Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          +kD5oPudhjK83PicyVbIr/7EE2dqMRV5+eU+bu+ADjg=
Subject key identifier:   6C:35:E2:10:53:B4:5A:11:AD:EA:AD:AC:0A:CD:3E:FF:A0:33:46:5F
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F634AC3A14DE6E61DEAD610E0A0B2395B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19B3
Signing time:             Wed 15 Jul 2026 01:01:11 +0000
Manifest this update:     Wed 15 Jul 2026 01:01:11 +0000
Manifest next update:     Thu 16 Jul 2026 01:01:11 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: jhFMCsqRE0GHfp3V1heopDHCDI0+etDbeBb3WkvFUqE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 15 Jul 2026 23:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:63:4a:c3:a1:4d:e6:e6:1d:ea:d6:10:e0:a0:b2:39:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul 15 01:01:11 2026 GMT
            Not After : Jul 16 01:01:11 2026 GMT
        Subject: CN=6c35e21053b45a11adeaadac0acd3effa033465f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:c1:44:a0:09:6e:c5:52:b7:8d:65:42:d7:76:
                    22:1c:fc:13:30:b3:83:38:85:dc:0e:ff:4f:9c:51:
                    08:77:a2:ba:b0:6c:c5:45:62:87:8e:d3:0e:20:b6:
                    27:d1:ae:75:2b:1e:c9:0f:fb:f5:32:6f:c5:da:5a:
                    80:80:62:bd:a3:a8:27:46:76:7f:bc:fc:c4:a1:11:
                    f5:ca:4d:4c:ca:0d:76:ce:04:ba:a0:3a:bf:15:27:
                    e6:76:22:5c:26:6a:c7:4a:8c:c1:6d:45:95:4c:43:
                    b7:3d:e2:64:4b:43:e2:aa:74:42:d5:16:59:99:94:
                    da:af:0f:d9:0e:3b:cc:28:3b:c5:76:13:13:88:bc:
                    7c:01:30:44:c8:60:f5:a5:c4:33:1e:a5:c4:46:d8:
                    81:e1:bc:44:69:69:0d:e5:52:1d:79:8d:a8:b6:84:
                    6b:88:51:83:be:29:d7:71:7c:a3:db:37:fb:b3:26:
                    b4:cb:0f:4b:83:2c:ac:e6:08:00:eb:05:82:93:91:
                    3f:e8:d0:39:7f:96:7c:7d:69:aa:8e:8a:e7:17:d6:
                    14:d5:e8:dc:51:29:20:34:83:50:10:e9:a0:23:0a:
                    93:d0:fc:75:78:65:6a:3e:a0:8b:b3:d9:fd:9d:e0:
                    36:97:19:58:4d:5d:45:fc:1c:c5:4b:f1:4b:88:ca:
                    ef:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:35:E2:10:53:B4:5A:11:AD:EA:AD:AC:0A:CD:3E:FF:A0:33:46:5F
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:f1:f9:45:59:cf:8e:e0:a2:29:a3:d5:66:79:80:56:96:97:
         bb:f3:0b:94:d6:57:1d:e7:22:21:76:19:32:41:d5:6d:a0:6e:
         68:81:f8:15:72:ed:1f:60:f6:33:df:4c:ec:2e:63:e5:16:6d:
         18:14:a6:c1:da:8f:42:c3:39:36:0c:8b:0d:a8:4e:7b:0c:3b:
         a7:06:2b:f7:ff:92:8d:fc:85:6e:3d:31:71:aa:c7:a0:be:a7:
         06:c7:f5:12:9f:42:db:9f:7f:84:13:1b:90:a2:fe:23:cf:33:
         82:5e:1c:eb:9a:5d:bf:d4:44:c9:c8:68:5a:b2:bb:14:58:ee:
         08:21:ac:89:62:21:ad:83:c7:e0:82:c0:53:98:b6:08:25:4a:
         20:63:fc:8e:1b:53:ca:73:68:5a:ab:e5:18:b8:9e:7a:18:a1:
         3d:48:46:0b:ab:6f:4f:be:76:6e:9e:52:71:24:6d:55:74:dc:
         60:18:1f:4b:fe:76:d5:ed:a1:a1:24:39:9b:44:e6:8c:24:11:
         de:f2:54:84:7b:f8:4f:92:6a:2e:51:5c:82:9e:7f:4d:f8:1a:
         b6:b2:2e:9f:da:45:da:79:8c:67:b6:18:5a:fc:c0:1b:4d:3a:
         e4:2b:54:f3:9c:51:f0:5b:23:19:ab:c8:bf:75:e2:c4:b3:f9:
         78:f3:79:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 06:25:29 2026 by rpki-client