Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          qcxVRAY6XNg53thNCeW13t5iT/1Afp+llF2ZpQvhMPE=
Subject key identifier:   73:FC:30:1A:21:AD:55:FE:CF:BC:9D:8B:C1:7F:9B:D5:56:CB:36:69
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F74AB8731F28F95C1188A6E3C438CDCD2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19BC
Signing time:             Sat 18 Jul 2026 10:00:26 +0000
Manifest this update:     Sat 18 Jul 2026 10:00:26 +0000
Manifest next update:     Sun 19 Jul 2026 10:00:26 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: e9REFcSMjLxXtJpOCBD9hRmAmeFm7FciFOjnj+nA+CM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 19 Jul 2026 10:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:74:ab:87:31:f2:8f:95:c1:18:8a:6e:3c:43:8c:dc:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul 18 10:00:26 2026 GMT
            Not After : Jul 19 10:00:26 2026 GMT
        Subject: CN=73fc301a21ad55fecfbc9d8bc17f9bd556cb3669
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:ef:94:1f:42:f5:b9:c3:fa:ec:cf:23:2f:18:
                    b7:93:ba:26:6e:2b:9a:d5:00:1c:15:4a:8f:83:3b:
                    f2:ea:83:59:6d:6a:2d:47:82:08:4f:d6:ef:13:b9:
                    ab:cb:c5:31:46:d8:62:06:7d:c5:59:d9:bf:b8:d4:
                    ea:04:ff:aa:96:08:23:95:6a:47:56:e7:3a:74:dd:
                    e4:aa:1f:d6:31:99:b5:f0:8d:37:05:68:5e:ad:a2:
                    1a:14:ea:c8:d0:c6:43:cf:45:09:de:6c:85:a9:74:
                    cc:0c:84:26:d2:0b:9e:e2:27:1a:58:bf:92:db:f3:
                    8a:f8:ee:d4:71:b6:00:49:79:9a:ea:61:45:93:b1:
                    c1:11:d1:ea:74:e4:a4:c9:ef:ee:48:a6:ca:42:4d:
                    70:2e:88:4d:92:80:73:67:07:11:c2:a4:df:75:5f:
                    b7:64:b3:81:9a:70:90:bd:bd:5a:5e:c4:12:19:bf:
                    35:15:2b:7c:7c:df:56:f5:d1:9e:f7:7c:88:0b:47:
                    f1:d7:d4:76:04:9c:1c:18:66:97:c0:6b:9a:1e:e8:
                    47:af:b6:b5:bc:3a:10:b6:af:63:5c:14:f5:cf:78:
                    dc:ce:37:e6:f1:5c:e5:78:12:94:ba:92:3a:30:e6:
                    5b:91:34:a3:62:c8:7c:9d:95:19:6b:ff:e5:a6:f4:
                    d9:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:FC:30:1A:21:AD:55:FE:CF:BC:9D:8B:C1:7F:9B:D5:56:CB:36:69
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:72:84:14:0f:ad:79:5a:98:ef:1e:d1:78:61:86:61:47:c5:
         4a:f0:93:9d:7f:a3:69:a8:82:71:32:e2:26:85:f2:6d:8c:f0:
         3e:1d:05:36:1f:17:70:a9:aa:10:91:f9:c5:dd:35:86:01:46:
         c6:c2:0d:c4:02:d2:30:02:3c:24:15:3a:9b:fb:fe:9a:0d:cd:
         62:50:3c:d3:cc:7d:81:61:50:fc:6f:06:df:bd:3d:ac:cc:11:
         9b:e6:c7:23:84:3b:3c:2d:56:13:1c:18:36:45:a9:d3:55:01:
         c4:2f:b0:70:53:41:a4:15:a7:e7:b9:d8:03:c2:2e:f0:8e:59:
         0b:b4:37:49:c5:71:17:ba:cc:a3:12:0d:4b:6d:76:91:d3:09:
         01:6a:35:d4:47:13:82:de:ce:57:d5:fe:e3:68:da:e6:90:d1:
         31:26:ce:ee:d9:5a:6b:69:c7:bf:2f:36:b0:bd:60:0e:53:00:
         15:3a:c1:72:d6:4b:b6:6c:4e:0c:2e:b3:ec:7b:1a:82:db:67:
         51:19:74:e0:6f:f8:7e:2e:d0:ac:69:a7:f0:38:76:b9:70:90:
         7f:0e:19:21:f9:75:39:83:4e:ad:7a:5e:36:a9:42:8a:33:a4:
         d0:de:38:45:07:f0:3e:8d:d6:70:79:87:a0:29:26:28:cc:bd:
         aa:e2:58:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 12:40:15 2026 by rpki-client