Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          kCz6iJcVJXk8D+J28rIkhhuWSrmfT+SkmABq/26QFBQ=
Subject key identifier:   B1:2C:71:1A:A8:65:05:4D:7F:21:48:35:D2:09:9F:93:5C:A8:FA:51
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F3302D5B667FAEC2055400962BD149990
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          199A
Signing time:             Sun 05 Jul 2026 16:00:51 +0000
Manifest this update:     Sun 05 Jul 2026 16:00:51 +0000
Manifest next update:     Mon 06 Jul 2026 16:00:51 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: zrVmzE8+BTqvs2oFeZ8quFobTdMW/ct0N4fx6L7SX4c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 06 Jul 2026 16:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:33:02:d5:b6:67:fa:ec:20:55:40:09:62:bd:14:99:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul  5 16:00:51 2026 GMT
            Not After : Jul  6 16:00:51 2026 GMT
        Subject: CN=b12c711aa865054d7f214835d2099f935ca8fa51
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:e6:ce:93:83:82:c4:c6:ab:88:5f:f3:4a:3f:
                    9b:37:c3:73:38:32:a5:94:91:9f:7e:31:1f:3a:84:
                    5e:3c:77:41:d1:b1:3d:1f:7a:c1:e8:3f:d9:94:51:
                    a0:a4:44:5d:73:ea:94:b1:81:a1:43:47:86:47:3e:
                    d2:40:e9:f4:5e:43:dd:70:a4:7c:f7:db:20:4f:60:
                    12:70:4b:76:cc:bb:ed:af:be:47:9b:77:f5:e8:65:
                    ca:bc:4b:10:03:b9:be:73:ac:95:af:77:1d:8b:56:
                    cc:b4:ad:40:95:b7:d2:0a:3e:69:87:8c:ca:c7:30:
                    be:3e:e5:38:8f:dc:4e:ef:40:bb:bd:c7:28:c6:1b:
                    d1:4e:75:0e:87:fb:57:b4:05:72:c0:b1:a9:64:02:
                    34:f4:93:e1:ce:ab:0b:11:1b:f3:56:70:96:89:ca:
                    16:24:ae:32:69:18:78:48:e3:19:2d:00:4f:6b:55:
                    88:1c:77:1f:d6:34:e4:7b:85:e1:93:75:b7:1a:56:
                    18:8e:e7:60:85:af:a7:ab:66:8f:55:51:4a:d7:21:
                    76:ec:48:3b:ae:14:db:60:0f:fa:e6:49:68:de:c0:
                    82:45:10:5b:ae:1a:ff:3c:4e:d8:08:3e:5a:41:27:
                    ee:9e:c6:20:33:75:7b:a5:a4:bf:f1:2b:f6:36:4f:
                    5d:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:2C:71:1A:A8:65:05:4D:7F:21:48:35:D2:09:9F:93:5C:A8:FA:51
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:44:42:42:ff:9b:7e:e2:41:1c:fa:60:14:eb:3e:08:cb:1b:
         0d:dd:7c:eb:ac:96:28:1c:f4:50:85:48:c0:41:05:42:22:ba:
         a3:42:5e:83:73:2f:21:16:55:c6:0d:4a:c4:5c:38:fe:14:21:
         95:bc:92:60:af:4c:2e:3e:99:35:c9:86:16:cf:50:aa:a5:6b:
         e8:82:d6:55:0e:d3:ca:93:c6:72:16:3f:57:6f:0d:32:e2:af:
         2c:53:86:3a:3b:80:2c:04:b4:b5:99:f1:fd:9b:9c:17:f5:14:
         f9:31:2a:4d:9e:97:62:68:a9:41:d2:7f:0f:31:78:7a:0c:93:
         c5:fc:a9:91:5d:09:90:74:fd:68:cc:3d:d0:19:48:e1:e6:e4:
         7a:00:13:12:b1:a1:fa:b9:b9:74:e8:f2:60:e1:94:8a:09:fd:
         db:e1:b6:27:47:87:45:c3:c3:4a:5b:e5:12:bd:75:85:e7:78:
         ae:6d:d1:be:87:08:b6:79:c5:2c:2e:3d:28:2b:8d:5f:0b:03:
         cb:bf:40:d8:43:68:38:28:b7:f9:a4:ab:ce:a2:7f:bd:e6:2d:
         c8:e0:49:25:cb:a5:2f:a2:a9:c9:da:31:da:f9:02:85:9c:f7:
         a4:7c:80:8c:65:a9:66:8b:e7:4e:61:4d:44:1c:e8:cd:1f:ab:
         0e:95:28:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8zAtW2Z/rsIFVACWK9FJmQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNzA1MTYwMDUxWhcNMjYwNzA2MTYwMDUxWjAzMTEwLwYDVQQD
EyhiMTJjNzExYWE4NjUwNTRkN2YyMTQ4MzVkMjA5OWY5MzVjYThmYTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuebOk4OCxMariF/zSj+bN8NzODKl
lJGffjEfOoRePHdB0bE9H3rB6D/ZlFGgpERdc+qUsYGhQ0eGRz7SQOn0XkPdcKR8
99sgT2AScEt2zLvtr75Hm3f16GXKvEsQA7m+c6yVr3cdi1bMtK1AlbfSCj5ph4zK
xzC+PuU4j9xO70C7vccoxhvRTnUOh/tXtAVywLGpZAI09JPhzqsLERvzVnCWicoW
JK4yaRh4SOMZLQBPa1WIHHcf1jTke4Xhk3W3GlYYjudgha+nq2aPVVFK1yF27Eg7
rhTbYA/65klo3sCCRRBbrhr/PE7YCD5aQSfunsYgM3V7paS/8Sv2Nk9dGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLEscRqoZQVNfyFINdIJn5NcqPpRMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC0RCQv+b
fuJBHPpgFOs+CMsbDd1866yWKBz0UIVIwEEFQiK6o0Jeg3MvIRZVxg1KxFw4/hQh
lbySYK9MLj6ZNcmGFs9QqqVr6ILWVQ7TypPGchY/V28NMuKvLFOGOjuALAS0tZnx
/ZucF/UU+TEqTZ6XYmipQdJ/DzF4egyTxfypkV0JkHT9aMw90BlI4ebkegATErGh
+rm5dOjyYOGUign92+G2J0eHRcPDSlvlEr11hed4rm3RvocItnnFLC49KCuNXwsD
y79A2ENoOCi3+aSrzqJ/veYtyOBJJculL6Kpydox2vkChZz3pHyAjGWpZovnTmFN
RBzozR+rDpUojg==
-----END CERTIFICATE-----
Generated at Sun Jul 5 21:56:05 2026 by rpki-client