Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          N+BmVVK3Q8+Ae++/Nd40VfTk40lBFrqDK571u/VucSM=
Subject key identifier:   55:FE:71:3F:37:E1:88:14:69:01:25:AE:49:E7:AB:36:6F:2D:B8:FE
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F7888BC2721F8E4B70C00EFE6CAB0F49A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19BE
Signing time:             Sun 19 Jul 2026 04:00:54 +0000
Manifest this update:     Sun 19 Jul 2026 04:00:54 +0000
Manifest next update:     Mon 20 Jul 2026 04:00:54 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 7J/VXrFiNY6svtZuIn6/mDgVR6ynlGns2V+8/iqu61A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Jul 2026 04:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:78:88:bc:27:21:f8:e4:b7:0c:00:ef:e6:ca:b0:f4:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul 19 04:00:54 2026 GMT
            Not After : Jul 20 04:00:54 2026 GMT
        Subject: CN=55fe713f37e18814690125ae49e7ab366f2db8fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:4d:14:5e:e0:d2:16:12:15:91:9c:ef:be:cb:
                    62:2f:90:09:02:6c:24:27:21:b3:6b:6e:ed:14:e7:
                    86:54:38:e7:f5:2a:97:89:2b:28:d3:c5:9c:f2:85:
                    15:d8:3a:10:9f:eb:d8:8f:2c:64:1a:78:db:f3:b6:
                    d2:f7:22:b7:94:b3:50:a4:e2:4b:ae:ef:0f:5e:99:
                    31:74:04:05:84:d9:52:ba:81:a5:c8:42:c9:80:df:
                    09:15:84:11:ad:6c:93:0f:de:10:2f:00:7a:30:8c:
                    22:a4:02:1d:11:10:cf:bb:c9:cc:95:b6:89:63:f8:
                    58:c0:5c:f6:dd:30:dd:cd:54:79:cd:a4:21:d5:7b:
                    bd:07:fa:ab:d8:1a:b5:d1:03:77:b8:cf:cd:7b:4b:
                    c6:7e:f1:5e:10:45:9a:4c:ed:dd:6d:34:d0:f4:3d:
                    5a:50:18:ba:21:5d:a9:63:25:f0:f3:82:f6:40:ee:
                    a3:a6:34:2f:28:ab:0f:b1:fd:27:88:81:fd:4f:36:
                    0d:b6:18:e6:a8:95:77:bc:6c:e8:ff:df:94:5b:61:
                    c7:62:5c:f6:cf:74:4e:01:98:d8:c6:39:60:5f:56:
                    2c:f0:1e:16:be:24:25:6b:40:84:69:3c:96:2d:22:
                    b2:47:00:21:e2:38:16:07:bb:ee:1a:ad:39:65:b1:
                    b5:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:FE:71:3F:37:E1:88:14:69:01:25:AE:49:E7:AB:36:6F:2D:B8:FE
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:78:e0:ba:82:93:09:90:bc:fa:45:2c:66:d7:77:37:94:01:
         e8:da:cb:c8:cc:f4:07:3d:38:ef:dd:4d:37:35:28:af:5b:be:
         56:e3:7d:75:28:c6:a2:87:b4:34:b3:72:3c:d7:ae:99:6b:1d:
         22:63:91:3b:1c:cf:a9:4b:19:2d:91:96:c6:4c:cc:d8:ff:06:
         5c:ae:1b:65:58:bd:c0:e6:ba:ba:25:69:47:3d:82:6a:e6:ff:
         57:40:d7:d4:bf:f3:3e:1a:27:cb:7a:18:cf:8f:d2:5d:5f:07:
         46:7a:89:29:34:49:df:96:77:72:a8:55:9b:38:fb:84:5d:cd:
         c2:46:47:b3:85:4c:91:21:ee:42:4a:8f:6b:6b:f1:04:43:df:
         64:a1:5f:c6:58:16:6f:c5:6e:b6:a0:ce:7c:6b:ed:3b:fd:7c:
         39:16:cf:64:1e:9e:12:af:73:0f:e9:31:d4:62:36:e2:4b:89:
         cd:52:59:ca:65:91:43:eb:f5:ac:79:50:00:cf:ef:df:81:cc:
         35:25:d3:e6:5d:18:58:fd:4b:11:5f:d7:f8:d5:45:f6:fb:a0:
         d6:a0:b2:af:45:6c:ce:6a:31:a3:a8:bd:ec:67:1c:a9:2a:0e:
         65:cf:c4:23:19:c2:22:45:9f:c7:1f:5c:09:04:63:c6:4c:6f:
         1d:46:07:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 13:37:30 2026 by rpki-client