Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
File:                     8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft (raw, json)
Hash identifier:          MiKruy9dGUq1F52InKcQgA590xSw73CRPFqnRn8lA08=
Subject key identifier:   BE:10:C8:77:51:32:00:A4:C8:17:C0:8F:82:66:BE:59:81:B7:32:FD
Authority key identifier: F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
Certificate issuer:       /CN=f0a9005423147453909366c6b4d09c31958acc1c
Certificate serial:       019D26CCD6C30AA351AA076C9DC880866166
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
Manifest number:          0220
Signing time:             Wed 25 Mar 2026 21:00:51 +0000
Manifest this update:     Wed 25 Mar 2026 21:00:51 +0000
Manifest next update:     Thu 26 Mar 2026 21:00:51 +0000
Files and hashes:         1: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl (hash: jUknjUHQMVqNj6C9rG2LtkEX4OXGL6bWtJkUS8Geo/k=)
                          2: XcFf7Up-3gxNLfYQhK3orqJHx2g.roa (hash: QLiEavcgMLadSiCowCkkaoXoMEv3eEuB33IWa6r1pTA=)
                          3: dHpkVz1qG-AF-2ObL_WKlgFCa5A.roa (hash: pDto/Hqi4osJfNZa1fOxjtdmxoHJy3MfMIgMhgvqHY8=)
                          4: i2pSpEnVtokJriFjoKmVIGfuRJo.roa (hash: D+Hmz9bjiSh22qk0mMxyTTXET+bcUl31CAB7ub4kHU4=)
                          5: w3Ce4TCDal1nhbZgs86uVw-EDHA.roa (hash: Y1YtZuc0ZO1egV90xVGx2//JBR2jEYUzSnwVAWKeAz4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 21:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:26:cc:d6:c3:0a:a3:51:aa:07:6c:9d:c8:80:86:61:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f0a9005423147453909366c6b4d09c31958acc1c
        Validity
            Not Before: Mar 25 21:00:51 2026 GMT
            Not After : Mar 26 21:00:51 2026 GMT
        Subject: CN=be10c877513200a4c817c08f8266be5981b732fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:84:4a:5f:aa:7b:8a:2f:ff:fd:68:55:9a:e7:
                    db:6a:af:5b:09:c5:eb:60:e9:80:0e:bf:8d:37:3a:
                    19:66:68:9b:8e:b6:32:b0:40:a0:fa:76:d7:ea:5b:
                    ee:54:dd:44:77:b2:01:87:f7:4d:b7:2f:fc:a8:9b:
                    49:6f:ea:bf:79:2e:1b:d7:73:7f:60:bd:be:85:34:
                    60:4a:1b:28:b1:39:1d:f0:c8:1e:4f:82:b4:33:a0:
                    42:bf:67:9c:82:e9:ab:c2:13:f3:b6:cf:90:4e:ff:
                    85:14:18:c8:f5:c9:75:58:07:e5:05:20:29:0b:d2:
                    ff:12:2f:05:ae:88:3d:f9:c2:aa:91:f5:80:1b:c5:
                    4a:13:aa:43:89:6c:50:bf:6c:89:aa:61:2a:ea:d0:
                    c6:f9:00:bd:4e:82:2e:bd:17:87:4a:2f:f0:82:6b:
                    e7:d5:d6:b9:bd:25:ec:fb:5f:ea:eb:b9:da:f7:23:
                    0d:9d:22:47:df:76:9e:a3:4d:55:fb:f1:6d:bb:6a:
                    ca:0d:1e:9d:e6:65:4f:56:cf:4a:1f:29:cf:36:8b:
                    7b:8f:3e:1d:70:5e:af:97:a5:a4:74:14:1f:ba:11:
                    7a:94:b7:b7:72:53:24:26:c0:c8:18:7c:7d:e1:df:
                    9a:b9:a5:52:d3:25:33:57:b4:41:28:c0:63:f3:31:
                    ee:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:10:C8:77:51:32:00:A4:C8:17:C0:8F:82:66:BE:59:81:B7:32:FD
            X509v3 Authority Key Identifier:
                keyid:F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:57:7f:7d:06:6a:1e:59:f8:42:a5:bb:34:16:b6:b7:78:43:
         bf:9e:d3:8c:fb:8f:ee:d3:4b:2a:f5:18:77:1c:0c:ee:ee:88:
         45:86:dc:f4:3e:f6:f5:c9:9b:49:9b:dc:51:b6:69:1f:ec:c1:
         36:2a:c1:ff:96:ee:1d:dc:98:2a:3c:95:36:9c:22:45:5d:cd:
         54:5b:32:ef:e6:7d:33:6f:c0:21:5a:cc:30:05:de:b3:a9:ea:
         1c:5a:bb:3b:53:eb:a1:8f:ed:5a:4d:5c:bb:0f:00:d7:14:60:
         96:26:70:d8:a9:00:a8:7e:04:f7:c4:79:14:80:40:1e:9e:0e:
         10:32:2b:35:b1:55:94:ff:ea:7c:40:95:5f:88:0c:f0:db:c6:
         e1:d2:08:29:68:dd:e5:1c:3a:16:2f:37:2a:74:64:87:0a:8f:
         fe:57:4d:94:9f:d9:a7:9d:18:e5:57:73:16:43:36:9e:69:9e:
         a6:16:07:09:ba:a6:0b:7b:c4:74:2c:36:4b:c1:97:c1:7f:5d:
         49:4e:ec:93:90:fe:8f:cf:6c:0e:bf:83:68:b0:51:0d:6d:da:
         b2:6e:65:60:ae:9a:29:46:9f:47:30:af:25:ed:5d:a2:b7:a3:
         38:c2:a3:b5:ac:4b:19:9b:e5:91:17:22:fc:f2:da:28:f7:7d:
         04:33:38:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:51:33 2026 by rpki-client