Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File:                     dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier:          g+rdv2Bo486Tg2VLBPbdu6D8wL1517PUedEk2lhxk9E=
Subject key identifier:   4C:09:38:42:6C:07:C2:C2:CD:E2:9C:AE:81:AF:50:C6:47:37:2F:36
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer:       /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial:       019E9B170DBFB3EABCF63F70ECC77EC24CA4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number:          11AE
Signing time:             Sat 06 Jun 2026 04:00:39 +0000
Manifest this update:     Sat 06 Jun 2026 04:00:39 +0000
Manifest next update:     Sun 07 Jun 2026 04:00:39 +0000
Files and hashes:         1: SwOC6LWRUnc-Ogb7u3vxF_0mea4.roa (hash: /q8N1XNG3IXyW6BA6haLHv1Ug3hcBfXRJEVoULv8zlE=)
                          2: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: ivUTfA0i9r8dYLIXJj+RoW5XE1Pv3DgMvRwq34vd4rk=)
                          3: iGjEi-RetR317ng4nZLQERiyp5Y.roa (hash: VlJirjJKzaqO+FqHC1L2a0e5Ten97AODI8Xgtdno6FA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 07 Jun 2026 04:00:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:9b:17:0d:bf:b3:ea:bc:f6:3f:70:ec:c7:7e:c2:4c:a4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
        Validity
            Not Before: Jun  6 04:00:39 2026 GMT
            Not After : Jun  7 04:00:39 2026 GMT
        Subject: CN=4c0938426c07c2c2cde29cae81af50c647372f36
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:6c:da:e5:4a:6d:2a:6b:28:34:97:7c:53:09:
                    4a:e7:07:82:15:6b:02:84:f8:38:24:5a:3a:83:1e:
                    d0:30:b2:f4:82:22:6b:fb:97:63:4f:e0:d2:df:09:
                    e1:0c:1e:6f:a5:e8:eb:64:ff:1e:6e:7a:a9:ee:af:
                    c3:c5:89:6a:51:69:b3:e4:58:30:50:ac:61:68:26:
                    d9:72:c0:06:ce:04:6b:ef:3a:2d:6b:17:e0:f1:ea:
                    12:be:bd:7c:c8:35:f4:7b:3c:51:d3:2e:19:88:ca:
                    47:e5:7f:85:52:3c:3e:e7:2e:7b:96:b6:42:a9:39:
                    57:39:68:ff:b2:80:94:79:96:76:c6:43:76:ba:e6:
                    ca:22:ac:f0:7d:55:74:b0:b3:42:a6:21:ec:da:d5:
                    52:6c:8d:5f:62:eb:d0:8e:e1:e4:9c:28:c5:1b:73:
                    41:20:93:ed:fa:18:ee:47:a6:7e:2d:af:29:6a:c7:
                    3a:7e:9f:ff:a7:16:c7:43:10:47:19:89:47:e7:d4:
                    d3:ff:5d:81:85:9e:67:7f:66:3d:3d:6d:e3:59:89:
                    65:32:ff:f1:ed:0b:f7:3a:b2:68:a1:6c:5d:d0:a5:
                    c3:1c:ca:83:85:1d:70:28:a3:d3:5e:8d:73:6b:7e:
                    30:1e:22:78:04:d0:cb:4b:e3:d4:2b:2d:8f:5c:e1:
                    aa:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:09:38:42:6C:07:C2:C2:CD:E2:9C:AE:81:AF:50:C6:47:37:2F:36
            X509v3 Authority Key Identifier:
                keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:6f:a5:0a:06:c2:74:66:9b:f2:15:3e:07:9c:e1:8f:07:69:
         ba:3c:48:2a:53:e4:8f:39:3c:8e:e1:33:19:d8:03:42:82:e3:
         e2:17:8e:fe:58:cd:d7:bd:0f:c3:d7:95:5a:13:76:9f:4f:57:
         8e:bd:2e:9a:0e:ab:b0:d3:60:b0:67:20:c7:fa:a1:68:56:9c:
         86:27:b9:35:bc:04:0b:c2:d1:dd:fd:21:28:25:a8:d2:8d:39:
         ad:87:dd:25:3d:da:cc:81:03:58:19:08:25:8a:05:a7:78:c9:
         5d:0c:39:65:14:19:59:97:0e:c1:58:8d:18:3d:c8:ad:f0:da:
         da:81:9b:f4:8d:1c:b9:85:3a:d4:a5:97:98:4a:16:d0:2b:3a:
         6f:78:c4:91:ba:a1:52:1d:20:66:2b:21:d7:31:ff:1a:d5:20:
         9f:eb:99:a8:51:ba:65:e2:d6:9a:af:99:05:6f:d1:13:a1:5e:
         59:bc:03:c8:44:5f:51:0c:a5:0e:b0:b2:38:bf:47:e8:c2:f6:
         d0:97:ee:ce:6c:5c:7c:d5:dd:1a:e5:63:1c:f7:9d:0c:76:7f:
         bc:57:16:a4:90:c1:b6:d4:93:17:15:3b:5d:57:b0:56:f9:53:
         48:ee:c7:d2:07:1f:ee:19:97:84:a5:23:9a:b7:cb:23:50:45:
         0f:8a:c0:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:37:07 2026 by rpki-client