Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File:                     kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier:          Qw4R4JoZ9/y4Ww2wqIgRIU5gvg8kHMlUKRgdEz2dP84=
Subject key identifier:   AF:00:2E:19:3D:27:87:A1:33:55:CF:26:92:28:8B:4C:B2:76:80:7E
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer:       /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial:       019F2547A0E69B3E9CBA886C29A7925FC703
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number:          1748
Signing time:             Fri 03 Jul 2026 00:01:18 +0000
Manifest this update:     Fri 03 Jul 2026 00:01:18 +0000
Manifest next update:     Sat 04 Jul 2026 00:01:18 +0000
Files and hashes:         1: EA-NEOtP3uDP9jqB_OwjrtlomoQ.roa (hash: f9ettJwQvG7z/vLtWszxNDWQ12P3Qi4WIIeHx0l0KMI=)
                          2: RUWdvZOnBJK0iIW0niXlms-_ZTE.roa (hash: 2+wMNcHhj5TvnlxNSP9HNjiQphs6X1jHdgsBG2jH8oQ=)
                          3: dJ99YeIlqHaqk3MFFpF1s00gLYY.roa (hash: 2get34VvGB/+dlsQY7O9iVM7eMGsBo6doetqxUk2mpw=)
                          4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: yYXtZf3ZAcKB/vd+TBYwc0uLue970kE8YlRJNWIQiyw=)
                          5: oZzPr194SGFDBoXBt9T9kB-yFLc.roa (hash: Dw3uJz0rcR+PJswxCLk9+YfSwY4+DIuftXl5NNe/QJg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 00:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:25:47:a0:e6:9b:3e:9c:ba:88:6c:29:a7:92:5f:c7:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
        Validity
            Not Before: Jul  3 00:01:18 2026 GMT
            Not After : Jul  4 00:01:18 2026 GMT
        Subject: CN=af002e193d2787a13355cf2692288b4cb276807e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:74:6e:07:eb:95:8e:2d:6b:8c:01:e5:af:de:
                    33:18:ed:9c:36:23:23:28:ad:4d:13:05:94:6b:63:
                    be:fa:a4:a7:7f:c5:eb:70:3d:55:57:bc:0c:aa:77:
                    88:4a:e0:a2:7c:49:01:92:43:eb:21:c7:b3:10:42:
                    70:4e:ad:0e:b4:63:4d:73:aa:9a:5f:c9:94:fe:67:
                    1f:0e:1a:83:e3:97:4f:e4:9c:26:e8:82:15:84:2b:
                    07:6a:5b:02:21:5e:81:21:13:b8:17:83:35:31:22:
                    0d:39:76:bb:2f:25:7f:ae:e4:81:a6:8f:42:1f:56:
                    4d:8d:bf:1f:ff:af:0a:53:06:9a:2f:f7:86:5c:9e:
                    4c:b6:dc:a1:0b:d4:dc:92:f3:e1:03:19:f4:99:f6:
                    d9:6d:16:a0:34:65:94:e9:e9:d1:ed:34:80:c7:cd:
                    3d:7c:cd:66:46:6d:8a:6c:59:fa:25:15:b6:7e:ad:
                    94:7d:30:5b:25:ae:0c:a0:e2:b9:c4:4b:cc:79:dc:
                    00:97:b6:8a:fa:a7:4e:34:5c:f7:b9:aa:32:76:b8:
                    36:c7:db:ec:8b:e9:26:01:b9:47:f6:fc:b3:5a:16:
                    70:35:2c:46:53:56:2d:2d:42:a2:a4:1b:a4:b6:e0:
                    30:49:19:d7:d8:6f:6c:aa:69:0a:bf:2d:fb:35:06:
                    53:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:00:2E:19:3D:27:87:A1:33:55:CF:26:92:28:8B:4C:B2:76:80:7E
            X509v3 Authority Key Identifier:
                keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:ff:97:2b:42:de:f2:e6:7b:28:26:38:66:48:1a:b0:c2:f9:
         0e:12:ad:ff:e5:a6:50:9e:e4:fd:fd:8f:29:da:02:ee:2f:74:
         fd:d1:13:ff:5f:a6:1d:89:08:dc:0e:ec:b3:3e:43:a2:86:c6:
         5f:f9:08:0e:03:ed:4c:3f:0d:16:99:66:34:65:23:52:29:60:
         84:58:38:68:99:23:18:49:61:f7:7f:a7:67:ed:4a:d1:53:be:
         03:c5:18:9b:64:c0:74:00:04:e7:39:3d:82:09:ec:30:27:57:
         f2:f9:3c:3c:5b:5a:4f:bd:21:d0:4d:46:b4:5b:c8:07:c1:72:
         86:81:29:c3:a7:58:d8:a5:18:24:57:19:fc:85:45:a8:2f:65:
         26:28:39:07:9a:dd:db:38:31:bb:37:0b:87:8e:80:54:cc:ca:
         a9:75:fa:76:6e:03:12:aa:11:d1:21:e3:a0:26:e1:09:6f:bc:
         fc:b2:a3:c8:da:bc:74:f1:d2:fb:d7:8b:88:d8:14:8e:5c:e9:
         98:ee:59:89:85:1a:e7:8d:68:40:40:d4:36:5c:8d:e2:af:34:
         79:81:db:90:df:45:87:ed:0f:3a:29:8f:c9:e2:7d:69:c5:06:
         30:a2:b4:0a:e2:6e:95:71:62:5e:ba:c3:58:ad:78:b0:a7:44:
         de:d6:06:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 05:41:52 2026 by rpki-client