Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          SgB6ZGRfNNBlqzWj5QN8kf58P5viUQmeCvW0mcg1Aa4=
Subject key identifier:   3D:B2:71:05:94:CF:63:EC:6A:03:A2:7E:5E:7F:43:5A:F0:78:74:21
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F38CE4D1EB5EC69BE2EB681BF2E141E6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          199D
Signing time:             Mon 06 Jul 2026 19:01:11 +0000
Manifest this update:     Mon 06 Jul 2026 19:01:11 +0000
Manifest next update:     Tue 07 Jul 2026 19:01:11 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: aodnGeXbTqk8M/eQCLYIiekugeuiEgyphldKTkQ/4bw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:38:ce:4d:1e:b5:ec:69:be:2e:b6:81:bf:2e:14:1e:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul  6 19:01:11 2026 GMT
            Not After : Jul  7 19:01:11 2026 GMT
        Subject: CN=3db2710594cf63ec6a03a27e5e7f435af0787421
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:9e:d0:2b:93:ed:2a:70:80:50:61:1f:7e:1c:
                    91:9a:36:34:59:7c:ea:6b:02:66:ae:eb:84:48:c0:
                    c3:8e:be:1b:32:c4:23:dc:1c:04:f4:45:95:07:9f:
                    50:ec:f7:8e:ba:c2:25:41:c2:12:cf:1b:f4:4b:1f:
                    b1:af:7f:27:37:aa:8c:7e:8f:f2:43:cb:e9:e3:df:
                    d9:a0:e4:ba:af:d3:b3:b7:25:d3:10:f6:1f:e8:ea:
                    7c:b2:05:c0:88:a4:08:af:d3:19:4c:54:37:b5:99:
                    3b:ae:38:1f:cb:ea:ae:4f:ee:64:ac:eb:1d:32:ab:
                    3b:1e:02:17:93:62:44:c3:39:8b:9a:20:a4:82:29:
                    55:d0:1d:cb:9b:ef:94:56:db:85:49:c4:5c:6f:0d:
                    8a:0f:d2:a2:04:e4:a2:78:ee:c5:5a:38:23:8d:92:
                    93:36:06:6d:a4:6c:0d:b4:b7:d5:26:64:80:75:9c:
                    94:a8:73:52:59:69:89:e3:d1:9c:dc:43:ab:99:53:
                    8f:9c:e7:e5:35:3a:ab:24:ca:6b:05:c8:e7:01:e3:
                    a6:d6:02:2f:e1:be:b7:6f:da:34:07:3f:79:35:6e:
                    b3:55:5e:6e:df:58:f6:6a:0e:af:2b:3f:bb:3f:61:
                    c4:fc:93:17:cd:d8:84:e3:2e:1c:b0:2f:5b:ed:1a:
                    74:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:B2:71:05:94:CF:63:EC:6A:03:A2:7E:5E:7F:43:5A:F0:78:74:21
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:9b:5f:bd:4c:5a:74:10:59:f3:2d:af:7a:a9:6d:a4:c3:cc:
         a6:68:2c:49:d6:4b:f3:1c:74:7c:da:43:f8:71:c4:b2:d2:5f:
         d6:23:fa:31:bb:46:d6:85:81:fc:9e:9b:92:7e:c9:cd:6c:17:
         66:46:35:80:c2:2d:c4:6c:80:1d:ea:ca:8e:64:7d:6c:c1:9b:
         7a:2c:e8:91:ae:e8:28:95:a1:43:6b:00:74:ad:96:a1:ed:8c:
         77:5b:e9:b5:14:38:78:39:ac:a2:20:43:d8:dd:2b:63:25:31:
         86:4e:75:34:d1:d7:43:26:41:88:39:bd:f9:b5:29:8b:1c:31:
         a7:9b:c1:3d:1c:b6:52:3e:5a:d4:ee:2c:58:ee:e9:be:82:af:
         4a:ea:6a:a1:5b:58:19:4b:69:c5:1a:d6:18:cc:03:f8:41:fb:
         2a:21:03:2d:ac:2e:c9:55:42:6b:70:1b:fa:23:1b:f7:eb:0b:
         90:85:6d:fe:64:a6:43:0b:8c:d4:6d:88:76:70:04:3f:9c:8c:
         69:f7:ba:0d:8d:8b:73:1b:e2:41:83:a9:dc:c4:62:c7:85:cc:
         de:7c:f2:f0:cc:44:79:a5:d3:8f:ae:56:f2:b1:41:dc:6c:8a:
         83:4e:f4:17:67:fb:fb:d5:2d:b7:fd:6e:da:42:34:d7:2a:72:
         f9:0a:eb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 22:13:50 2026 by rpki-client