Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File:                     uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier:          puHS2mIzVzug0oCz1Wf4NLqwhP3jT0Va0Vt6+aQEf0M=
Subject key identifier:   B3:14:B4:0C:64:E2:46:B1:91:AA:9E:E1:AF:8A:61:91:5A:C0:5A:91
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer:       /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial:       019F6EAA0955977F07371E992E4589095CB1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number:          19BC
Signing time:             Fri 17 Jul 2026 06:01:04 +0000
Manifest this update:     Fri 17 Jul 2026 06:01:04 +0000
Manifest next update:     Sat 18 Jul 2026 06:01:04 +0000
Files and hashes:         1: _9wTHX3cjznzX1cGZZv1QLly23A.roa (hash: sMqmwh/SXLdaeDaF/VXKg3vRCCuPQk7by10Th5+s01k=)
                          2: e7AWg6gMHyJzfFZoLv-TywEgAls.roa (hash: 2GqfqgPDlKIc3f3uKLBeBJ8FyT92S1ZVg6GX/uLDIAM=)
                          3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: OLizXqizw7IEfIlKhBzAuv1vNKA+eYJKq+Q424qolZg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Jul 2026 23:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:6e:aa:09:55:97:7f:07:37:1e:99:2e:45:89:09:5c:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
        Validity
            Not Before: Jul 17 06:01:04 2026 GMT
            Not After : Jul 18 06:01:04 2026 GMT
        Subject: CN=b314b40c64e246b191aa9ee1af8a61915ac05a91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:81:c0:be:7f:1e:83:5a:00:8f:18:9a:30:18:
                    8d:50:8d:fe:89:b2:1b:fd:e3:d9:9d:df:fe:1b:a3:
                    0d:50:c8:23:a1:71:70:31:76:8b:bb:07:98:e3:04:
                    d4:af:e6:e2:51:e4:87:92:54:84:40:bf:ba:5d:df:
                    4f:1c:84:3e:66:08:18:45:cf:8d:96:84:c8:c0:1d:
                    28:e5:01:3b:b1:b5:08:ef:f6:f0:2d:6f:be:88:98:
                    61:04:ca:3d:bd:a8:43:31:66:82:30:3f:de:f4:a0:
                    d9:93:97:0b:e6:e2:25:1e:07:51:ef:94:1b:f4:79:
                    cf:81:2f:8d:44:8c:0d:8a:15:85:b6:d5:3c:34:c5:
                    45:a5:98:df:93:ec:ad:ba:9a:70:ae:94:c2:42:0c:
                    2b:c2:54:d4:ee:bb:c4:a2:53:16:7b:31:92:ea:06:
                    c9:6c:e9:0e:b3:a7:15:fa:9b:34:13:56:ca:b4:7c:
                    68:8a:38:c7:f8:31:82:62:9b:e3:80:ba:98:19:71:
                    61:e1:39:28:08:b4:ec:0f:27:63:40:8d:d4:25:ef:
                    f4:f1:a5:b4:8b:3c:f7:73:b0:ac:38:c8:a4:0e:5e:
                    a7:76:3b:99:a7:1d:a2:ab:8f:20:2c:59:ad:8f:41:
                    a2:ff:06:32:24:70:37:a0:af:14:85:e5:3f:7e:f0:
                    d3:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:14:B4:0C:64:E2:46:B1:91:AA:9E:E1:AF:8A:61:91:5A:C0:5A:91
            X509v3 Authority Key Identifier:
                keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:6f:30:9c:ea:74:04:94:6d:6f:3c:52:e0:7f:4b:2f:ab:d4:
         c6:3f:f6:07:68:6a:fd:db:f3:39:b7:d4:c7:56:33:a2:90:6c:
         c6:90:e5:0d:b5:8f:8f:58:83:ff:00:04:8e:05:17:5c:15:44:
         c1:68:b1:74:99:ff:22:ce:33:60:4e:a3:a5:2f:29:ca:cb:41:
         40:ce:bd:91:b3:99:ab:8d:4b:10:a3:3f:bb:55:b0:ce:32:f6:
         4d:3d:6b:69:0b:10:b6:73:63:47:03:f2:0e:98:ae:17:9b:a5:
         5e:12:a9:2b:be:19:4e:3e:28:2d:3e:54:eb:c8:f0:dc:4c:0d:
         ea:4a:a2:d6:38:1c:22:42:6d:e4:12:b6:59:79:6d:6d:b2:26:
         6f:41:32:94:e0:02:7e:7c:d8:d2:4f:84:fc:d0:46:ea:22:1b:
         d0:d1:fe:a3:78:51:8b:01:5b:68:9c:f5:24:78:c9:34:93:c3:
         c3:37:63:c6:d1:e8:3d:ef:5e:46:b2:7f:da:71:33:d2:6c:8f:
         64:ba:a2:d8:bf:5f:58:cc:ae:1d:9c:f8:b4:71:9f:f3:1d:84:
         40:bd:40:c9:2d:72:30:5e:d7:d6:1f:68:3b:d1:c0:8c:e8:1d:
         9a:5c:60:80:6e:23:d6:b4:4d:dc:a5:39:a1:97:0a:30:ff:35:
         e7:b0:7f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 08:23:59 2026 by rpki-client