Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
File:                     Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft (raw, json)
Hash identifier:          wNfqYrdZy9/AargVYK/LYZkrovBXIuHmL8WtGVSRqag=
Subject key identifier:   4F:99:F9:14:3F:F8:0B:0F:FA:66:67:D1:46:33:47:6B:68:49:08:F4
Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
Certificate issuer:       /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Certificate serial:       019CACB539A9EC1A94ABC042CE0DE93F0848
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
Manifest number:          0F31
Signing time:             Mon 02 Mar 2026 04:01:23 +0000
Manifest this update:     Mon 02 Mar 2026 04:01:23 +0000
Manifest next update:     Tue 03 Mar 2026 04:01:23 +0000
Files and hashes:         1: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl (hash: pW8g+BnLOMUFFmLqgnmenWQvhI+kY7iICiZQdVr/980=)
                          2: R843p-38WteuOkSHzbf3qrehiDw.roa (hash: lL8mH/XViDvpJ3MkMI6sLi0P2Yyq2Vj6DtB1Dgsh4+g=)
                          3: lz_WC5uJeICfjQzpAPaUtpnLmOE.roa (hash: RYYydhlLpv7/DuyZEPW9/qv3fOSivSmlz/esgSVQG5U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:b5:39:a9:ec:1a:94:ab:c0:42:ce:0d:e9:3f:08:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
        Validity
            Not Before: Mar  2 04:01:23 2026 GMT
            Not After : Mar  3 04:01:23 2026 GMT
        Subject: CN=4f99f9143ff80b0ffa6667d14633476b684908f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:01:a2:7e:a7:50:cb:aa:aa:cc:d0:7a:d2:b0:
                    38:71:64:08:66:14:53:b5:45:39:d4:3e:b9:ab:04:
                    eb:e6:a5:50:ae:32:ff:9c:6c:30:11:e0:7d:ef:37:
                    6a:28:41:e9:d4:0f:e3:0e:bc:04:9a:38:be:eb:08:
                    52:c9:dc:77:8f:72:ef:a4:55:d0:b3:89:b4:6a:01:
                    14:57:46:1e:03:1f:f7:d3:ef:38:ad:c1:bf:3f:c1:
                    b0:5e:84:64:fe:84:c0:b3:a3:30:8b:f9:b8:c3:43:
                    1f:79:ff:19:e6:bd:2d:b8:2d:28:06:1a:46:17:81:
                    30:67:cf:fe:28:83:16:af:13:9d:b5:a1:e4:4e:07:
                    4b:5a:68:51:29:f4:a7:e8:f3:c7:71:64:e8:72:cc:
                    be:7b:c5:fd:54:a0:be:e0:15:70:7d:c0:8e:8a:86:
                    eb:76:50:af:40:29:4d:ab:81:f3:79:09:56:37:89:
                    f4:50:09:10:8a:ae:21:1b:a7:80:1f:19:5a:30:cd:
                    e6:61:f6:36:43:54:ea:27:3c:18:64:80:af:9c:9e:
                    2f:95:94:e4:10:5b:63:71:57:3c:ea:5c:24:37:07:
                    ce:64:38:e9:86:71:b3:6a:5e:b3:fd:98:9f:f8:53:
                    92:cb:51:1b:d0:c7:d7:79:93:47:e6:de:18:db:1b:
                    b5:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:99:F9:14:3F:F8:0B:0F:FA:66:67:D1:46:33:47:6B:68:49:08:F4
            X509v3 Authority Key Identifier:
                keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:6a:1c:2c:34:5d:a4:e8:a0:0e:74:e1:49:82:f9:3c:92:84:
         6d:ff:a0:7b:8b:be:f3:2b:41:57:c5:1d:f5:56:df:39:38:18:
         75:3b:19:53:f7:27:15:24:31:a9:c5:ca:35:73:82:f0:99:ee:
         f7:de:c8:a7:0e:8e:b3:17:9f:df:ab:86:97:93:5c:c2:51:a7:
         57:55:6e:66:be:4c:4e:a5:c1:22:cb:ba:4f:87:e3:60:23:a0:
         71:be:47:ee:21:5e:46:5d:7e:77:66:b9:ec:f9:d3:aa:e0:fc:
         9c:bb:a6:46:83:0a:d5:82:b1:0a:28:e8:ea:c1:6c:7b:30:c5:
         f5:58:a4:68:cf:17:6e:84:8a:b7:23:a2:99:81:86:97:eb:86:
         5c:dd:eb:42:59:c0:ba:09:8e:10:10:e8:ba:ae:fe:0e:86:f6:
         07:86:11:b2:01:92:10:82:99:aa:77:c4:18:d9:ac:1d:89:8d:
         6c:11:a8:2e:e4:29:8b:6f:d6:ab:55:f8:9d:ea:c0:36:06:04:
         48:19:a6:98:11:96:94:bf:28:70:ce:1d:45:13:49:b2:6c:26:
         dc:b9:07:b3:3c:9d:eb:cc:7a:94:e8:03:55:49:32:5f:ce:18:
         04:8c:6b:17:03:0b:ed:61:59:57:34:df:de:5e:3c:00:8f:72:
         0d:bf:c9:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:59:08 2026 by rpki-client