Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File:                     gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier:          wuSr2qa5oySXESQj+ibGZ7FIjbQeQh1Xc2mjbmI9YEg=
Subject key identifier:   83:A9:D7:28:C7:C0:BF:F0:9E:F5:46:4B:F9:7D:4F:66:8D:39:E2:91
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer:       /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial:       019F6F4F1F4AA3AF1B81D13CCBCCE02B4A52
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number:          141A
Signing time:             Fri 17 Jul 2026 09:01:24 +0000
Manifest this update:     Fri 17 Jul 2026 09:01:24 +0000
Manifest next update:     Sat 18 Jul 2026 09:01:24 +0000
Files and hashes:         1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
                          2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
                          3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
                          4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
                          5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
                          6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
                          7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
                          8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
                          9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
                          10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
                          11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
                          12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
                          13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
                          14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: /b3cTUq2Ut79H76zAF+yNLi36HpTUXAOo/FmjDQE2a0=)
                          15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
                          16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Jul 2026 08:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:6f:4f:1f:4a:a3:af:1b:81:d1:3c:cb:cc:e0:2b:4a:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
        Validity
            Not Before: Jul 17 09:01:24 2026 GMT
            Not After : Jul 18 09:01:24 2026 GMT
        Subject: CN=83a9d728c7c0bff09ef5464bf97d4f668d39e291
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:30:01:af:1e:a7:d2:ab:50:c0:1f:d4:f8:f1:
                    70:18:f3:21:e3:b7:35:42:9a:fc:9c:81:08:cd:9f:
                    a5:5c:ba:bf:4e:53:dc:d7:0e:45:4e:ca:45:70:dd:
                    ae:eb:2f:0c:a3:02:be:7e:b8:c6:21:8b:0d:ff:d9:
                    a7:44:8e:e5:ae:6a:a7:29:76:d7:b0:d3:5f:b4:cf:
                    6b:93:c5:a4:2b:18:78:7f:98:03:9c:eb:77:38:f7:
                    df:54:d0:0c:b2:71:2e:f6:81:5a:3f:43:d5:c5:79:
                    67:48:27:ca:08:06:cf:9e:19:1d:4a:23:63:9e:9d:
                    55:85:2d:ae:8c:90:70:55:b5:3a:45:5c:27:68:68:
                    16:87:bf:98:f3:0a:b4:6d:cf:78:8a:e5:d8:6f:e6:
                    ce:1d:2c:8a:c4:d7:87:79:e4:1a:1a:f1:07:f4:e5:
                    ea:5e:ed:11:1d:9f:c2:b6:b1:2f:db:40:10:44:80:
                    1f:bf:b2:8c:18:37:a0:fa:72:8f:75:b2:1f:58:15:
                    6c:92:ff:7a:82:e2:e1:85:c3:6e:f9:27:18:27:95:
                    78:cc:12:29:f3:fd:59:93:7f:3e:9a:bc:95:06:71:
                    53:32:46:f2:d5:22:89:ed:56:78:77:b8:b7:b8:75:
                    45:b8:72:6d:45:dc:74:06:6a:46:cb:b2:8d:52:21:
                    62:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:A9:D7:28:C7:C0:BF:F0:9E:F5:46:4B:F9:7D:4F:66:8D:39:E2:91
            X509v3 Authority Key Identifier:
                keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:ed:d9:cf:88:bc:98:ab:88:be:99:0b:84:d6:00:ff:b9:95:
         d9:65:e0:6f:73:a6:76:26:8d:21:3f:0d:02:65:f3:77:80:f7:
         ac:a6:f5:4b:6e:32:41:de:11:c2:54:31:a4:09:c2:47:8f:df:
         51:17:50:90:77:8a:8b:b0:2d:55:70:0f:53:5d:c9:e7:85:b6:
         52:30:e9:ac:93:56:3d:c3:c4:5f:7f:bc:90:a1:ce:fb:bc:68:
         85:4e:b8:e2:c9:03:4e:e0:8f:f6:cd:c1:3c:6b:5b:70:c0:f3:
         8f:50:10:dd:af:9a:80:d0:5d:e0:36:5b:c2:80:bb:a5:b4:ee:
         40:0e:3a:cc:29:c1:8a:ff:29:ed:b0:b0:c6:eb:97:55:61:67:
         25:88:f2:0e:83:08:57:61:12:0e:48:27:cd:fe:ac:f6:ae:2b:
         19:db:80:42:8e:70:36:a8:f3:70:87:4b:6c:0b:d0:c8:ac:3d:
         63:fe:5d:7d:29:e2:4d:c8:8d:78:19:0a:e3:30:64:8f:48:c6:
         fa:b6:92:06:29:40:a7:06:fa:b3:ce:e5:99:db:e3:0e:ce:7b:
         46:d2:7b:fd:d3:ad:39:c9:24:65:bf:0e:40:5b:14:1d:aa:13:
         da:46:9a:79:4f:72:be:2f:99:95:7c:80:c7:e3:a8:69:12:96:
         92:33:c9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 14:42:27 2026 by rpki-client