Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File:                     bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier:          PEmcZ7gf4wc8uSGj8Wp3PtlviDwiSRLxeUPYaGPBJGc=
Subject key identifier:   16:A3:C1:53:31:AA:6C:D9:1F:72:48:98:24:07:A5:5F:3D:DB:CF:31
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer:       /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial:       019EC1EDFA463B231E9155AAF0EDC9369F84
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number:          196A
Signing time:             Sat 13 Jun 2026 17:00:59 +0000
Manifest this update:     Sat 13 Jun 2026 17:00:59 +0000
Manifest next update:     Sun 14 Jun 2026 17:00:59 +0000
Files and hashes:         1: 1-XAPtzpEBbR-dL3HDvpMhi_QEZc.roa (hash: Y3Cc5NFdOsrYFpq1aDkqCQTbdqgeCbiviULrvKO6HjA=)
                          2: 84QPNs99F2FLKJtQBYoOZt3F3p8.roa (hash: EjdzLhSfZiaXxVtxCqo06jqnawXCpF2ar+1qQ5nt39k=)
                          3: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: pRYgfP9Wz48aLxc0DUfCgiUDETYcBdrITxUr+3vxUao=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 10:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c1:ed:fa:46:3b:23:1e:91:55:aa:f0:ed:c9:36:9f:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
        Validity
            Not Before: Jun 13 17:00:59 2026 GMT
            Not After : Jun 14 17:00:59 2026 GMT
        Subject: CN=16a3c15331aa6cd91f7248982407a55f3ddbcf31
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:02:5f:81:e8:68:14:cc:29:40:5a:38:c9:a2:
                    12:70:dd:25:60:85:ac:3b:c7:2a:3b:29:41:19:cb:
                    cc:f9:22:e8:d1:31:86:68:ea:8d:79:29:5d:05:1e:
                    f2:29:bd:47:17:b5:0a:1f:4d:66:59:f1:2d:c4:32:
                    aa:03:f5:1a:13:04:44:60:f1:99:d8:86:dc:98:69:
                    df:8b:d1:33:1e:e4:d5:e6:11:b6:7b:d6:26:74:38:
                    6d:53:ff:4f:83:79:14:45:34:62:17:66:d1:12:64:
                    73:14:a0:bf:ea:b4:51:b3:52:bb:44:01:a7:3e:d6:
                    98:90:14:70:83:6a:ed:02:54:b8:3b:91:eb:b7:6b:
                    0d:1a:e8:2d:c6:ab:c1:5f:7d:c4:ff:b1:cd:dc:90:
                    1c:ae:53:93:a1:3c:da:5b:5d:7a:bf:86:21:8f:ab:
                    5a:d6:f2:ae:2b:34:5d:97:14:f9:5b:72:67:6b:f7:
                    53:80:01:dc:71:99:a2:98:c2:e8:9e:54:6d:31:7f:
                    d8:8f:d7:4c:02:64:0c:95:dd:01:1c:12:0b:30:08:
                    ce:9a:05:0a:88:1c:c9:8d:98:7e:bf:bf:41:ba:ce:
                    67:e2:e2:b5:b2:78:8a:fd:65:df:c4:fc:ed:86:b4:
                    20:05:11:42:66:1f:f3:88:65:8e:90:34:73:97:ec:
