Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          qEp1FFPlSzpOvhQRARIZYczA6XLuunax84Vxb9IBe4w=
Subject key identifier:   CD:3B:BA:1C:FA:68:C2:52:0F:11:99:5D:FA:CF:09:8C:A2:46:6D:E3
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F295AE53934425750AACA0D8E6B284947
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          1995
Signing time:             Fri 03 Jul 2026 19:00:50 +0000
Manifest this update:     Fri 03 Jul 2026 19:00:50 +0000
Manifest next update:     Sat 04 Jul 2026 19:00:50 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: DIDd10KnGxXFOLrTHPBL1TcVONzRhqCxWbyYrI3E9lU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 19:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:29:5a:e5:39:34:42:57:50:aa:ca:0d:8e:6b:28:49:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul  3 19:00:50 2026 GMT
            Not After : Jul  4 19:00:50 2026 GMT
        Subject: CN=cd3bba1cfa68c2520f11995dfacf098ca2466de3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:78:e6:bd:01:da:aa:04:2a:11:26:e3:5a:5d:
                    ce:f4:bc:88:87:bd:c7:a9:19:ce:06:92:22:97:09:
                    10:f6:6f:91:47:31:59:93:2c:c4:94:f9:01:ff:53:
                    1d:9d:a1:71:42:f8:ff:e7:e8:e4:41:c0:4d:dd:74:
                    d3:07:74:18:e3:cc:84:6e:00:70:98:b4:4c:b1:f1:
                    93:18:30:7d:fc:ef:4c:96:22:73:35:21:e9:8a:04:
                    da:82:6f:7c:0a:6f:c0:ca:87:75:e8:4a:4a:f2:9c:
                    36:33:5e:29:3a:69:7a:ab:9d:6a:b8:35:f8:a1:84:
                    16:ec:f4:9c:fc:df:af:00:61:82:7b:72:78:20:c0:
                    ea:5d:84:3b:6d:a5:55:cf:eb:7e:0d:f8:08:75:88:
                    b9:17:3d:ad:98:83:97:07:18:95:63:4c:72:c5:b6:
                    8f:0d:85:88:b1:af:a5:16:2b:83:12:27:7e:4c:43:
                    9f:9b:c6:f4:00:21:43:df:18:2e:d9:71:8a:53:af:
                    95:3f:9a:d6:88:85:33:0a:e2:1b:15:68:15:23:7d:
                    86:37:80:bd:1e:52:d3:c6:b9:a2:b8:cc:fd:95:ca:
                    cc:41:62:86:9a:d6:31:20:34:94:72:7b:97:13:f3:
                    7d:e3:f8:0d:aa:a4:32:f7:68:65:95:be:f8:d6:d4:
                    90:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:3B:BA:1C:FA:68:C2:52:0F:11:99:5D:FA:CF:09:8C:A2:46:6D:E3
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:80:2c:b1:e3:34:8f:4c:31:f1:c6:b3:27:04:dc:35:c7:43:
         d9:24:f4:88:d8:e5:4d:ef:db:cf:f8:03:e2:a2:44:4d:ce:76:
         ac:b7:23:e3:58:9a:20:b2:bb:32:5d:9d:74:ff:ee:1e:92:c9:
         4a:bf:20:df:33:89:7e:4c:1e:49:0d:fa:50:71:d4:72:79:4b:
         fb:b4:8f:ef:09:19:5f:18:d8:3f:e0:aa:00:21:dd:04:7e:69:
         54:c0:0f:a6:65:2b:c3:8d:9c:b2:9e:d0:fe:da:9e:d0:a2:7c:
         29:63:e3:1f:eb:80:2c:04:0b:d4:0e:e7:d1:50:36:11:c9:30:
         a6:a6:df:43:27:18:03:13:95:f7:e5:e2:29:97:c9:1c:4a:b6:
         b7:af:29:03:b8:c8:cc:6e:fd:8d:48:91:b7:f8:63:81:65:1c:
         52:c2:d3:3d:37:e6:bc:e0:a0:15:a0:68:18:1f:50:10:63:8f:
         29:5b:63:73:f4:98:54:79:82:eb:75:8e:d8:61:ba:67:02:82:
         92:3c:60:16:8a:a3:60:2d:be:53:eb:d1:57:e9:88:32:68:06:
         ba:6d:0d:ba:e8:b1:ed:b7:fe:e0:e6:5a:f3:8e:9f:68:0e:ea:
         7e:ff:07:f7:a7:ca:82:45:f2:39:fa:75:4c:e5:08:ad:ad:de:
         b9:6c:90:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:37:30 2026 by rpki-client