Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          qxcGP2jWHQKMfPeuy6lWgAfa1/OnMp8lwPbY2CczMSA=
Subject key identifier:   15:A3:F8:AA:A8:86:2B:43:70:19:1A:AC:48:0F:4C:FE:46:15:FC:33
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F57B468A968BCB30E7B9E0CD38BDDF243
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19AD
Signing time:             Sun 12 Jul 2026 19:01:08 +0000
Manifest this update:     Sun 12 Jul 2026 19:01:08 +0000
Manifest next update:     Mon 13 Jul 2026 19:01:08 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 9T1Ctx4Se7RUeX12Hhs5GkNyirz8nf1pVT8SIlSfVUY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 13 Jul 2026 19:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:57:b4:68:a9:68:bc:b3:0e:7b:9e:0c:d3:8b:dd:f2:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul 12 19:01:08 2026 GMT
            Not After : Jul 13 19:01:08 2026 GMT
        Subject: CN=15a3f8aaa8862b4370191aac480f4cfe4615fc33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:ab:13:3f:a3:c4:a6:6e:29:e0:7f:c2:1f:31:
                    35:6c:b9:b3:0b:10:9e:ea:59:1e:fe:0b:dc:81:31:
                    e9:c1:99:2d:7b:53:80:16:7e:5c:33:7d:d0:e5:1a:
                    6c:07:6d:75:c9:84:1e:e1:50:a7:98:af:46:d2:db:
                    9f:53:ca:94:e0:67:aa:a2:84:4f:62:2d:87:d5:59:
                    fe:fa:d8:ec:17:a0:3a:e2:f0:89:6d:a7:60:6f:a9:
                    cd:3e:f9:a4:24:5a:d0:eb:04:67:35:34:2f:d2:38:
                    05:85:33:ec:73:8a:fd:69:bb:73:92:7f:9e:69:53:
                    f7:b0:8b:18:30:37:2e:72:77:17:a3:76:87:7d:cd:
                    6a:9b:ed:82:e5:04:0a:b5:fb:de:f3:3d:26:b9:8c:
                    b9:be:8a:ea:ec:4d:c5:18:23:95:8a:6a:1d:8c:90:
                    cf:58:24:3a:54:b9:7d:37:95:c2:e1:7f:5a:a6:ef:
                    7c:74:b8:b3:d8:35:2f:07:49:0a:3b:83:11:4c:be:
                    2d:f2:5a:19:6c:f6:67:37:00:2f:86:d5:52:60:ab:
                    d4:a2:5d:a0:ae:de:cc:f5:8c:5e:70:1b:ba:d2:e8:
                    02:aa:36:a5:7a:4f:79:97:cb:75:4f:1e:b0:59:12:
                    a1:e9:d3:a9:8d:9c:33:40:32:07:5d:eb:41:dd:3d:
                    b5:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:A3:F8:AA:A8:86:2B:43:70:19:1A:AC:48:0F:4C:FE:46:15:FC:33
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:64:9f:00:c2:77:96:71:ea:92:88:07:fa:71:8e:76:31:9c:
         8b:90:58:21:64:4b:cf:f0:5a:61:23:79:a6:c5:d6:d1:14:a9:
         4d:91:99:19:04:6a:26:d8:39:6a:8c:2f:b3:56:68:0d:79:43:
         12:a6:b3:9c:c7:ca:1a:c2:a0:6e:f2:df:2e:7a:e0:e7:f4:04:
         85:2d:1a:44:24:62:c1:7e:f2:1a:62:e1:57:7d:b5:c5:02:a5:
         61:2a:36:9b:e3:f1:4d:20:4b:d0:ed:87:25:9f:24:4b:5e:c2:
         7c:d7:11:4a:ec:cc:2f:59:81:39:24:f9:7b:65:b1:21:d7:1f:
         4a:11:ad:c2:00:46:5c:4b:e7:ad:f9:3e:44:69:5f:6f:96:69:
         fa:a7:1e:04:8f:a6:8c:67:eb:3d:87:74:5b:04:2d:ce:9e:3b:
         45:88:f4:22:d9:38:3e:87:41:61:c3:f7:06:fe:04:13:90:0c:
         f5:86:f5:db:84:0a:f8:a2:fc:e9:de:e1:40:04:e0:1d:c8:fd:
         fc:de:00:a2:09:2f:69:15:f8:d8:e6:ff:0b:cf:45:e1:c4:3b:
         a7:77:6a:cb:9d:90:d3:40:aa:02:d2:49:b3:85:95:b0:3b:9d:
         67:41:ef:89:25:f2:8e:51:74:6b:66:9a:53:23:37:76:5a:4f:
         86:2c:42:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 05:39:05 2026 by rpki-client