Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          Uyf8dSX6ek0bP57yesd6f0dWRZ7vlGfoIeAnAPC6xUo=
Subject key identifier:   C8:9C:58:92:1E:07:40:CF:E7:E8:C4:E9:DC:D3:C2:28:2E:5C:AF:3F
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019DC4158418CABA6DFB8A1D4316FDE9FD65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          18DC
Signing time:             Sat 25 Apr 2026 10:00:37 +0000
Manifest this update:     Sat 25 Apr 2026 10:00:37 +0000
Manifest next update:     Sun 26 Apr 2026 10:00:37 +0000
Files and hashes:         1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
                          2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
                          3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: oP/6wKImHaE66qhuW4QCTs0CDpLUN8QssbkyEmx9IXc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 26 Apr 2026 10:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:c4:15:84:18:ca:ba:6d:fb:8a:1d:43:16:fd:e9:fd:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Apr 25 10:00:37 2026 GMT
            Not After : Apr 26 10:00:37 2026 GMT
        Subject: CN=c89c58921e0740cfe7e8c4e9dcd3c2282e5caf3f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:84:35:75:d8:b3:57:48:02:84:2c:56:86:1d:
                    ce:f0:04:ee:ff:67:f0:95:26:70:37:6a:2f:71:cf:
                    77:cc:f4:89:ab:42:a5:37:f8:23:35:1d:5a:63:3e:
                    04:c6:d3:b2:36:3c:b8:d7:f3:16:8d:6e:c7:b8:f2:
                    c4:07:5a:a8:e9:e5:ba:f3:23:33:75:8e:b5:26:8e:
                    72:e7:db:2e:09:08:b9:3e:32:53:cf:53:e8:82:60:
                    86:2e:71:25:da:45:6b:67:ac:49:3c:7c:a9:25:41:
                    8b:80:84:45:23:4d:fd:09:85:5d:7f:09:6e:98:b8:
                    8b:71:3f:2e:a8:52:e7:73:b8:a9:41:c3:56:fe:88:
                    4f:c0:2b:f3:9d:e3:1c:34:4c:ca:5b:67:78:7b:f0:
                    6d:9b:a1:35:de:28:ea:da:43:ca:27:9c:ca:46:d7:
                    73:9e:aa:b9:83:01:66:94:02:ea:a3:e8:be:24:02:
                    ed:49:e7:f2:f3:06:f0:c5:74:48:41:ec:c6:08:8a:
                    02:13:aa:c1:cb:6e:78:59:95:4d:c0:9e:9a:4c:5a:
                    d3:05:86:35:f6:43:c4:d1:9e:41:40:4e:96:59:94:
                    2b:45:0b:c5:08:f6:a1:ad:30:c3:c8:ac:44:64:39:
                    1f:35:14:3a:13:be:c6:49:93:44:fa:c8:60:a2:c2:
                    99:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:9C:58:92:1E:07:40:CF:E7:E8:C4:E9:DC:D3:C2:28:2E:5C:AF:3F
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:fa:9d:05:c1:40:2f:7d:44:c9:f6:1b:07:25:25:06:c7:6f:
         96:31:0e:c1:17:6b:90:72:95:15:e9:b2:c8:44:51:e9:b1:83:
         3c:31:55:3c:05:fa:b3:06:18:94:91:a0:28:ec:5f:90:3a:08:
         0f:2e:27:ea:1c:18:c9:aa:d5:2e:1a:40:56:5e:45:df:a5:d5:
         55:e9:4a:98:e3:16:3c:27:18:36:96:0b:bf:22:71:61:90:d2:
         d9:10:cc:51:f2:80:b7:c5:d1:c4:9e:c3:cc:5c:45:4b:64:8e:
         83:b7:c9:cf:c4:86:34:e7:bf:bc:e4:4c:22:d1:d7:77:16:39:
         ab:26:1d:df:25:15:e1:4a:f9:31:27:b2:ce:49:a4:d6:8b:6e:
         b7:9c:e4:18:c8:48:ad:87:c9:3c:86:ef:47:af:4f:e8:6f:cc:
         ca:a7:4c:62:8f:44:92:c1:3c:ec:f2:7b:10:65:cf:8f:26:46:
         99:57:bf:e2:33:4f:df:1f:9e:6e:6c:2f:ea:59:2f:0e:3c:9e:
         9e:3f:d9:a3:7c:eb:bd:aa:f5:a9:e1:cb:49:56:77:c8:2a:2e:
         35:87:4a:67:09:02:5a:77:50:40:a7:82:96:17:05:d1:8c:a9:
         b0:ac:ce:7d:f3:67:03:e6:22:3c:35:e1:0e:0f:20:9a:41:11:
         39:ba:b6:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 25 15:11:29 2026 by rpki-client