Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          oehC4zAZl724papuDak0ljLXkvJ1SqK1ftWnAQi6WMQ=
Subject key identifier:   C2:12:E8:77:4F:4E:CC:00:C9:F6:B3:FE:19:8B:01:D7:7A:6E:95:01
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F42762E48C05FA175871B727EA8196DE7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19A2
Signing time:             Wed 08 Jul 2026 16:01:09 +0000
Manifest this update:     Wed 08 Jul 2026 16:01:09 +0000
Manifest next update:     Thu 09 Jul 2026 16:01:09 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: R5kWbhH5TvWw827Aw7xLkAgUydaXePnErpWgqdTSqqE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 16:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:42:76:2e:48:c0:5f:a1:75:87:1b:72:7e:a8:19:6d:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul  8 16:01:09 2026 GMT
            Not After : Jul  9 16:01:09 2026 GMT
        Subject: CN=c212e8774f4ecc00c9f6b3fe198b01d77a6e9501
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:5a:4a:c6:11:86:92:b1:c6:f7:fa:57:ab:fa:
                    e8:a3:6a:8d:3e:37:ed:be:3e:0b:e9:f9:9d:7c:8f:
                    16:b2:dd:ae:d9:a4:11:16:23:4c:28:57:99:6e:c8:
                    2f:0a:b1:46:57:93:f5:47:87:bb:71:1b:2b:49:bd:
                    97:31:44:d6:85:1f:e3:81:f1:84:a9:95:ee:5f:d8:
                    70:6a:35:7b:26:99:30:69:36:60:ad:49:d8:93:d3:
                    b4:4f:d7:95:4e:e9:07:bb:1a:1d:c3:ab:66:c8:84:
                    13:d7:28:08:f0:65:99:f1:c4:34:7a:20:fe:f6:75:
                    fd:25:a8:3e:8f:15:cb:eb:34:41:b9:e3:1f:41:71:
                    64:c8:3b:76:41:c0:6c:75:f0:65:41:06:4b:86:fd:
                    08:0b:24:96:fc:2e:9a:04:46:57:69:05:3a:35:c1:
                    bb:1c:15:a2:5f:c9:71:04:13:9a:8a:00:fc:3f:5e:
                    d7:15:e4:6b:00:fd:a1:ca:60:11:33:c9:44:70:18:
                    b2:06:57:b7:9b:cb:eb:fa:f7:18:08:4b:82:8b:1a:
                    01:72:36:28:d7:05:b3:65:16:da:d9:a7:3c:9f:22:
                    93:46:cc:cc:2b:be:eb:19:1f:c6:69:06:36:97:25:
                    e8:ca:a5:59:74:19:dd:01:14:e4:3d:8c:df:49:0a:
                    cb:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:12:E8:77:4F:4E:CC:00:C9:F6:B3:FE:19:8B:01:D7:7A:6E:95:01
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:aa:8a:3e:3d:4a:fd:a9:a9:c9:94:30:60:57:5a:c4:ac:ce:
         5d:3a:f1:42:bb:18:56:99:7f:68:c7:cd:da:b4:57:e1:44:35:
         44:42:92:9c:90:ec:2d:96:6a:1a:f6:44:94:ce:6f:5e:b3:59:
         1f:88:cf:08:e3:cf:48:d4:2d:34:81:8b:2e:a0:3f:e8:ef:06:
         e7:e4:41:0e:a8:7e:97:41:f7:02:55:69:af:78:56:33:3d:c9:
         51:cf:c1:38:7d:c6:5d:65:3a:a3:f0:31:fb:a5:2b:40:aa:76:
         1e:af:e8:bc:4f:e8:fc:50:36:d3:aa:73:70:fb:41:fd:45:79:
         b0:5d:fd:ea:26:98:d9:43:16:57:03:0a:52:d3:de:80:91:aa:
         68:f4:b8:42:42:00:28:d6:99:bf:cc:50:70:2d:b9:54:2c:83:
         35:66:01:ec:5d:6c:9d:02:73:d3:88:24:dc:61:01:8f:66:a7:
         ca:13:63:42:87:4a:e8:f5:48:b8:91:fb:d8:81:54:e0:56:bd:
         f0:27:ea:02:46:fb:dc:50:d8:de:e6:c4:e2:3b:92:d0:ff:4d:
         95:0e:5a:da:e6:bb:0c:38:8a:b6:02:8b:71:12:b7:46:8c:2e:
         3a:b9:21:77:2a:37:7b:3a:c9:f1:1f:63:5c:87:e6:a2:35:79:
         01:04:29:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 00:02:51 2026 by rpki-client