Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft
File:                     bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json)
Hash identifier:          WodGcI5Fq6V7WeIQzabcxKHAJMIoW/UgnF2Vgm/O4xM=
Subject key identifier:   0A:C9:D9:7B:FE:52:A7:20:E1:D0:38:16:7B:19:53:9D:36:7C:BD:30
Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
Certificate issuer:       /CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Certificate serial:       019CAD2287A7CA5D63EBE8391BD5E66E6C50
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft
Manifest number:          18CE
Signing time:             Mon 02 Mar 2026 06:00:47 +0000
Manifest this update:     Mon 02 Mar 2026 06:00:47 +0000
Manifest next update:     Tue 03 Mar 2026 06:00:47 +0000
Files and hashes:         1: TjYcJALyGbmW-x31ry7QsUvdQtQ.roa (hash: knhLPKVdJjwTBCuKiy0BNSL8TQGPgiu2tFYYWRO2204=)
                          2: baEkayAg80jmYDBU-ExaHSLpuaI.roa (hash: nAErtQy9uElHFQjfJS5ckQ4epiwL6hvpsQEYN9BEeqw=)
                          3: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: jRmZIaYcZJ32lStmJ8vpA4aXW50AngJVdnDptRf84uY=)
                          4: cGs3UaDvGLQ1Q_TQpZAPaINt4Es.roa (hash: W7uHnT9KoPvCIjHy/wyMQaAb03AUeFyxBB7Do1XvIvI=)
                          5: ebSZBecc7df92SgP59-y12trz8Y.roa (hash: eWLHCXv7jbIrxX4dZcu1pV/1wCL3MzIiRwN/vf2jitQ=)
                          6: nmGtGkrhBfqxDaqozTHEU7woU_8.roa (hash: myNlScXFtUNhqDOYxLDED2mEeSRwem2M2mluAw2qbGU=)
                          7: oRALtbh2nuCRd23sDYqfy35X5z0.roa (hash: jC6NP1kM59PVY3etFPE/j9NV0XqouvnOb2E4RPSGrX4=)
                          8: pI2S2lg5Mevtnr1gNuhTMLXlTZk.roa (hash: 5cp4WqQX2Fq4/2gG8NNXNJQnzkTkhV+uz8kgPR8ik8M=)
                          9: pUi-gLSXqZ0JaQPDBRSSYpMiavg.roa (hash: BVbd5i0a2oHy3QrO+gV4ifjJEQxi06QcvV9UBgsyx9E=)
                          10: rWySjgHmxws3lM6jmie75S8CDBw.roa (hash: At0oBHsNt1VyqDJTW3hMzgCfUrv9SJ/hPxisShjHIa0=)
                          11: yYjK6TLqyOsG3tmiBYFMP1Aoexg.roa (hash: 3ZWyZKdoBkHem28rqJLRhRuGSLJ2oX1IHJZHOWmP0p0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 06:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:22:87:a7:ca:5d:63:eb:e8:39:1b:d5:e6:6e:6c:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129
        Validity
            Not Before: Mar  2 06:00:47 2026 GMT
            Not After : Mar  3 06:00:47 2026 GMT
        Subject: CN=0ac9d97bfe52a720e1d038167b19539d367cbd30
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:23:b7:ae:00:c6:57:1b:e7:b2:e8:24:be:f4:
                    c1:ab:5c:71:36:bc:cc:47:a5:d8:f0:51:b8:fa:99:
                    91:99:fe:32:1b:6e:3d:81:6f:cf:0f:57:26:6e:a4:
                    7b:15:46:cc:ba:c5:d0:15:56:a5:cb:86:72:38:b8:
                    01:51:62:c7:f3:c9:8b:c4:be:1d:e0:a4:1c:d0:d3:
                    38:04:49:c3:f6:7f:11:19:11:9b:71:10:63:ec:e8:
                    69:b7:44:29:29:34:1b:b5:30:12:55:1b:5e:ba:28:
                    e2:ed:17:4f:51:bc:07:25:36:b0:33:2f:19:d9:b2:
                    e1:8f:9b:37:f2:e7:1c:24:02:35:48:30:8b:b7:d3:
                    8f:10:b3:f1:de:4b:a3:05:93:de:24:66:2b:e1:62:
                    15:38:f6:c2:34:cd:38:b5:a0:09:56:dd:18:de:20:
                    d4:d7:dc:ad:08:54:72:ab:39:b8:45:ce:62:2c:2e:
                    4f:e6:fa:7e:8e:de:cf:27:f9:78:e4:5f:eb:9a:b9:
                    1f:18:8c:8c:48:7d:05:65:b1:65:54:7c:6a:c5:5b:
                    b8:e7:63:bf:c5:56:02:ba:72:a0:02:8b:05:9b:62:
                    41:ee:71:3c:6c:17:00:b8:ad:c4:1b:6c:b0:25:02:
                    14:be:29:88:9b:aa:e7:e5:dd:d1:93:5b:31:a5:af:
                    7c:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:C9:D9:7B:FE:52:A7:20:E1:D0:38:16:7B:19:53:9D:36:7C:BD:30
            X509v3 Authority Key Identifier:
                keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:d3:0f:75:86:5d:0d:1f:ea:ad:fd:62:a8:46:05:13:1c:5e:
         36:aa:e5:d8:ca:34:10:4d:ca:4f:d7:4e:c5:4b:66:7f:da:11:
         b6:4a:39:83:e8:25:77:81:bf:03:2f:d6:fa:af:03:98:91:7f:
         84:f5:8d:0a:78:3c:d0:b2:90:35:e0:23:71:2c:dd:f8:7d:15:
         72:09:af:1c:f7:c6:e9:a5:40:a0:ed:8b:92:c1:55:eb:01:3f:
         8b:e0:d2:68:5f:8c:b1:68:9a:4e:90:6e:2f:d7:c2:e0:5e:2f:
         1e:d8:47:61:1a:65:5f:41:c3:14:86:a7:34:9a:79:00:86:0b:
         7d:82:34:6e:37:54:37:2c:a7:b8:74:df:e2:83:6a:d3:36:eb:
         0e:a8:62:e8:e9:a3:52:7c:7a:01:2f:9d:4f:a1:78:c5:00:03:
         fd:f4:24:a4:f5:aa:21:56:7c:b3:55:c4:97:13:0e:f6:03:0c:
         ea:40:ea:68:73:5c:cf:fd:84:58:86:f0:50:16:05:a5:b3:32:
         5d:80:ae:2e:23:42:4b:9b:9c:7f:87:16:6d:ba:d0:68:5f:a7:
         11:5e:51:96:17:ff:17:65:b7:58:c7:7e:92:6e:31:d7:2b:0a:
         f8:7e:5d:a3:b6:72:30:85:04:a2:af:ec:87:b5:af:53:6f:72:
         d6:41:54:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:00:37 2026 by rpki-client