Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
File:                     LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft (raw, json)
Hash identifier:          +yj7w2c8o3RsAuQL10sfoTrVil0kfhmIz1/EEoIDEdU=
Subject key identifier:   D9:A6:CD:7A:AB:16:E9:DB:44:49:41:18:63:92:7E:EA:07:A5:B6:50
Authority key identifier: 2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
Certificate issuer:       /CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Certificate serial:       019D2772AA0C48EC52F51F83644756209B8A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
Manifest number:          01BC
Signing time:             Thu 26 Mar 2026 00:01:59 +0000
Manifest this update:     Thu 26 Mar 2026 00:01:59 +0000
Manifest next update:     Fri 27 Mar 2026 00:01:59 +0000
Files and hashes:         1: DQVqjzC5rdONHq62ZKGqNPJyrRw.roa (hash: dDYajOCYrao79EK9Kj5vMqOndXhk7A3V1BOKDwNdvCc=)
                          2: LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl (hash: oma2G2xNO0G8b3trNKnV7Lfbq+OE6qgTBZS15AQjens=)
                          3: NE7mP6LXofTtetMrz0bZ4gVjQZQ.roa (hash: OKq/sE5vI4Tp87JPYnyleJOP67qF4AH8+fsvJkq27uQ=)
                          4: p38nf1_J-hf5pJoRzzg0ttvCGMc.roa (hash: VNYm4Y42SOlQ9dXOHkzUE+m/pzdyaj+7nbqcjEjzt8M=)
                          5: zvVC2CdS_Vys1pvzmxe_hKJxz9g.roa (hash: Y5vKf0NFPya3WpVfMqZzvw2PJOdgljS8wUAGM1LsFLs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:72:aa:0c:48:ec:52:f5:1f:83:64:47:56:20:9b:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
        Validity
            Not Before: Mar 26 00:01:59 2026 GMT
            Not After : Mar 27 00:01:59 2026 GMT
        Subject: CN=d9a6cd7aab16e9db4449411863927eea07a5b650
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:b6:54:42:ab:0a:b9:10:08:f6:df:15:cb:85:
                    2d:15:cb:1c:c9:d0:2f:8c:76:b0:3d:f1:36:cf:cd:
                    bb:c1:33:0a:31:b4:6e:b2:58:29:e2:ed:50:22:b5:
                    ab:24:29:5f:a8:f5:80:63:24:5f:6f:01:d1:fe:38:
                    50:c5:f2:33:31:b2:fb:e6:7f:af:4c:c6:8a:16:86:
                    db:ba:b6:59:33:6a:3b:29:94:af:e6:12:26:00:9b:
                    26:ef:01:dc:a5:d3:dc:28:12:42:5e:08:f5:f2:83:
                    6a:7f:ad:77:a3:04:45:0e:7b:3a:7f:6c:b8:a2:e3:
                    1f:9b:17:b4:39:d1:5c:2d:0f:7b:54:da:5f:9b:7c:
                    18:96:fd:36:1e:73:fa:5d:16:9d:17:7a:93:07:4f:
                    6c:d5:04:4a:af:fd:9c:4c:c4:57:56:8a:b2:94:9e:
                    11:35:91:21:b4:f2:8c:b9:e8:e8:ed:c7:40:cf:b5:
                    97:58:5c:01:b3:50:36:9f:6c:8d:55:27:53:07:39:
                    da:b2:5e:d5:28:d6:08:3a:1e:1d:70:7e:b0:5c:f6:
                    4b:6b:32:e3:4f:d5:f4:da:12:50:a2:31:1a:2c:63:
                    f4:13:2a:ba:c0:57:8b:b0:79:59:af:0c:8c:89:40:
                    a7:36:1a:26:9e:a0:36:83:15:b4:c0:ff:5d:91:29:
                    d2:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:A6:CD:7A:AB:16:E9:DB:44:49:41:18:63:92:7E:EA:07:A5:B6:50
            X509v3 Authority Key Identifier:
                keyid:2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:49:34:9b:ce:ad:73:3f:c0:b7:35:56:03:73:e0:1d:fe:4f:
         fc:81:05:3d:0d:01:a3:5c:12:7b:a6:84:77:95:b2:42:58:7e:
         a9:c2:e5:7e:8b:90:2d:ac:f1:e7:e7:e6:6b:4e:c8:75:f6:ec:
         00:36:bf:9a:23:70:6b:63:da:c0:88:95:43:98:ce:e4:df:3c:
         ef:83:b7:14:8e:e2:fd:2b:f6:e7:1e:73:7b:23:05:e3:1f:58:
         8e:74:09:15:1c:22:43:8b:7b:a7:fc:20:34:e9:fc:2a:a5:4f:
         3d:97:65:2e:45:2b:77:3e:37:59:50:f7:91:71:1b:70:cb:ad:
         5e:df:ea:8d:26:1a:80:35:13:97:6c:bd:c8:f3:99:8b:b4:cc:
         3a:71:fe:18:59:1c:73:72:0e:57:47:63:06:d2:fc:b0:ee:07:
         d7:ee:5c:5d:46:f7:85:a7:1f:9a:65:85:be:70:c6:98:6e:5f:
         0c:43:50:27:29:aa:54:76:bc:ab:c5:0e:24:71:46:f4:36:dc:
         2a:e6:e3:5d:af:20:2a:3f:95:92:7f:c2:66:dc:ce:93:8e:f0:
         ad:b5:26:57:ff:95:31:32:97:8d:bb:26:74:ec:04:6b:ef:fa:
         65:a7:3a:f6:89:7c:ba:e0:02:12:5e:ad:6a:4c:a5:1e:5e:8e:
         e8:81:55:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:17:21 2026 by rpki-client