Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File:                     HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier:          h4Iplssu3ZHC7RiCIzWtwuxv5SrqW7hCsayrYfW/Kqo=
Subject key identifier:   62:96:EC:0B:4D:4F:B5:9F:03:8C:DA:C2:75:2A:66:FB:9E:62:89:46
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer:       /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial:       019CA7C5A9C7751F7EA0CD7BC697991D5A5D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number:          145C
Signing time:             Sun 01 Mar 2026 05:01:14 +0000
Manifest this update:     Sun 01 Mar 2026 05:01:14 +0000
Manifest next update:     Mon 02 Mar 2026 05:01:14 +0000
Files and hashes:         1: FMHMs5u6nqIr6z09yDsjzYxfks8.roa (hash: cXOK9Ev2UNFSti3Tqnxxgi2cL3wHqDi6S1Qe8D5ON6A=)
                          2: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: /NGiRrIhj7Pqixvs4mN33AnVdNBEuDi/dKkOlXKOkgQ=)
                          3: SgzTZO7h0qw0lQtLCLQDxdwtTHc.asa (hash: YpjRapR2fvquPrVNxyf5Ct4ddLeyNJ16sV02TNO6WCo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 05:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:a7:c5:a9:c7:75:1f:7e:a0:cd:7b:c6:97:99:1d:5a:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
        Validity
            Not Before: Mar  1 05:01:14 2026 GMT
            Not After : Mar  2 05:01:14 2026 GMT
        Subject: CN=6296ec0b4d4fb59f038cdac2752a66fb9e628946
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:63:98:ad:6e:8e:6d:fc:ac:2c:44:69:ea:5e:
                    ed:92:f7:df:9b:dc:e1:b6:57:30:22:20:b2:31:18:
                    54:b6:b0:98:30:5f:76:85:f7:05:7d:78:bc:f1:80:
                    24:30:6f:09:1e:96:4e:b4:dd:a4:63:79:59:c4:86:
                    55:d2:34:f8:d8:c8:ed:6d:bc:ee:7d:a1:eb:5e:63:
                    2d:ca:4d:d0:b5:58:ac:26:fb:3b:81:fc:a2:43:b6:
                    4c:f1:12:ed:f5:3f:70:4c:81:96:d6:40:9a:84:2d:
                    e4:0a:b2:2d:ff:a0:93:57:09:3b:81:44:6b:de:c9:
                    cb:2a:cf:83:63:2d:de:7b:6b:1b:9f:ce:c3:97:7a:
                    9f:56:57:a3:30:2a:78:2d:cf:96:45:f9:d6:8c:16:
                    27:ea:46:ba:39:b7:a8:60:c4:29:8f:56:79:45:4e:
                    c9:e2:96:99:aa:a1:1b:58:f6:26:eb:30:eb:67:34:
                    d1:eb:37:25:bd:7f:81:1d:c7:b1:39:da:75:96:8a:
                    f1:51:3b:5e:9d:03:84:8b:a5:da:0c:08:60:91:1b:
                    f9:37:5b:1d:e9:2f:fa:4b:fe:49:d4:54:2c:37:de:
                    64:14:a2:17:88:2e:1c:72:19:4b:65:62:e7:da:24:
                    89:c0:0a:43:5a:d3:8d:b1:7d:91:2d:77:c5:36:65:
                    82:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:96:EC:0B:4D:4F:B5:9F:03:8C:DA:C2:75:2A:66:FB:9E:62:89:46
            X509v3 Authority Key Identifier:
                keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:81:09:17:13:9b:35:8a:e1:70:5f:94:47:43:87:71:0a:84:
         57:ee:ed:b6:ba:2f:0c:7b:fb:eb:57:d3:a0:90:e8:65:ed:f6:
         e1:ab:63:b5:76:66:17:78:28:ab:cd:54:b1:fe:8d:d7:14:61:
         d1:30:22:ac:72:7a:c0:5b:d1:5b:e0:33:80:33:21:f9:6c:ef:
         85:61:53:92:5f:72:58:d2:bc:a9:ab:80:b5:7a:b4:5e:6b:9f:
         7f:41:e9:16:85:83:9b:4c:6e:18:df:ea:8c:1a:79:b6:57:a3:
         24:c5:32:5a:2b:57:d6:8a:49:0e:6a:ba:f1:21:c1:65:71:02:
         cd:b9:5e:d1:f3:ee:10:e3:4a:47:55:ec:f7:d4:be:a2:ff:33:
         c1:9b:3a:fa:1c:7d:e1:e8:80:a9:f5:8b:fe:55:0e:e7:b9:4e:
         e5:ee:02:8c:9f:80:2a:de:0c:60:3b:d7:6e:69:82:2d:f0:b3:
         9d:9f:a1:be:18:0c:c3:b6:c5:3e:e2:08:d1:57:54:f8:1b:e4:
         af:d4:87:55:40:aa:c2:85:83:2d:cb:2c:c1:08:96:a6:76:81:
         a0:e4:87:01:fa:ec:15:77:3a:5f:0d:73:e2:e4:05:7a:20:c1:
         0a:f4:26:57:00:60:62:06:b9:39:a3:52:e0:7f:0d:9e:1c:24:
         f9:4f:30:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:44:53 2026 by rpki-client