:0f:f6:2f:31:5b:2a:e5:0a:08:
                    65:b5:c0:c8:e5:e2:63:58:4d:c7:98:0f:92:3e:fa:
                    08:c1:38:ca:22:70:f4:41:68:41:7b:91:e8:42:fe:
                    96:2d:f7:67:03:cf:54:75:ca:6a:ed:d4:8b:a1:1a:
                    57:1e:9e:aa:6b:95:bd:bb:f8:52:1e:9d:17:32:64:
                    54:9d:4b:41:1d:07:d8:28:a0:5c:84:b7:68:67:25:
                    2e:98:62:23:5e:6b:75:4e:ed:7a:8f:c9:95:a0:98:
                    0f:b7:2e:64:40:55:b2:28:a4:3c:b8:17:ac:5e:fc:
                    59:b5:2a:dc:10:c7:e5:15:bd:a4:c4:cc:03:f3:3e:
                    d3:a6:33:a1:12:d9:70:25:e4:45:a2:0d:cc:42:0a:
                    f6:b6:43:ab:44:d7:9d:76:21:57:ec:3d:4a:07:cc:
                    cc:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:C8:16:B3:DF:19:26:3C:74:5C:40:A7:29:14:07:BC:09:2C:8C:EF
            X509v3 Authority Key Identifier:
                keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:c4:c6:2a:b1:12:e1:e0:ab:fa:4d:20:2f:c6:0b:fd:a0:22:
         73:c6:86:30:d8:b6:02:d7:a5:41:fd:70:f3:3a:e2:89:ff:0e:
         e4:2f:0c:b2:a6:64:5d:e0:70:70:81:9b:cf:96:25:fc:d6:0b:
         3b:e8:86:8f:de:83:7b:8a:0a:45:2b:70:0c:fe:f3:8a:c3:df:
         a0:f2:06:cd:c8:7a:b2:a6:71:05:87:be:5c:0c:16:5f:ce:f0:
         02:4d:cf:08:b9:4e:d5:b8:fc:46:cf:52:89:d4:e8:8f:aa:5e:
         78:de:d0:31:41:dc:8f:f3:c2:cd:22:e0:07:90:a7:a5:bf:8e:
         9f:85:47:6a:bc:94:b6:61:a0:aa:fd:35:ad:52:52:78:0a:30:
         b9:ac:00:83:5f:1a:f7:78:39:0f:7a:8f:ad:46:e8:76:cb:ff:
         01:3f:aa:f2:b4:c9:08:8b:bb:a9:da:ee:e8:27:bc:b2:43:7a:
         26:88:fd:4d:dd:78:bc:c1:25:c2:fe:d8:db:1c:8a:13:05:26:
         87:01:ed:03:60:59:10:82:f9:84:bb:2e:e1:e2:6a:50:f7:3e:
         a9:10:40:59:e4:4a:b6:10:42:22:fc:fa:25:a6:d2:99:c1:62:
         af:93:12:f2:3d:79:9d:90:75:15:5b:a1:44:42:75:80:1b:14:
         52:1f:88:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6317qm7ya3PmoLwYPegNUJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjlmYjE5MWJlZTUxY2RjNzQxNGE2OTYzMTk3Zjg2YmJm
MzEzYWIwHhcNMjYwNjExMTgwMDI5WhcNMjYwNjEyMTgwMDI5WjAzMTEwLwYDVQQD
Eyg5ZWM4MTZiM2RmMTkyNjNjNzQ1YzQwYTcyOTE0MDdiYzA5MmM4Y2VmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6S7gNQ2sXwE07gRZdeO1dRmNLXe
ygnaoEqLYOU1uYU2yRWFxZQInkAUmxmKAj0WWCJmx/ZOUiTMBeex7DmWI0nMRY1p
zlvXmBdshsCrMHKygsXVi6t+uxeRsyMIF1sP9i8xWyrlCghltcDI5eJjWE3HmA+S
PvoIwTjKInD0QWhBe5HoQv6WLfdnA89Udcpq7dSLoRpXHp6qa5W9u/hSHp0XMmRU
nUtBHQfYKKBchLdoZyUumGIjXmt1Tu16j8mVoJgPty5kQFWyKKQ8uBesXvxZtSrc
EMflFb2kxMwD8z7TpjOhEtlwJeRFog3MQgr2tkOrRNeddiFX7D1KB8zMiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ7IFrPfGSY8dFxApykUB7wJLIzvMB8GA1UdIwQY
MBaAFKNp+xkb7lHNx0FKaWMZf4a78xOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYt
ZTE4MDUyZjM4MWJiLzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYtZTE4MDUyZjM4MWJi
LzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn8TGKrES
4eCr+k0gL8YL/aAic8aGMNi2AtelQf1w8zriif8O5C8MsqZkXeBwcIGbz5Yl/NYL
O+iGj96De4oKRStwDP7zisPfoPIGzch6sqZxBYe+XAwWX87wAk3PCLlO1bj8Rs9S
idToj6peeN7QMUHcj/PCzSLgB5Cnpb+On4VHaryUtmGgqv01rVJSeAowuawAg18a
93g5D3qPrUbodsv/AT+q8rTJCIu7qdru6Ce8skN6Joj9Td14vMElwv7Y2xyKEwUm
hwHtA2BZEIL5hLsu4eJqUPc+qRBAWeRKthBCIvz6JabSmcFir5MS8j15nZB1FVuh
REJ1gBsUUh+IYA==
-----END CERTIFICATE-----
Generated at Fri Jun 12 04:10:53 2026 by rpki-client