Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          gwGnscFd7hjVv1MtZ5q5KFmevgs531RGt9alm9zZsFw=
Subject key identifier:   29:AD:95:AB:EF:54:7A:CC:B0:2C:DD:E2:B1:9E:90:93:CF:35:D4:CB
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019F3E9943EF06FEBB619D4E30812D78B6DC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          19A0
Signing time:             Tue 07 Jul 2026 22:00:59 +0000
Manifest this update:     Tue 07 Jul 2026 22:00:59 +0000
Manifest next update:     Wed 08 Jul 2026 22:00:59 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: uBKoT7tPSkTKNH46+OaXWyk5R83uSwc+zlIpvWkJitY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 08 Jul 2026 14:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:3e:99:43:ef:06:fe:bb:61:9d:4e:30:81:2d:78:b6:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Jul  7 22:00:59 2026 GMT
            Not After : Jul  8 22:00:59 2026 GMT
        Subject: CN=29ad95abef547accb02cdde2b19e9093cf35d4cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:70:92:78:7b:ba:c5:76:55:6d:be:a5:70:fe:
                    86:a5:90:37:65:88:e8:78:46:48:1b:93:c1:b3:6a:
                    f4:bb:97:d6:0c:e1:60:82:1c:06:3e:91:5b:dc:23:
                    e4:e7:88:ad:5b:2a:7a:f6:b6:11:a2:58:ac:1c:04:
                    71:7e:61:c7:77:ec:f5:04:18:48:47:7e:3d:a5:0b:
                    73:43:ad:b8:21:eb:7e:f4:3e:31:f8:05:f8:01:00:
                    2d:3d:f0:03:fc:08:1b:ef:ce:6e:22:6a:68:29:fb:
                    4e:66:68:b3:a4:be:2a:c2:d6:45:e6:f0:da:ef:53:
                    ca:51:62:fd:9a:c6:21:0a:1a:2f:b5:32:c8:ed:66:
                    6c:c8:14:35:8d:c4:a4:55:8a:a6:c8:37:f9:65:bd:
                    df:fe:08:23:4e:2b:64:a8:0a:4d:42:df:84:20:a6:
                    fd:78:1a:89:79:a1:0c:eb:20:19:61:7d:07:db:2e:
                    78:a0:5e:87:50:a9:82:f3:7c:30:68:a4:00:90:26:
                    54:5a:7e:90:3d:55:2a:9d:73:8c:58:82:e2:1b:18:
                    4e:fb:31:e6:86:4e:3b:c8:a0:ab:ac:f3:e6:58:ec:
                    a1:b0:b7:22:38:96:c1:02:50:50:cc:4c:29:16:e4:
                    96:5f:be:cc:e1:6f:89:e6:f6:20:7c:5d:2b:5e:e7:
                    90:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:AD:95:AB:EF:54:7A:CC:B0:2C:DD:E2:B1:9E:90:93:CF:35:D4:CB
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:de:82:3f:a2:be:52:3d:ce:d5:25:f8:4e:59:d4:d4:4c:ad:
         38:58:c2:00:a4:4d:80:53:72:fc:f1:5b:97:04:35:d0:8a:4f:
         89:1c:7a:92:d9:9f:dd:95:ec:5e:6a:d6:a5:0f:c6:43:9b:8e:
         45:c9:b0:51:63:7a:93:e1:c7:af:c8:5c:26:66:b8:c4:52:b2:
         59:a4:9f:46:59:c7:cd:39:c2:77:87:8e:eb:77:db:5e:61:da:
         c1:bd:d4:11:14:8b:ae:60:42:cf:71:b0:3d:0b:e6:ea:fa:12:
         9a:73:9a:0a:a6:7f:63:79:6b:98:2c:06:34:8a:2b:8f:bd:eb:
         99:06:84:80:80:20:0e:09:7c:c5:0b:79:54:f2:b4:72:f4:65:
         46:a6:12:1a:6c:39:b0:51:80:64:f8:22:3f:dc:55:e4:8c:e2:
         50:e2:97:e2:ab:69:d1:ea:c6:0a:c5:fe:14:95:bf:86:86:ae:
         1a:73:2d:28:d1:17:56:ec:0a:8b:6b:8e:8b:6b:e0:86:1c:ca:
         01:56:ee:de:cb:75:14:c8:e5:41:58:b8:41:a1:80:b1:e1:f1:
         16:65:f5:78:c3:ab:dc:c5:42:74:6c:bf:e3:83:f7:43:9c:a9:
         48:1f:0a:89:21:30:86:04:67:65:b8:0b:b6:b7:1c:e4:7e:79:
         d5:a7:75:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 23:20:18 2026 by rpki-client