Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          ekYmSzr+oqvjG9Vfqowo+Rr1v+1Tm/4f1/6m2XNAExs=
Subject key identifier:   C8:00:91:E4:78:DF:23:E4:EC:85:70:2F:BB:EA:CD:79:0C:28:32:F7
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F59A2917933650710074098E347EEDFD8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19AE
Signing time:             Mon 13 Jul 2026 04:00:53 +0000
Manifest this update:     Mon 13 Jul 2026 04:00:53 +0000
Manifest next update:     Tue 14 Jul 2026 04:00:53 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: vt5PR4Uye9mjIyvHET3/Sdm4dpeTRDrz3cFkK4tYjHU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 13 Jul 2026 23:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:59:a2:91:79:33:65:07:10:07:40:98:e3:47:ee:df:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul 13 04:00:53 2026 GMT
            Not After : Jul 14 04:00:53 2026 GMT
        Subject: CN=c80091e478df23e4ec85702fbbeacd790c2832f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:4e:1a:71:a4:a9:c5:bc:2a:99:65:8c:d7:c7:
                    ae:13:2a:1a:73:10:01:1d:06:87:cd:4e:1c:17:2e:
                    8a:e0:32:d2:40:80:e4:81:79:15:84:3d:26:8e:3f:
                    36:7b:f7:aa:51:a3:30:f6:83:7f:18:fc:b9:51:f3:
                    fe:fe:50:6c:f1:56:f7:58:a0:36:af:3d:8c:c8:ad:
                    e9:0d:4a:2b:33:3a:6f:f5:a5:48:30:0d:c5:9a:21:
                    70:bb:1f:c8:c3:de:e2:5d:7c:a4:0c:72:db:e4:3d:
                    a6:9d:8c:31:73:b1:8b:21:13:d7:b9:ae:ea:fc:09:
                    eb:5e:71:d3:e1:27:33:bb:a0:75:ab:1d:70:1e:45:
                    20:b7:ff:c5:3e:01:70:0b:2a:5c:71:0a:8f:9c:e5:
                    8e:4b:d9:fa:11:1e:df:3e:c3:ba:e2:5d:ed:2a:9e:
                    8d:ca:7c:bc:a7:17:46:7e:18:4b:f3:c3:b4:ff:01:
                    d5:4c:0d:18:10:c9:a9:a0:0f:87:1b:1d:82:4d:dd:
                    fa:47:c0:76:c8:56:db:bd:46:e4:1a:31:0b:00:13:
                    89:e1:58:47:b6:5a:8f:86:24:ab:53:99:3f:8b:52:
                    0a:85:e8:33:2f:e5:ee:43:0d:17:28:17:98:00:f8:
                    f9:b3:8e:59:27:7f:c0:ee:a2:fb:1e:83:20:b3:a5:
                    8a:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:00:91:E4:78:DF:23:E4:EC:85:70:2F:BB:EA:CD:79:0C:28:32:F7
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:3e:f4:58:eb:27:f0:af:08:3f:ee:26:14:75:73:cc:d2:9f:
         b8:37:b6:db:f1:ca:fd:7e:9e:ac:7a:ff:33:34:ec:31:05:86:
         62:fa:5a:b0:3c:67:0b:6a:d4:43:ad:83:6c:84:1d:ae:ea:a0:
         0d:95:4b:dc:98:b9:c0:4d:82:cd:12:a4:1e:28:07:3d:b7:76:
         06:0a:66:f2:82:db:e0:23:21:e9:50:10:15:db:29:4f:cf:fc:
         46:3f:7f:c8:9b:a6:81:49:36:12:da:11:e2:7a:56:d8:4c:f3:
         cf:de:a7:e0:1c:5a:f9:25:82:5e:d7:22:53:4e:7b:c5:19:0f:
         3e:c6:e3:a6:0a:b6:57:56:cc:f3:f5:d4:86:1a:12:29:45:77:
         1f:a0:67:d8:54:6b:a7:45:f3:6d:1a:a1:2a:a3:94:38:b8:86:
         38:21:d5:d7:ff:b4:ef:d1:d5:76:94:46:1b:47:de:37:97:21:
         0b:da:2f:ca:cc:81:70:8e:80:de:bd:db:88:cc:94:08:b7:58:
         9b:3f:4a:7e:7b:67:55:ad:77:5e:dd:87:c6:f8:a4:80:83:8e:
         2b:20:73:84:a7:4b:4a:08:3a:f1:91:23:39:19:a9:da:43:fa:
         2e:f8:c1:9a:46:b9:a0:f0:d5:76:61:e9:af:a1:e4:99:f2:fc:
         c7:d1:06:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 05:50:17 2026 by rpki-client