Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File:                     KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier:          zmbwDNNKldaSI8x4joIEERFaYbWiKoNlAIlibZoO7qI=
Subject key identifier:   7B:DC:02:3D:34:8A:B8:9C:50:82:9B:8E:24:A0:54:4E:A6:29:0D:9B
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer:       /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial:       019EC0A4226A4D571425A4CA373280D1DF81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number:          08D0
Signing time:             Sat 13 Jun 2026 11:00:42 +0000
Manifest this update:     Sat 13 Jun 2026 11:00:42 +0000
Manifest next update:     Sun 14 Jun 2026 11:00:42 +0000
Files and hashes:         1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: cwhnjYwOJ9sWHPmD+bb4v9ucN/UG/lt8xi4cwuiRk3Y=)
                          2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
                          3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
                          4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:a4:22:6a:4d:57:14:25:a4:ca:37:32:80:d1:df:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
        Validity
            Not Before: Jun 13 11:00:42 2026 GMT
            Not After : Jun 14 11:00:42 2026 GMT
        Subject: CN=7bdc023d348ab89c50829b8e24a0544ea6290d9b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:cd:34:92:50:e7:22:08:87:bd:95:e4:2d:b6:
                    9e:ba:fa:55:75:3c:4f:f1:e9:45:b9:ff:3f:16:87:
                    e7:da:c7:09:d0:c9:16:b0:e1:9c:4a:e7:7a:06:0b:
                    e6:1a:81:29:09:f0:62:d3:c4:fa:71:ab:a6:e6:44:
                    1c:88:94:76:2b:4a:7d:8b:31:af:9e:89:61:95:19:
                    ae:73:40:c1:3b:da:d5:53:d0:03:40:9d:20:2a:41:
                    d1:f6:42:3f:dc:d6:72:af:2f:a8:77:a9:ec:37:21:
                    d8:73:dd:14:c1:99:16:f7:db:cb:48:54:94:78:dd:
                    21:fa:d4:c2:4a:4d:d8:57:17:10:bc:47:27:72:2d:
                    0d:b3:1b:d2:90:d4:f9:49:a1:84:d9:ca:a0:58:b5:
                    34:26:85:88:bd:5a:0f:9b:08:f7:97:61:a5:28:fb:
                    bc:4b:e4:59:fc:4d:92:d2:9b:08:8a:01:8d:3c:69:
                    20:d5:0a:7a:ac:27:5d:1c:e8:71:21:36:11:27:dd:
                    6a:61:a7:71:16:cf:23:e9:33:c3:39:0d:30:2c:87:
                    39:51:3d:0e:4d:be:58:cd:99:50:04:70:2b:88:72:
                    5b:6c:66:e1:55:e5:cd:22:04:d8:76:3b:8d:5f:f7:
                    9a:a8:fa:a9:95:64:d0:cc:09:36:86:d3:d2:db:f3:
                    e4:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:DC:02:3D:34:8A:B8:9C:50:82:9B:8E:24:A0:54:4E:A6:29:0D:9B
            X509v3 Authority Key Identifier:
                keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:9f:d6:82:30:a5:3f:c4:2b:a8:e8:7b:86:af:35:15:25:8f:
         f4:28:5c:55:b6:d0:3a:d9:93:e6:2f:f0:6f:4a:a6:35:e3:a5:
         4b:af:4e:de:1d:f5:0b:a4:d9:af:73:b5:76:9f:0c:7f:c4:0f:
         2e:ad:9e:96:af:f4:6f:8f:aa:95:94:2e:bb:45:68:a3:4c:68:
         60:22:76:f0:5b:7c:15:78:b2:f9:21:ae:db:62:f4:6f:01:53:
         ab:1b:ce:7e:a4:5f:82:d6:e7:91:86:21:e7:1d:c1:b1:e7:ba:
         cf:87:3f:a5:8d:7e:ff:7f:06:a0:ee:3e:00:23:80:c5:7c:b3:
         6b:84:8e:9b:03:95:12:2f:ae:32:1c:b7:a2:ea:e0:36:7a:39:
         7d:12:51:a2:0e:06:c3:29:ce:b4:7d:fb:e5:70:73:1d:52:1b:
         20:c7:31:4c:89:42:c5:7e:0b:05:1f:25:10:d8:11:4d:e4:67:
         c0:22:9e:26:58:12:3a:33:03:cb:d9:99:ba:96:50:17:ba:9e:
         c5:b1:07:7e:4f:8e:59:63:c5:e8:ef:6e:7a:a7:5a:70:06:35:
         bd:b2:ed:3e:1f:b3:e2:e6:c5:c3:24:90:b2:a5:0f:e0:01:0d:
         5f:dc:3f:71:51:8e:a7:34:75:97:ce:bd:10:d1:2f:76:7d:34:
         c6:34:b2:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:40:42 2026 by rpki-client