Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
File:                     pnac0wPoTc03o3XW52tgKfzDZ7Q.mft (raw, json)
Hash identifier:          eOgeMtNHVO3/JPWQItMxPbiGHrgYORslT0EdBBDG2GY=
Subject key identifier:   52:8B:95:CF:E3:D7:12:8A:8D:15:D7:07:6F:93:E0:18:EE:4B:26:9C
Authority key identifier: A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
Certificate issuer:       /CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Certificate serial:       019EBF5B2DA52C6CFC19B5AE6FFC3CB7C9DE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
Manifest number:          02E5
Signing time:             Sat 13 Jun 2026 05:01:24 +0000
Manifest this update:     Sat 13 Jun 2026 05:01:24 +0000
Manifest next update:     Sun 14 Jun 2026 05:01:24 +0000
Files and hashes:         1: ODmnFvkoRJ8KBXIwmG3VyMbhpMg.roa (hash: UzQ9zfqJ6GmOojpgnIMRQs0ikmH8yfkpdXYgZqB0SfM=)
                          2: pnac0wPoTc03o3XW52tgKfzDZ7Q.crl (hash: dJ5KIxL/F5g4EjyKuQoHstZ5qr3puaZQfygj+ypmExM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 05:01:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:5b:2d:a5:2c:6c:fc:19:b5:ae:6f:fc:3c:b7:c9:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
        Validity
            Not Before: Jun 13 05:01:24 2026 GMT
            Not After : Jun 14 05:01:24 2026 GMT
        Subject: CN=528b95cfe3d7128a8d15d7076f93e018ee4b269c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:a5:49:75:c0:4e:b5:48:42:09:03:59:d3:2b:
                    cd:b3:24:21:ff:1f:1d:7f:1e:0c:42:6f:61:79:1d:
                    b8:1d:b4:15:c5:c7:17:55:49:12:15:4e:b7:bf:20:
                    e5:2d:c5:ba:f9:9c:91:4b:c7:30:a0:59:b1:c4:c7:
                    aa:33:11:80:9f:fa:db:dc:26:e5:9c:14:2e:90:46:
                    fb:01:f1:cb:a0:26:1d:07:e0:d6:4b:5d:99:87:31:
                    96:c2:d1:55:9d:aa:ed:26:f0:93:06:85:69:37:d8:
                    96:73:29:ac:d6:de:26:9a:54:7a:7a:d4:fe:ac:34:
                    7a:2d:b7:88:22:2d:a6:f8:7b:8f:d6:2b:b0:c0:17:
                    84:a2:2f:69:1c:64:25:66:40:83:3d:50:e1:4c:a0:
                    fc:91:d1:d0:0c:de:e9:dd:dd:8a:e3:39:e2:65:b3:
                    03:84:a3:54:29:65:33:a5:cb:dc:56:08:86:50:84:
                    0f:5f:64:6c:33:32:99:2e:b2:c3:76:1e:24:a7:14:
                    36:c8:36:c2:d3:4a:75:7f:3a:42:39:c9:9e:85:d9:
                    bc:79:e8:64:e4:4b:67:98:e1:d9:f8:4e:d0:d5:5e:
                    bf:d4:41:c6:3c:ec:2f:41:29:be:2c:80:ad:52:4f:
                    fe:9e:33:09:a8:23:6b:6f:5b:f7:58:e3:05:be:20:
                    70:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:8B:95:CF:E3:D7:12:8A:8D:15:D7:07:6F:93:E0:18:EE:4B:26:9C
            X509v3 Authority Key Identifier:
                keyid:A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:99:16:be:f0:04:da:e3:bb:7e:16:1c:d4:ea:1c:3a:22:20:
         85:03:92:0f:c2:35:c2:4c:fd:61:61:fb:9f:dd:db:8b:03:72:
         3a:80:09:4a:27:67:fb:99:fb:dd:25:88:15:4b:75:26:3e:4f:
         72:dc:80:90:90:73:f1:bc:da:d2:f2:43:2a:02:6f:6a:c2:b9:
         2b:96:91:31:aa:3a:b6:6a:aa:a3:77:b8:a3:77:7e:0b:fa:1d:
         8d:d2:43:09:d5:43:f3:30:6a:75:5c:e3:c4:4a:91:36:a1:50:
         95:3e:e3:41:8e:f3:07:0c:75:dc:e4:61:4d:58:44:69:0c:1a:
         66:8d:ac:24:35:ee:16:6a:5e:3f:eb:95:22:d7:94:01:ed:4a:
         c7:65:9c:97:33:93:76:a0:cc:65:b9:50:23:55:9a:40:88:09:
         2d:a1:02:2d:0d:12:e5:2b:1e:99:12:4a:27:41:17:b5:11:98:
         42:1b:07:6d:5f:09:56:bd:ab:73:82:e6:eb:cf:62:99:37:05:
         9d:a4:9f:34:11:ac:6b:ff:2d:a1:bc:ce:42:fc:4b:26:11:b3:
         9a:61:e8:33:89:16:52:47:4a:e4:eb:4a:04:fc:b3:0d:7b:76:
         a0:bd:98:a1:94:ea:c4:c0:d6:1f:ba:56:11:4a:0f:a0:ad:17:
         02:d8:79:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:07:50 2026 by rpki-client