Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File:                     oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier:          JQ+xLegaMDEaev75/f5rrK+Spf6xpIsdS64K1hE3xIk=
Subject key identifier:   72:E2:31:DD:D1:F9:33:23:BD:89:CD:F0:8A:CF:B7:FD:92:C1:42:5B
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer:       /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial:       019F6CF3018E0A1F768E4BB424C4F71F789C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number:          19B6
Signing time:             Thu 16 Jul 2026 22:01:32 +0000
Manifest this update:     Thu 16 Jul 2026 22:01:32 +0000
Manifest next update:     Fri 17 Jul 2026 22:01:32 +0000
Files and hashes:         1: jvhBNJv-kjTUWe2w73IOrhsH8ZM.roa (hash: QuobanihGf2Vt3kAlHWHavYrnvmF3ftRBf2VjsfIBoY=)
                          2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: TT7AxaZGH+fUb8DTlI9zkCDsaeMBeTUS1QOuuRt68NY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Jul 2026 22:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:6c:f3:01:8e:0a:1f:76:8e:4b:b4:24:c4:f7:1f:78:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
        Validity
            Not Before: Jul 16 22:01:32 2026 GMT
            Not After : Jul 17 22:01:32 2026 GMT
        Subject: CN=72e231ddd1f93323bd89cdf08acfb7fd92c1425b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:4b:39:78:8f:ae:e4:99:b9:d4:31:87:7b:ec:
                    55:24:53:75:d3:b8:85:e1:7c:81:02:33:ca:8d:3c:
                    60:67:29:1d:77:58:a2:50:f7:74:0a:ad:d5:c7:f0:
                    aa:d9:81:69:73:09:20:f1:6c:8f:e2:4b:5d:db:ec:
                    76:e1:0c:41:ae:34:67:55:95:40:41:0c:2e:ab:55:
                    dd:59:2c:7c:28:92:8c:88:cd:62:39:f0:63:3d:92:
                    9e:d8:e7:51:51:c6:ed:46:2b:3b:e4:4b:ba:e1:a3:
                    de:9d:81:15:f3:ba:19:57:f3:6a:bd:5d:a6:f6:26:
                    5f:05:c3:35:49:96:f2:c0:27:e0:3b:45:48:6e:20:
                    b8:cc:06:50:2e:36:a0:26:60:d4:b2:ea:38:f1:0b:
                    d0:0b:7a:d3:e6:54:bd:6c:89:b6:41:52:99:c0:45:
                    54:8a:aa:b8:bc:c7:71:e2:68:b2:06:1f:be:b3:1d:
                    f9:c8:58:69:cd:40:17:c1:0e:5f:7d:e1:8d:99:0d:
                    7e:cf:d7:8a:a0:d2:dd:32:ed:2e:95:f9:76:e8:6f:
                    ce:ad:97:d6:b0:5e:75:49:91:1c:0e:fe:ed:0f:30:
                    e1:f0:43:a7:65:95:2e:58:7c:47:b3:6c:2b:76:0b:
                    3a:13:a6:e9:6d:f9:2f:cf:34:a9:bf:b3:c8:b9:0c:
                    07:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:E2:31:DD:D1:F9:33:23:BD:89:CD:F0:8A:CF:B7:FD:92:C1:42:5B
            X509v3 Authority Key Identifier:
                keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:62:e5:dc:f3:31:6d:34:99:d2:8e:9e:19:98:f5:75:b1:2a:
         9b:1f:68:5b:06:04:03:23:0a:48:f7:9d:fe:61:7e:56:2d:73:
         84:80:bb:c0:da:56:f3:02:0c:2a:81:4e:bb:68:01:31:54:17:
         9c:d6:5a:96:ca:f1:5b:bf:27:81:c3:4b:b0:3c:48:3e:59:a8:
         40:28:c9:2b:ec:16:dc:e1:3a:b9:62:af:3f:ca:8b:b8:c1:d7:
         67:cd:41:c0:e3:ae:c2:54:6f:65:58:04:5e:ca:31:d3:14:b5:
         c2:04:42:2f:5b:1e:c1:4f:c5:b7:27:34:bf:97:94:dd:6b:17:
         8d:3f:79:5f:fb:93:08:a6:4e:cd:b9:fb:d3:a2:8c:93:07:77:
         2f:09:76:7a:80:97:c3:24:a1:ef:f6:53:36:59:ae:f3:43:88:
         45:03:4f:28:73:17:91:11:a9:da:3b:07:34:ea:45:a9:6b:b9:
         20:98:2b:ba:82:29:f7:93:b3:46:aa:4f:9f:44:8b:d5:4e:67:
         b9:53:d7:e7:70:a1:47:c8:ed:a5:50:19:10:fd:ba:99:c1:92:
         8c:9b:0e:1e:31:18:01:10:08:b4:97:89:95:03:1f:bf:d8:c6:
         b0:89:64:26:7c:77:c5:33:bc:51:31:66:25:33:3b:66:b2:15:
         69:d8:06:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 08:25:13 2026 by rpki-client