Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
File:                     hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json)
Hash identifier:          oAmX5iGg7Hbg0qUG1oDOnHOr5Bh8J/c45Q7P1ngiWmM=
Subject key identifier:   B1:62:3F:54:2B:E1:9B:C6:1E:AE:CB:A6:70:8C:BB:F0:BC:41:AF:B3
Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
Certificate issuer:       /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Certificate serial:       019EB9C68A8414B6270F4844025FEF57CA6D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
Manifest number:          192C
Signing time:             Fri 12 Jun 2026 03:00:56 +0000
Manifest this update:     Fri 12 Jun 2026 03:00:56 +0000
Manifest next update:     Sat 13 Jun 2026 03:00:56 +0000
Files and hashes:         1: gI4tnW4kPKjRONzlu_6zH8MeB9U.roa (hash: SAYaSp1GRG2E/ye85MqnahXwttShXyHtUuRf8N0xnmI=)
                          2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: Ainr8VGaEmHGsUZATm6oKhlCKYtMfbrL90LFbeQMMP0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 20:26:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b9:c6:8a:84:14:b6:27:0f:48:44:02:5f:ef:57:ca:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
        Validity
            Not Before: Jun 12 03:00:56 2026 GMT
            Not After : Jun 13 03:00:56 2026 GMT
        Subject: CN=b1623f542be19bc61eaecba6708cbbf0bc41afb3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f5:70:5d:60:ee:83:a6:fe:d0:4e:3e:c8:71:84:
                    c3:05:9d:af:24:05:37:bd:69:fb:45:8c:b3:eb:bb:
                    d6:f0:10:ce:6c:cb:4d:4b:e5:b4:91:6e:1d:c0:3d:
                    fd:05:6d:da:9c:30:57:f0:7b:15:f4:73:e2:92:4f:
                    d1:74:84:7c:9a:2f:cf:fd:43:10:cb:ec:98:45:0e:
                    75:83:4c:b0:84:09:12:50:75:25:2d:44:9a:d6:d5:
                    7c:b6:83:b3:24:2a:2e:09:2d:af:0a:66:15:03:4e:
                    39:7f:65:12:e6:d1:9a:be:9a:de:09:8c:28:d8:68:
                    b8:40:f6:11:4e:f5:75:de:52:da:28:6c:ee:e8:1c:
                    6c:bf:7d:e7:85:e6:34:eb:29:09:79:91:ae:36:38:
                    63:25:30:58:f3:b4:eb:5f:fe:f1:fd:56:92:ca:89:
                    38:15:b1:f7:82:07:41:9c:53:80:ec:b9:4e:28:08:
                    15:49:35:fb:19:14:30:e0:6e:65:e0:b5:fb:68:fe:
                    7a:dd:fd:a5:db:ab:57:98:a9:50:31:96:aa:34:62:
                    32:72:a2:ea:f7:f1:8a:9b:d8:0a:a3:52:38:55:fc:
                    04:f8:3e:a2:69:68:08:fa:08:4d:8f:f9:e2:fe:79:
                    8f:17:b2:e3:db:6b:c7:41:b9:77:9a:4f:3d:12:45:
                    59:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:62:3F:54:2B:E1:9B:C6:1E:AE:CB:A6:70:8C:BB:F0:BC:41:AF:B3
            X509v3 Authority Key Identifier:
                keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:00:dd:2d:cb:71:60:59:46:a0:7b:ad:77:b9:f7:23:5b:b0:
         e1:5e:ef:33:04:04:bc:98:ee:30:d3:02:a2:7a:b2:c0:86:18:
         b9:e8:87:e8:ef:86:2a:af:0f:f4:35:68:86:9e:df:a0:e9:13:
         d4:a4:82:f5:67:7f:56:b8:d1:e0:8f:45:49:36:60:a3:60:f9:
         fc:a6:e6:96:ef:90:d2:e6:68:85:20:e5:6b:e4:2b:b1:01:43:
         75:7c:b7:f2:79:cd:7b:4e:e9:d0:04:c8:7a:4b:dc:27:f3:50:
         b3:7d:8f:0c:18:fb:2e:93:fc:3a:21:1b:35:01:72:9d:dc:b1:
         27:39:a5:33:1c:75:ae:af:4b:68:19:5e:60:5c:9c:94:d1:b4:
         9c:62:9d:5e:28:f7:ff:cc:0e:4d:d9:e8:81:0c:43:65:1a:66:
         61:80:7e:d5:b2:a2:0a:3a:d0:b8:eb:bd:29:98:e3:6a:ff:c9:
         3d:38:c1:b0:c1:9d:03:e2:48:7d:06:93:4d:3a:da:98:89:6a:
         34:2f:54:bb:d1:3d:f9:5c:dc:67:1d:04:14:0f:52:93:09:0c:
         7d:db:cb:a0:45:68:f5:0f:7f:3e:b1:cf:3b:2a:e5:c7:65:03:
         4c:e0:78:d4:3a:6b:d0:95:07:dc:d9:a2:af:71:bd:5c:2d:9d:
         7b:88:b0:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:36:38 2026 by rpki-client