Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File:                     gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier:          OjfAZvFjVii0pl3IkWAJm5xzbfqC/zSawOVgVnpdPdc=
Subject key identifier:   1F:1E:D3:B4:14:0E:54:E4:ED:5D:0A:BE:39:1B:C8:3E:92:C1:9E:9F
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer:       /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial:       019F506912BCE5BA06794270CE7D48F2E37E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number:          140A
Signing time:             Sat 11 Jul 2026 09:01:31 +0000
Manifest this update:     Sat 11 Jul 2026 09:01:31 +0000
Manifest next update:     Sun 12 Jul 2026 09:01:31 +0000
Files and hashes:         1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
                          2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
                          3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
                          4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
                          5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
                          6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
                          7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
                          8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
                          9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
                          10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
                          11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
                          12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
                          13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
                          14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 4xq4w3z9oHd90InMMb2E7Prxtii5SW1yUh9+AFhtZfk=)
                          15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
                          16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 12 Jul 2026 09:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:50:69:12:bc:e5:ba:06:79:42:70:ce:7d:48:f2:e3:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
        Validity
            Not Before: Jul 11 09:01:31 2026 GMT
            Not After : Jul 12 09:01:31 2026 GMT
        Subject: CN=1f1ed3b4140e54e4ed5d0abe391bc83e92c19e9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:50:d2:ab:ac:bc:b4:93:3c:2f:10:1e:a2:8c:
                    b6:71:97:df:73:2f:9a:f4:fb:28:10:63:18:6f:e0:
                    70:e4:08:61:9a:c1:e4:98:52:86:3a:10:b7:27:81:
                    3e:bf:13:9c:80:6c:61:23:c1:2b:34:48:f7:52:cc:
                    19:b7:f5:84:47:2f:99:5f:af:ea:78:c6:ed:3c:99:
                    3c:45:21:f0:01:b4:d7:3e:ff:6d:b0:9f:ce:c0:fb:
                    28:12:e7:35:a6:d1:8a:49:05:2f:51:7f:ad:78:ff:
                    4f:67:56:de:98:7a:08:14:4c:44:1e:7c:7e:48:9b:
                    a3:76:4e:25:d4:d7:2a:3a:36:b9:55:0f:6e:25:5c:
                    69:c3:d9:53:d5:ea:f5:3d:bf:8b:11:a1:0e:b5:fa:
                    f9:c8:3f:b9:ec:58:bb:0f:ba:eb:f6:33:10:d1:01:
                    66:56:28:50:ab:ff:77:ae:d1:35:51:49:fb:c3:a5:
                    3c:85:d6:1a:59:f2:08:93:19:af:c1:32:7f:c0:58:
                    16:31:01:9f:2c:55:12:c3:61:84:2f:54:16:7a:88:
                    fa:d5:1c:3d:7e:10:01:e1:a0:5e:73:af:b3:e4:ec:
                    dc:f0:82:d7:5b:d6:06:a3:85:eb:3e:2d:6a:a2:e3:
                    53:05:d7:20:b5:b2:0e:a2:77:4b:3c:cc:ce:48:7b:
                    32:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:1E:D3:B4:14:0E:54:E4:ED:5D:0A:BE:39:1B:C8:3E:92:C1:9E:9F
            X509v3 Authority Key Identifier:
                keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:30:37:0d:30:4f:0f:28:8a:58:2b:4c:3b:ba:8e:4f:4a:8a:
         94:37:76:5a:55:61:10:c6:d2:33:45:61:62:97:99:7f:77:39:
         3a:30:be:67:d4:2a:da:82:43:34:b2:3e:bb:07:f6:65:a9:bc:
         d8:60:bc:bd:6b:75:7b:65:79:c8:33:ed:00:2a:59:b5:57:92:
         df:7d:94:36:dc:1a:24:5f:aa:e4:a9:c9:23:f2:32:97:a4:2d:
         5e:fb:79:bd:24:5d:7f:3a:47:e2:b3:38:5d:28:fe:35:d6:90:
         41:25:e8:8c:51:92:b9:98:8b:d8:c4:eb:cd:78:18:5d:a1:93:
         8e:76:3c:1c:6b:19:64:81:10:af:bc:a2:b3:f6:14:29:9d:04:
         f2:db:30:6a:3c:a5:fa:f9:b0:3e:6c:f2:43:64:dc:ab:12:a9:
         bc:22:42:a2:11:3b:2e:cb:8d:71:e2:8a:76:bd:90:78:3d:a8:
         66:d7:d3:7d:0d:b2:4e:d8:a3:41:07:8d:d4:1a:89:30:36:ca:
         ca:5d:3a:5b:3b:7a:23:7e:0b:2e:cb:b3:6f:aa:ee:9b:3e:3d:
         fd:b2:29:3e:3b:74:0c:3a:4a:af:f9:1c:1d:e2:17:de:5d:cd:
         14:39:d8:1a:1f:65:24:38:b3:6d:f4:89:4c:a8:f0:ac:14:eb:
         54:8b:49:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 14:16:07 2026 by rpki-client