Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File:                     Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier:          WhItL4mOFa3pAs5B3u56cWienz6IbXseFohnM3lWodk=
Subject key identifier:   F3:23:DC:06:C6:38:C6:B9:C3:38:8B:BE:3C:66:6B:63:59:EF:D7:99
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer:       /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial:       019F773EE573C4E7257A4344E0A921FB2286
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number:          1208
Signing time:             Sat 18 Jul 2026 22:00:38 +0000
Manifest this update:     Sat 18 Jul 2026 22:00:38 +0000
Manifest next update:     Sun 19 Jul 2026 22:00:38 +0000
Files and hashes:         1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=)
                          2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=)
                          3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=)
                          4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=)
                          5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=)
                          6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: /dde6GTxRM6qP2yvZhpBitoWMbbbw4xHBpS3OJfacI8=)
                          7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=)
                          8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=)
                          9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=)
                          10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=)
                          11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 19 Jul 2026 20:00:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:77:3e:e5:73:c4:e7:25:7a:43:44:e0:a9:21:fb:22:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
        Validity
            Not Before: Jul 18 22:00:38 2026 GMT
            Not After : Jul 19 22:00:38 2026 GMT
        Subject: CN=f323dc06c638c6b9c3388bbe3c666b6359efd799
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:04:b6:a4:0b:41:ac:db:95:1c:8a:cd:94:1c:
                    a0:41:79:43:27:39:f1:0e:0b:fe:93:93:7c:44:1f:
                    c7:88:b2:21:86:4e:fe:b2:dd:7b:ad:b3:b3:a2:9a:
                    1f:a1:13:da:19:ae:b1:13:83:a1:0e:fe:68:d0:d1:
                    2f:a0:43:bb:6b:e8:24:f0:b0:a4:49:c7:3a:45:56:
                    3f:b3:32:b2:75:c1:ca:88:08:f3:f9:cf:6d:39:06:
                    cb:41:af:95:3f:62:46:4b:5a:2e:8d:cf:58:8c:61:
                    fb:3c:1d:90:95:c5:7c:9a:c7:d4:3d:c9:b4:fd:e6:
                    13:25:ec:22:88:26:03:78:03:35:6e:3b:8c:8c:c0:
                    6b:9e:11:25:74:0d:e7:80:f7:a5:5e:73:16:d4:9c:
                    e4:68:78:5a:22:73:43:e1:4f:cc:88:b4:0d:0c:a2:
                    8c:bb:10:2b:fe:60:7b:12:9f:ef:7b:6b:1e:5b:9d:
                    fb:f9:03:42:83:bb:be:4c:20:bf:37:e1:96:d7:3b:
                    98:ea:47:26:28:9a:23:9a:be:fa:a6:9f:6d:86:be:
                    2f:56:82:32:79:ba:d6:23:76:23:d2:64:4b:76:d0:
                    eb:42:b7:8f:7f:aa:dc:1f:5e:3c:e7:ec:aa:27:db:
                    5a:a3:00:b6:80:8f:08:7f:56:7b:d6:15:27:d7:c4:
                    4a:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:23:DC:06:C6:38:C6:B9:C3:38:8B:BE:3C:66:6B:63:59:EF:D7:99
            X509v3 Authority Key Identifier:
                keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:db:39:a4:7e:4b:5f:b5:63:9b:30:97:0f:60:c9:79:b5:4a:
         c2:f3:f8:d5:51:18:97:14:aa:b6:0d:8a:ac:f8:c5:40:5e:d8:
         04:45:79:5d:42:c5:ac:78:20:83:dc:b4:93:b3:3d:b6:c4:84:
         74:3f:a5:8e:d8:74:2f:c5:dc:b3:ff:fb:dd:52:84:70:2f:20:
         f9:c9:eb:7e:4e:46:bd:69:93:d1:1a:11:45:a0:fe:34:1c:6a:
         b1:c6:ac:a4:ed:51:59:10:60:0b:dd:9b:fc:f6:d4:22:2b:3c:
         34:38:40:93:a8:4d:28:38:cc:c9:8e:0a:a6:99:5f:c6:79:08:
         63:e7:78:e6:0d:5f:1a:09:65:f8:c1:68:e0:91:5a:7e:62:89:
         5d:44:24:2e:73:4e:c8:02:c0:a8:9f:b2:f0:9b:ca:63:27:c8:
         f3:bb:fc:f2:c1:23:45:c0:ba:72:c3:01:8c:34:de:85:cb:ea:
         2b:93:78:f0:e2:35:1f:c5:9d:13:67:79:e4:f7:5f:e5:50:c3:
         ce:08:8d:16:cc:83:09:70:12:3c:87:82:24:ef:dc:5d:27:fa:
         ca:0f:cf:fe:9b:dc:86:4e:76:7f:60:1b:de:16:b3:97:6b:c0:
         91:7d:e4:d3:ac:34:43:96:94:cd:2f:60:7c:07:6a:af:eb:7c:
         72:45:92:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ93PuVzxOclekNE4Kkh+yKGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2
OTczY2YwHhcNMjYwNzE4MjIwMDM4WhcNMjYwNzE5MjIwMDM4WjAzMTEwLwYDVQQD
EyhmMzIzZGMwNmM2MzhjNmI5YzMzODhiYmUzYzY2NmI2MzU5ZWZkNzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngS2pAtBrNuVHIrNlBygQXlDJznx
Dgv+k5N8RB/HiLIhhk7+st17rbOzopofoRPaGa6xE4OhDv5o0NEvoEO7a+gk8LCk
Scc6RVY/szKydcHKiAjz+c9tOQbLQa+VP2JGS1oujc9YjGH7PB2QlcV8msfUPcm0
/eYTJewiiCYDeAM1bjuMjMBrnhEldA3ngPelXnMW1JzkaHhaInND4U/MiLQNDKKM
uxAr/mB7Ep/ve2seW537+QNCg7u+TCC/N+GW1zuY6kcmKJojmr76pp9thr4vVoIy
ebrWI3Yj0mRLdtDrQrePf6rcH1485+yqJ9taowC2gI8If1Z71hUn18RKSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPMj3AbGOMa5wziLvjxma2NZ79eZMB8GA1UdIwQY
MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It
MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh
LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqds5pH5L
X7VjmzCXD2DJebVKwvP41VEYlxSqtg2KrPjFQF7YBEV5XULFrHggg9y0k7M9tsSE
dD+ljth0L8Xcs//73VKEcC8g+cnrfk5GvWmT0RoRRaD+NBxqscaspO1RWRBgC92b
/PbUIis8NDhAk6hNKDjMyY4KpplfxnkIY+d45g1fGgll+MFo4JFafmKJXUQkLnNO
yALAqJ+y8JvKYyfI87v88sEjRcC6csMBjDTehcvqK5N48OI1H8WdE2d55Pdf5VDD
zgiNFsyDCXASPIeCJO/cXSf6yg/P/pvchk52f2Ab3hazl2vAkX3k06w0Q5aUzS9g
fAdqr+t8ckWS1Q==
-----END CERTIFICATE-----
Generated at Sun Jul 19 02:20:50 2026 by rpki-client