Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File:                     Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier:          ysb50d8gx82SdXL+vOGMk0TYcwlIp4jI1AyQn2vebNo=
Subject key identifier:   2D:82:1D:C4:1E:82:4C:E7:31:4E:52:EC:B1:88:18:CE:F8:6C:40:20
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer:       /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial:       019F2FCB5B597DC096848EB7B57B1C0AAB6B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number:          11E3
Signing time:             Sun 05 Jul 2026 01:01:23 +0000
Manifest this update:     Sun 05 Jul 2026 01:01:23 +0000
Manifest next update:     Mon 06 Jul 2026 01:01:23 +0000
Files and hashes:         1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=)
                          2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=)
                          3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=)
                          4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=)
                          5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=)
                          6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: X1BUBz53A5tJkgQ3EGG+6DW8T3Wf07793VGvbbUvkQ4=)
                          7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=)
                          8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=)
                          9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=)
                          10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=)
                          11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 05 Jul 2026 23:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:2f:cb:5b:59:7d:c0:96:84:8e:b7:b5:7b:1c:0a:ab:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
        Validity
            Not Before: Jul  5 01:01:23 2026 GMT
            Not After : Jul  6 01:01:23 2026 GMT
        Subject: CN=2d821dc41e824ce7314e52ecb18818cef86c4020
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:09:e2:b4:68:b3:24:12:4e:64:14:86:23:9f:
                    cf:2b:e9:3c:96:0c:08:e0:08:18:13:51:ca:19:26:
                    a5:01:9f:d4:59:8a:45:ea:5a:05:87:57:29:cc:e2:
                    f0:9f:69:8e:2c:ff:78:c0:32:62:32:87:01:99:b8:
                    31:6d:a6:6d:01:9e:1e:52:27:88:44:d3:98:b4:59:
                    50:ce:cb:0d:fa:68:4b:92:98:17:b1:41:e5:bb:a3:
                    1f:6b:b0:fb:fc:58:57:16:05:74:4f:46:5a:bd:f9:
                    32:c1:37:ed:43:ff:8c:92:f3:27:bc:9d:43:d7:8e:
                    dd:88:93:44:9d:a4:6a:1d:30:24:44:57:14:5a:74:
                    af:58:39:13:b8:72:97:88:a0:f6:66:e8:a2:aa:c0:
                    1b:4f:ee:28:23:0f:71:17:ff:37:fb:3f:aa:e8:21:
                    9f:2e:d4:e4:3d:e9:75:a8:b7:01:ca:ee:1b:47:c5:
                    5d:1d:01:fc:17:2d:fa:f2:5e:08:7d:28:6d:34:f8:
                    35:5e:3f:99:d9:97:db:2c:b7:28:1c:ad:54:a3:92:
                    51:2a:25:f0:eb:d6:29:40:06:34:ca:50:16:a8:c3:
                    b0:ec:24:53:29:27:51:87:ac:70:4a:54:f7:75:75:
                    4c:ea:a7:3c:8e:10:d3:51:72:de:ac:f2:cd:5c:d1:
                    d8:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:82:1D:C4:1E:82:4C:E7:31:4E:52:EC:B1:88:18:CE:F8:6C:40:20
            X509v3 Authority Key Identifier:
                keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:1b:a4:c7:f2:f7:7d:ad:d0:41:22:5e:14:2e:3c:3d:67:bc:
         3f:c7:27:a3:61:d3:15:3f:9a:f4:d3:d0:9e:23:e8:60:ab:75:
         76:c0:07:02:1b:74:88:e4:22:ef:ca:0e:67:36:d4:de:89:61:
         f1:76:7b:36:a6:ea:bc:cb:7e:95:ad:e8:88:14:ae:1e:dd:d2:
         8e:c4:94:dd:48:ca:0b:0d:b0:2a:e7:1f:42:65:85:4c:99:90:
         74:ad:50:6e:55:0e:3d:70:e4:55:7d:45:98:15:6c:f6:d4:96:
         c9:8e:36:de:1a:c2:c0:80:58:cd:0d:57:a6:0f:f0:a3:2b:64:
         c4:8d:36:71:66:f3:98:62:0f:f1:f4:92:24:8e:1a:c7:be:16:
         64:58:62:70:80:28:76:4f:8e:23:a9:57:ac:c1:f1:22:97:8a:
         15:09:06:e4:65:76:94:d2:d5:d6:3f:89:0b:b4:95:bb:af:63:
         92:8d:de:69:6f:99:3f:be:a8:73:e4:4a:74:fb:ba:d1:86:74:
         f2:06:81:45:4d:ad:fb:7f:72:c6:71:7a:d5:af:e7:33:94:4e:
         96:1e:64:f1:ce:99:b7:d7:dd:84:f6:0a:8b:44:29:e8:e2:a7:
         4d:b6:6f:2c:55:17:f5:8b:d5:5a:e1:d5:c4:5c:40:98:8f:e7:
         24:42:a3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 02:55:34 2026 by rpki-client