Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File:                     gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier:          s2F7qQVAChu9eBFiDupItZJRn7PFpZs9q3Eb5a/YWMc=
Subject key identifier:   6C:6B:96:61:67:00:9A:6D:94:49:F2:D1:66:89:7E:76:6C:9E:AD:71
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer:       /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial:       019F56343E7C5363E18AFB67DC60E43EDF6E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number:          140D
Signing time:             Sun 12 Jul 2026 12:01:32 +0000
Manifest this update:     Sun 12 Jul 2026 12:01:32 +0000
Manifest next update:     Mon 13 Jul 2026 12:01:32 +0000
Files and hashes:         1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
                          2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
                          3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
                          4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
                          5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
                          6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
                          7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
                          8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
                          9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
                          10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
                          11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
                          12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
                          13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
                          14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: OJ+kieNfxIaEHn1nFQkEhONGlbDJiAaGDJJOw+4k9wc=)
                          15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
                          16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 13 Jul 2026 05:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:56:34:3e:7c:53:63:e1:8a:fb:67:dc:60:e4:3e:df:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
        Validity
            Not Before: Jul 12 12:01:32 2026 GMT
            Not After : Jul 13 12:01:32 2026 GMT
        Subject: CN=6c6b966167009a6d9449f2d166897e766c9ead71
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:5e:f2:e7:d8:44:be:da:d8:82:47:ea:b9:ef:
                    ba:a8:1f:29:6a:77:9a:81:53:0b:e1:94:e5:13:ad:
                    8a:54:b5:da:13:21:35:a8:cf:cb:d1:66:b2:64:cf:
                    22:cb:b3:32:1a:ae:6f:fa:74:40:da:e0:82:0b:4b:
                    f0:6f:15:8c:ab:37:47:98:e1:53:75:7e:0a:e1:e9:
                    ce:15:71:ee:57:ee:bd:f9:ac:98:e6:51:7b:47:c5:
                    e1:30:58:c3:26:45:19:71:23:ea:7d:4d:08:ff:52:
                    7f:3a:d8:4f:86:0c:4f:a0:e3:06:60:3b:59:83:6e:
                    aa:e3:27:28:3e:ac:60:29:24:32:c8:d6:e1:34:aa:
                    5d:ea:7b:09:01:2f:02:5a:8a:50:1d:01:76:69:78:
                    48:c6:0f:46:00:8f:25:76:ed:f8:b7:23:a2:e0:9d:
                    ad:1d:81:72:ed:eb:a2:8c:73:6b:01:d8:70:a9:b2:
                    ad:ef:5b:7f:fe:e0:ba:ad:18:93:56:69:18:ed:35:
                    cb:d1:c1:a8:d1:66:3b:94:2b:a0:4d:53:7a:fa:af:
                    36:51:c5:1f:95:b9:ae:a8:25:96:18:55:82:fa:9f:
                    04:c6:b8:af:87:40:6e:de:86:52:70:df:dd:2f:3c:
                    ba:3f:ae:ce:78:64:e7:81:8e:2f:e7:2a:f4:2c:79:
                    a1:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:6B:96:61:67:00:9A:6D:94:49:F2:D1:66:89:7E:76:6C:9E:AD:71
            X509v3 Authority Key Identifier:
                keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:ba:58:26:bb:b1:01:68:2b:40:ad:be:a8:a7:dc:c4:a7:c6:
         20:0c:bb:30:e3:ff:81:d4:be:b0:f3:9e:7e:3c:2d:13:40:63:
         1e:f6:5f:36:b2:f5:d3:12:5d:12:01:64:39:03:fc:9f:67:74:
         58:5e:08:9c:a7:7e:fa:71:27:20:39:e0:d6:23:9e:ff:83:98:
         77:93:31:9c:a4:d5:0d:92:42:3a:c3:56:93:6c:f4:0b:81:6d:
         fb:a2:70:a4:97:6d:f3:7b:76:0a:0a:b1:7b:81:be:38:16:db:
         1a:13:0f:8e:17:7c:c4:33:16:b1:47:a9:6f:9f:b9:b9:cf:bc:
         e2:74:c5:c8:53:7c:cb:c2:c1:30:62:0c:35:a1:5d:2f:44:69:
         b1:a9:11:e6:74:25:86:d6:f9:c9:58:6a:e8:e0:86:8d:80:fa:
         c6:54:7c:86:78:55:e2:e6:85:ec:02:98:0b:f8:a8:33:7a:b2:
         95:84:2b:2f:2a:1e:10:93:fd:25:0d:b0:36:84:de:14:8e:6d:
         51:c7:26:5e:23:42:ac:2d:3a:2f:fb:89:5e:e2:bc:de:e7:3e:
         64:ec:b7:6d:03:8e:78:da:86:cd:fe:43:29:c0:8e:52:d2:c1:
         02:af:1f:0e:a8:12:d7:fc:1c:56:55:77:39:37:6d:b3:21:f4:
         7c:81:52:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 14:50:44 2026 by rpki-client