                    92:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:A3:C1:53:31:AA:6C:D9:1F:72:48:98:24:07:A5:5F:3D:DB:CF:31
            X509v3 Authority Key Identifier:
                keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:8a:19:aa:62:0a:7a:22:7f:b4:3d:32:8c:97:37:27:32:0c:
         3f:ea:86:b8:97:e1:8e:89:f2:28:41:d2:b0:fb:5e:a1:98:85:
         f0:38:5c:0f:1c:a0:3a:62:21:a3:13:30:19:64:e3:dc:45:dd:
         f1:55:f6:4f:e9:93:63:a5:27:d8:1c:77:81:8f:e2:94:ab:88:
         e3:6e:3c:96:25:7a:ea:9e:de:a3:62:44:8a:b2:be:01:f9:70:
         df:65:3d:dd:0d:51:e6:fb:5f:c9:da:59:62:e0:60:21:f8:40:
         a2:54:f6:bb:4b:da:d0:05:ec:64:b5:d3:b3:ea:3d:4c:04:43:
         51:81:c6:6f:51:96:04:eb:63:f2:82:53:b9:e3:f6:44:c4:34:
         a9:fe:5e:2d:22:f4:40:e9:f6:b2:68:d5:81:3b:91:a3:e2:80:
         be:5e:55:ce:91:7a:dd:82:07:d7:b0:e6:de:84:7a:75:1a:a9:
         56:89:24:ac:e6:8c:27:c7:ca:5b:3f:ee:d4:05:d2:11:f0:af:
         a0:94:4c:34:39:4f:70:0d:f3:5b:c3:7b:39:3d:fe:20:9a:79:
         22:d4:19:08:5f:36:21:9b:b8:f9:3e:5e:62:75:ca:57:3f:ab:
         06:5f:16:44:eb:fd:fe:ea:0e:79:58:01:5f:36:16:61:5f:ef:
         9f:b3:96:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7B7fpGOyMekVWq8O3JNp+EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlY2Q1Y2FkNGQzMzA2YzRmNzJjNDJhZmMwNmU1Y2QxZmJh
ZmUzYTMwHhcNMjYwNjEzMTcwMDU5WhcNMjYwNjE0MTcwMDU5WjAzMTEwLwYDVQQD
EygxNmEzYzE1MzMxYWE2Y2Q5MWY3MjQ4OTgyNDA3YTU1ZjNkZGJjZjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQJfgehoFMwpQFo4yaIScN0lYIWs
O8cqOylBGcvM+SLo0TGGaOqNeSldBR7yKb1HF7UKH01mWfEtxDKqA/UaEwREYPGZ
2IbcmGnfi9EzHuTV5hG2e9YmdDhtU/9Pg3kURTRiF2bREmRzFKC/6rRRs1K7RAGn
PtaYkBRwg2rtAlS4O5Hrt2sNGugtxqvBX33E/7HN3JAcrlOToTzaW116v4Yhj6ta
1vKuKzRdlxT5W3Jna/dTgAHccZmimMLonlRtMX/Yj9dMAmQMld0BHBILMAjOmgUK
iBzJjZh+v79Bus5n4uK1sniK/WXfxPzthrQgBRFCZh/ziGWOkDRzl+yS1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBajwVMxqmzZH3JImCQHpV89288xMB8GA1UdIwQY
MBaAFG7NXK1NMwbE9yxCr8BuXNH7r+OjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi80OTY1MjUtMmMwZC00M2U0LTgxODgt
NWZiYzIzMGFiZGMyLzEvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi80OTY1MjUtMmMwZC00M2U0LTgxODgtNWZiYzIzMGFiZGMy
LzEvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIIoZqmIK
eiJ/tD0yjJc3JzIMP+qGuJfhjonyKEHSsPteoZiF8DhcDxygOmIhoxMwGWTj3EXd
8VX2T+mTY6Un2Bx3gY/ilKuI4248liV66p7eo2JEirK+Aflw32U93Q1R5vtfydpZ
YuBgIfhAolT2u0va0AXsZLXTs+o9TARDUYHGb1GWBOtj8oJTueP2RMQ0qf5eLSL0
QOn2smjVgTuRo+KAvl5VzpF63YIH17Dm3oR6dRqpVokkrOaMJ8fKWz/u1AXSEfCv
oJRMNDlPcA3zW8N7OT3+IJp5ItQZCF82IZu4+T5eYnXKVz+rBl8WROv9/uoOeVgB
XzYWYV/vn7OWBg==
-----END CERTIFICATE-----
Generated at Sat Jun 13 20:48:27 2026 by rpki-client