Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          FZ2clDG5KtZGhMyqQaNpJp242H6gHFhb4y14gSfcjsg=
Subject key identifier:   32:35:C5:03:6A:9A:AF:EE:73:E7:04:44:7C:EE:89:9F:92:D4:40:3F
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F4E0C783868FEA021F5AECE6EC6A91A72
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19A8
Signing time:             Fri 10 Jul 2026 22:01:07 +0000
Manifest this update:     Fri 10 Jul 2026 22:01:07 +0000
Manifest next update:     Sat 11 Jul 2026 22:01:07 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: qcF5S1DME6jOw2QkF9TZibHBMG+ZGHheoFfKMS/b7/U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 11 Jul 2026 17:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:4e:0c:78:38:68:fe:a0:21:f5:ae:ce:6e:c6:a9:1a:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul 10 22:01:07 2026 GMT
            Not After : Jul 11 22:01:07 2026 GMT
        Subject: CN=3235c5036a9aafee73e704447cee899f92d4403f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:6c:cd:11:13:f1:9e:c2:15:a0:ff:bd:93:13:
                    63:0f:8a:89:04:f6:b8:76:24:fe:b5:f6:dd:3e:67:
                    b5:1e:06:7f:06:36:68:13:15:a2:66:c2:58:64:25:
                    13:c1:fe:85:f6:b9:8b:3d:ca:6f:e0:c5:a0:ed:cc:
                    1c:7c:ec:a4:03:87:87:26:c8:c0:3b:20:05:a9:c9:
                    54:f7:92:bf:65:4d:e8:85:11:39:94:54:93:78:6d:
                    92:81:31:a0:0b:84:d7:08:61:e3:ed:4b:bc:07:3d:
                    5b:e6:91:91:d4:b4:5b:fd:71:f4:c0:6c:d1:86:fd:
                    0d:87:ba:0b:61:f9:af:bb:4f:53:7f:0e:a0:f5:71:
                    90:d0:89:1c:02:8f:9f:f7:8b:a7:ad:78:46:95:8f:
                    6d:34:f2:f1:3f:ad:6c:f5:51:14:56:de:1a:ee:ea:
                    b4:a4:ed:20:af:62:9f:f6:2c:7d:ab:1d:72:59:6f:
                    08:af:c7:f8:49:9d:14:d3:c3:7f:c6:47:cb:71:2a:
                    13:3a:c6:bc:00:ba:e2:05:8a:54:17:fb:99:07:d1:
                    09:30:5f:35:5e:ac:5b:9e:4a:6b:26:ea:c4:32:fd:
                    4b:73:d6:39:17:f1:ac:87:d2:73:15:a0:80:e1:38:
                    60:d5:8c:66:a4:f5:d9:94:7c:92:19:7c:51:dd:34:
                    47:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:35:C5:03:6A:9A:AF:EE:73:E7:04:44:7C:EE:89:9F:92:D4:40:3F
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:2f:02:a6:fb:2b:55:b5:32:95:c0:10:46:cc:62:a8:0f:aa:
         75:af:a7:fc:e1:94:c9:43:51:bf:0a:65:a7:53:2a:7c:0f:81:
         c3:2a:1e:ee:7d:33:a0:d8:49:5a:2f:5a:18:24:be:37:f9:d6:
         36:45:68:5d:81:7a:4b:16:28:23:ff:6c:0b:9e:2a:85:1e:83:
         f3:f3:18:44:78:2a:fb:4c:7f:6d:64:3d:a7:32:04:bd:d0:cc:
         c7:e8:76:35:2a:45:5d:84:51:93:54:a7:35:5c:fb:c7:a4:c5:
         da:11:71:01:55:7b:ad:31:29:4b:9b:98:13:d0:d0:03:d9:92:
         fe:6e:c3:88:70:b6:46:22:f3:c4:2a:42:ca:f6:95:e9:d0:3e:
         ab:51:4c:2e:9d:f8:34:9c:65:65:d2:5d:a8:07:b0:1c:ff:44:
         79:b5:94:4f:17:49:26:a9:65:ab:23:5e:54:64:33:10:4e:0e:
         a0:65:cd:70:a7:3b:97:54:de:66:34:87:15:d9:38:a0:50:db:
         9a:00:aa:e1:7b:32:d6:f8:4e:35:61:3f:1b:58:63:8b:1b:6e:
         f5:09:5c:91:68:d0:f9:82:be:1e:2c:1f:9c:21:00:8a:db:bf:
         a1:83:03:74:d9:02:16:be:1c:1d:22:c7:55:0f:34:36:8a:39:
         a8:84:4a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 03:11:35 2026 by rpki-client