Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
File:                     PI_isZvT639wpO7atha1MlABFSA.mft (raw, json)
Hash identifier:          O+o29vu1WdHaULk7CU91IIvGRdkztGt48jvcjmX1iW8=
Subject key identifier:   C9:FC:97:5A:C5:A9:7C:7E:75:B0:AC:9B:BF:31:CA:F6:C2:1E:3F:62
Authority key identifier: 3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
Certificate issuer:       /CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Certificate serial:       019EC224EE3B76F477428E4E3BB35AB2BF53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
Manifest number:          062E
Signing time:             Sat 13 Jun 2026 18:01:00 +0000
Manifest this update:     Sat 13 Jun 2026 18:01:00 +0000
Manifest next update:     Sun 14 Jun 2026 18:01:00 +0000
Files and hashes:         1: PI_isZvT639wpO7atha1MlABFSA.crl (hash: kuzqndBD1fB3jfQfdbU/bZxBPkKZC4Ps/kOItOOMI/s=)
                          2: _wDS1_1VZDZLh1V0Yi_J3rD_hL8.roa (hash: xAETLQSOhALtmZdJmJO16llGLniZWhsZVgeHdBOnhYY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 10:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c2:24:ee:3b:76:f4:77:42:8e:4e:3b:b3:5a:b2:bf:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
        Validity
            Not Before: Jun 13 18:01:00 2026 GMT
            Not After : Jun 14 18:01:00 2026 GMT
        Subject: CN=c9fc975ac5a97c7e75b0ac9bbf31caf6c21e3f62
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:c3:2e:59:07:e2:95:4c:dd:d1:39:f9:99:5e:
                    bc:e9:87:5d:79:0c:7a:f6:65:ca:39:80:55:b5:91:
                    3c:e3:2f:59:c2:7b:dd:66:f8:3e:98:25:e2:37:14:
                    a7:1b:ed:08:aa:d4:0a:8c:cf:2c:bc:4c:24:84:5a:
                    93:22:56:f0:d2:08:fc:ed:ac:24:b0:9e:57:bd:22:
                    09:6b:0c:2f:98:db:47:bd:83:76:5b:0d:7b:11:32:
                    10:93:16:6c:0a:32:87:77:9b:c7:8f:2d:71:5e:6a:
                    98:82:27:e5:b3:66:de:29:33:29:29:c7:6f:c3:69:
                    a3:49:23:c1:3f:67:2e:57:9d:51:05:2b:dd:89:2f:
                    fa:19:1d:b2:41:a9:73:f2:2d:0e:68:50:b5:da:ab:
                    95:f3:60:eb:ba:2e:ca:ec:ea:8d:d9:b6:6a:ab:f9:
                    f4:fa:e4:34:bc:7f:b8:a9:c3:5e:90:a2:b7:8c:f2:
                    d0:5d:d2:39:73:2b:e8:6b:c9:45:53:69:9f:d9:44:
                    aa:0c:ab:e5:c2:0f:e5:a5:a8:7c:95:11:68:b3:0d:
                    65:60:89:80:7f:73:c4:bd:86:34:6e:98:ad:6d:19:
                    dc:6c:33:88:b4:54:46:a1:4f:57:6a:9d:6e:d2:b1:
                    73:e5:33:6d:28:e9:11:f2:a4:1b:b0:34:67:66:f2:
                    49:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:FC:97:5A:C5:A9:7C:7E:75:B0:AC:9B:BF:31:CA:F6:C2:1E:3F:62
            X509v3 Authority Key Identifier:
                keyid:3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:c9:c0:f8:97:5d:40:c6:1c:4a:ec:48:f5:29:69:41:ee:1d:
         3d:60:e2:b1:a2:12:3b:a2:55:35:6e:0a:ba:4a:2c:a5:63:4d:
         6f:96:64:6d:6e:0a:81:5e:a1:e4:f3:38:04:ab:bd:48:c3:63:
         6f:36:c6:ae:b2:31:bd:e0:b1:8d:cc:27:b7:89:40:ab:eb:3d:
         97:85:58:00:15:6e:e2:a7:6b:ec:e0:eb:ee:2b:a6:68:ab:f6:
         3b:9d:d2:48:bc:c7:da:10:2f:f9:d7:18:ba:8a:bd:59:a9:a8:
         73:e2:85:dc:66:f9:79:3d:eb:9f:c2:53:6d:be:ef:f9:6f:cf:
         6c:60:52:1b:8e:01:ee:52:16:95:2a:12:f5:c7:a8:be:24:e3:
         42:ed:60:1e:a8:c1:96:53:d3:c0:a3:12:04:64:78:62:ed:a3:
         33:aa:0c:f0:fe:3f:ea:8f:40:d4:5b:07:cf:74:71:49:87:49:
         e2:b2:45:92:a0:f1:e8:5a:a5:ad:7c:51:e1:d8:18:32:47:8a:
         29:58:de:30:ce:82:94:35:47:20:7a:14:0b:37:41:dc:f4:f4:
         f4:a9:6e:19:36:2c:3f:83:12:ed:c6:7c:19:b3:2c:37:e5:41:
         58:27:9d:89:95:10:88:f2:4f:fc:97:28:b1:d9:7c:32:14:f8:
         23:e5:18:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:32:41 2026 by rpki-client