Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          pDVS+vB1TdxxOkC578EGgr27QPLjUa5Hr9QIuORqb4o=
Subject key identifier:   55:5C:4B:93:40:4A:0E:8A:33:41:40:6C:B0:BA:F8:AD:1C:C6:E6:60
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F2D37AE979792561DD57D7788CAE3E263
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          1997
Signing time:             Sat 04 Jul 2026 13:00:51 +0000
Manifest this update:     Sat 04 Jul 2026 13:00:51 +0000
Manifest next update:     Sun 05 Jul 2026 13:00:51 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: Tcmpw0bJdrvrv694sdATfVsNhuUG+lpZVG4LAdX4wrE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 05 Jul 2026 13:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:2d:37:ae:97:97:92:56:1d:d5:7d:77:88:ca:e3:e2:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul  4 13:00:51 2026 GMT
            Not After : Jul  5 13:00:51 2026 GMT
        Subject: CN=555c4b93404a0e8a3341406cb0baf8ad1cc6e660
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:2f:65:89:66:d8:12:20:a3:a2:74:83:69:24:
                    80:56:76:3f:e3:24:10:70:98:22:ee:74:6c:da:52:
                    de:55:c0:87:80:ab:f2:f4:74:21:ff:fb:70:cc:82:
                    72:ee:fe:52:c1:42:dd:cf:35:9f:f8:8b:91:f2:15:
                    a1:ff:05:86:b7:a8:15:1e:08:93:49:67:db:78:25:
                    04:42:12:aa:48:ac:43:89:27:dc:5b:1c:68:0a:07:
                    df:06:18:44:06:82:45:0f:f7:84:88:d1:02:63:f6:
                    34:57:f2:8a:26:4d:98:8e:43:a0:02:04:7e:f5:db:
                    18:f0:23:65:fc:5a:f0:85:b4:b2:54:e7:3d:0b:96:
                    89:f2:00:58:87:40:8e:38:43:fa:dd:9b:4c:ed:8e:
                    45:70:e9:b2:01:a5:80:f6:87:bf:01:1f:5c:dd:76:
                    71:06:c0:8d:a7:4d:4a:37:20:14:e7:08:8e:3b:f1:
                    f7:4f:1d:bc:d3:d9:0e:96:b6:82:39:86:d6:30:ca:
                    48:d5:c5:b5:59:29:5f:bd:e3:8e:cc:43:0a:1d:6b:
                    a4:79:39:39:cf:92:8f:85:2d:e7:c6:cb:98:36:3b:
                    f2:3d:c5:e9:55:ab:64:45:1c:a7:78:2c:13:18:24:
                    de:57:b7:70:cc:eb:c1:b3:50:14:8e:60:6e:c6:c2:
                    07:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:5C:4B:93:40:4A:0E:8A:33:41:40:6C:B0:BA:F8:AD:1C:C6:E6:60
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:37:6d:c6:da:46:36:41:eb:ab:70:a1:50:43:cc:e1:2b:b4:
         e3:c5:25:c6:1d:82:09:e5:df:8c:7a:8b:05:65:f2:36:86:8d:
         7c:3d:a9:5b:d4:d3:51:4c:f4:2a:af:39:1a:98:3e:a7:69:e9:
         33:c8:88:ef:4c:ed:4a:fe:f8:d4:3e:43:39:1b:57:14:ad:32:
         c1:ad:95:49:53:48:43:fa:a9:51:a4:5b:0a:69:4d:12:94:6f:
         16:2a:24:93:8b:ac:2d:0a:9d:3b:f3:8b:e2:b3:d7:d9:e7:16:
         73:e6:ba:7d:88:5c:77:c3:47:6a:7c:4c:df:6a:3c:d3:85:7e:
         ef:85:e8:af:c3:84:10:9e:cd:13:02:a2:fc:97:66:f9:1c:18:
         f2:0f:19:be:19:33:a9:cf:9a:6b:de:8b:e1:08:ed:ed:6a:bf:
         ae:3e:4f:4b:8a:34:05:1e:4c:b6:d0:47:d9:b9:a0:d6:e6:f7:
         25:73:57:80:ad:6f:d7:8c:49:7d:22:8e:9e:28:aa:50:b7:c7:
         61:ff:b2:75:f9:5a:6a:38:17:7a:e2:5e:bf:5b:83:0d:87:a7:
         e5:d3:f4:59:d0:d4:7a:d7:24:7d:bd:ae:da:2a:c6:07:54:3d:
         5b:dd:34:71:e6:f8:aa:56:ea:07:93:08:09:47:ea:3f:a0:da:
         27:e7:7a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 21:59:00 2026 by rpki-client