Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
File:                     bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json)
Hash identifier:          iMCB5XmCJEqKz7n4Uj3L3p3VMN8CT8of+4XvBf6wnhg=
Subject key identifier:   2C:57:79:06:3E:E9:2A:0B:94:0C:AD:32:4D:32:85:10:CD:EA:56:6A
Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
Certificate issuer:       /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Certificate serial:       019F2811E4D587EDC80CBAB3042AA4D402D2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
Manifest number:          1990
Signing time:             Fri 03 Jul 2026 13:01:29 +0000
Manifest this update:     Fri 03 Jul 2026 13:01:29 +0000
Manifest next update:     Sat 04 Jul 2026 13:01:29 +0000
Files and hashes:         1: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: atq84ujGJkOw2/cST+uJsIUlUc35OvJ6NbADCJxNHSY=)
                          2: rLpRZvFN9tLJOZKsRQ2iN0bOTkA.roa (hash: 7Y/pwxfKMpnXy8fpQNc1oxHBEDERRxAILiQLxs4GnLU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 13:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:28:11:e4:d5:87:ed:c8:0c:ba:b3:04:2a:a4:d4:02:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
        Validity
            Not Before: Jul  3 13:01:29 2026 GMT
            Not After : Jul  4 13:01:29 2026 GMT
        Subject: CN=2c5779063ee92a0b940cad324d328510cdea566a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:b9:88:79:a1:4b:62:13:71:3c:65:88:c2:d9:
                    36:e3:77:a5:34:ba:b0:59:8a:49:79:6f:e2:5d:08:
                    db:31:b5:3b:fd:1e:3d:8b:07:27:d3:45:da:73:63:
                    5b:37:2f:be:a0:9f:d3:e2:6e:68:c2:c6:e5:38:90:
                    5d:2a:7c:05:dd:82:5c:2c:7e:83:02:99:57:37:a7:
                    12:94:96:b8:63:89:98:6f:dd:a3:58:45:5c:90:89:
                    57:5e:d7:5b:a6:c0:3e:b4:ae:d4:86:f1:67:68:b1:
                    41:93:91:05:7b:ef:86:0d:c1:78:f1:d9:76:71:ae:
                    bb:90:27:09:9e:d7:fc:5e:72:9b:6d:8d:14:bc:e3:
                    f3:81:53:30:c9:aa:ca:70:13:be:f2:bd:8d:15:c0:
                    68:fa:47:53:c9:67:37:1f:85:6b:c8:a7:2d:97:bb:
                    a5:95:1e:20:cc:36:49:ab:6a:95:d1:47:33:ad:50:
                    8a:f3:99:80:99:f0:6f:93:91:aa:20:b7:1f:f0:b6:
                    6e:d0:0e:cc:2d:c3:bb:53:63:9d:92:1e:78:f2:60:
                    3e:89:4f:c6:b2:b5:32:9c:a5:f2:0b:47:c8:11:fc:
                    9f:48:80:f7:6c:4c:08:8e:d5:22:e7:15:47:96:55:
                    f4:f6:ef:ac:00:d5:8c:4f:91:6f:c0:a1:10:34:9c:
                    9d:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:57:79:06:3E:E9:2A:0B:94:0C:AD:32:4D:32:85:10:CD:EA:56:6A
            X509v3 Authority Key Identifier:
                keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:68:0c:c4:fc:85:36:33:3c:2d:ea:4e:2d:f1:fe:3a:3f:13:
         1a:8f:32:c8:92:1b:e6:86:c5:fb:c8:64:ff:e9:a0:d4:ac:9c:
         ee:44:27:a2:1c:41:ef:1a:67:be:f6:6b:aa:6d:e9:5b:f9:ea:
         d0:ab:86:7e:df:76:b5:64:3f:62:02:28:e9:97:d4:43:bc:53:
         9f:69:ff:48:22:1a:e2:84:dd:c2:ff:17:a7:48:e4:ce:ac:c4:
         98:9b:0e:39:b0:d2:2f:61:d8:58:17:29:c8:48:3c:0d:bd:94:
         03:46:76:25:54:37:af:7d:50:17:29:2c:42:3b:6e:cc:63:8e:
         5e:86:a7:57:72:46:fd:06:98:f5:b7:85:7d:02:7e:fe:76:33:
         49:cb:46:83:d3:5e:0e:2d:79:8a:8a:5b:e4:b6:63:64:fe:0d:
         e6:5a:51:6e:9d:0a:19:87:a2:41:4a:da:f6:eb:99:ae:83:78:
         c4:b5:75:83:4a:73:c9:16:c4:3b:21:37:a6:a9:ae:6f:27:87:
         61:8a:ff:18:21:4f:92:3f:50:12:be:56:af:75:8e:44:a1:b2:
         b4:65:c7:8d:0a:41:0f:87:98:c1:be:54:7e:7a:9e:af:d4:23:
         7a:3a:03:de:24:0f:67:ef:66:d0:6c:9d:1a:9a:86:a0:ea:82:
         a4:02:87:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:47:02 2026 by rpki-client