Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File:                     hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier:          r+mpa8NrKIOtu27C8exqR5rN3ubDlrM+0xZSiyeGbCs=
Subject key identifier:   55:0E:CE:18:34:FA:62:BB:C0:52:27:C8:20:C0:85:FD:6B:1A:C0:52
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer:       /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial:       019F70CECEE6902EA27252EC968EA60FF53A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number:          190E
Signing time:             Fri 17 Jul 2026 16:00:29 +0000
Manifest this update:     Fri 17 Jul 2026 16:00:29 +0000
Manifest next update:     Sat 18 Jul 2026 16:00:29 +0000
Files and hashes:         1: DRi6gZm2ApJ9zWvuSIffTh_44j0.roa (hash: NDQ8jCUezYMaYn3NL3pjn/AqInQQgH2COtpVWhCKawg=)
                          2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: 04uMVqy9kmQ3Z48WLX/v3YzD8+mqevRXC5jM+Ax9Ipk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Jul 2026 16:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:70:ce:ce:e6:90:2e:a2:72:52:ec:96:8e:a6:0f:f5:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
        Validity
            Not Before: Jul 17 16:00:29 2026 GMT
            Not After : Jul 18 16:00:29 2026 GMT
        Subject: CN=550ece1834fa62bbc05227c820c085fd6b1ac052
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:36:e0:6c:55:b6:c3:4a:e8:65:74:65:6c:e1:
                    0c:3d:d5:2a:16:e2:f3:1d:d6:e3:52:50:0f:49:73:
                    80:08:bd:63:f6:e9:d7:29:8f:a8:cf:4d:b4:7c:e6:
                    46:cc:3a:41:44:9b:49:29:e6:20:4a:0a:c6:54:13:
                    f8:f0:ba:3e:ef:a8:aa:6c:03:82:60:59:c0:41:92:
                    b2:53:e5:1e:c0:2a:ce:c1:64:f8:d2:c3:5b:8f:c4:
                    dd:bd:c0:d1:16:ff:10:54:2d:d2:e9:d7:0e:46:e2:
                    0b:d0:bb:37:93:47:18:9f:33:8b:75:c5:9e:09:b1:
                    b3:f5:2e:84:f6:f4:51:73:9d:f2:b5:39:0e:64:73:
                    cb:c0:9a:07:d1:f9:9f:47:7f:80:6c:99:2f:ff:98:
                    5c:45:cd:54:7d:cf:e0:08:de:fd:81:60:c0:ca:32:
                    bf:cf:73:c0:e4:26:23:1d:1c:5f:db:05:7e:3f:e9:
                    70:23:17:ca:61:9f:13:5b:a2:8a:05:9e:4a:45:42:
                    0f:2a:fe:d2:d2:72:9b:e3:05:ef:07:4b:41:0b:b4:
                    68:1b:35:2b:80:f6:42:00:b4:b8:aa:a5:a0:79:92:
                    c0:b7:d5:4e:8b:62:5f:0e:4d:64:c8:fc:84:3d:bb:
                    9a:63:fd:39:71:8d:6b:de:f1:d9:ea:d2:0a:48:28:
                    c9:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:0E:CE:18:34:FA:62:BB:C0:52:27:C8:20:C0:85:FD:6B:1A:C0:52
            X509v3 Authority Key Identifier:
                keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:f4:5b:f5:8b:dc:b7:20:e7:52:0d:9a:fd:e7:07:06:ea:be:
         6b:17:23:1e:e3:74:db:ec:20:14:6b:5f:79:4a:7b:39:d5:9a:
         d8:b6:10:14:48:45:3e:d4:4d:09:ed:92:f7:c3:86:0b:f5:82:
         fe:5e:54:20:d5:4c:10:30:15:88:a1:40:17:e4:c1:7f:32:aa:
         08:1a:2b:65:16:da:2c:1a:95:de:81:68:0e:7e:e2:f6:8d:e0:
         e2:07:1a:e4:19:8e:7a:dc:4b:bc:9d:44:57:c5:52:66:d2:00:
         ca:7a:bf:b7:b4:06:cd:71:01:bf:f6:a1:42:65:27:ed:5b:a3:
         f6:05:94:71:6d:e7:b8:fd:fb:6f:b5:ae:5c:69:ae:82:af:e6:
         03:85:50:4a:fc:fb:36:83:b4:52:30:88:dd:b5:3c:f1:87:91:
         f7:5c:55:4d:4c:30:4e:45:8a:b6:ba:81:1a:74:86:9b:24:04:
         4f:01:99:50:35:40:2e:38:2d:77:0b:8a:96:19:0c:a5:3f:25:
         e4:cf:7a:d5:ec:03:9d:ac:01:d6:68:68:e6:de:a2:0d:5a:72:
         b8:a7:25:7d:83:93:ef:18:a7:13:fd:16:15:7a:a0:29:c6:72:
         73:d0:0d:7d:2b:b2:68:23:50:b9:75:e1:6b:ec:1e:4f:c3:97:
         8d:40:8d:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9wzs7mkC6iclLslo6mD/U6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2MDIyZTE2MmY2ZTZiOTc1NWNlNGNlODQ1MTIwZTYyOTM5
NTA2ZjcwHhcNMjYwNzE3MTYwMDI5WhcNMjYwNzE4MTYwMDI5WjAzMTEwLwYDVQQD
Eyg1NTBlY2UxODM0ZmE2MmJiYzA1MjI3YzgyMGMwODVmZDZiMWFjMDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DbgbFW2w0roZXRlbOEMPdUqFuLz
HdbjUlAPSXOACL1j9unXKY+oz020fOZGzDpBRJtJKeYgSgrGVBP48Lo+76iqbAOC
YFnAQZKyU+UewCrOwWT40sNbj8TdvcDRFv8QVC3S6dcORuIL0Ls3k0cYnzOLdcWe
CbGz9S6E9vRRc53ytTkOZHPLwJoH0fmfR3+AbJkv/5hcRc1Ufc/gCN79gWDAyjK/
z3PA5CYjHRxf2wV+P+lwIxfKYZ8TW6KKBZ5KRUIPKv7S0nKb4wXvB0tBC7RoGzUr
gPZCALS4qqWgeZLAt9VOi2JfDk1kyPyEPbuaY/05cY1r3vHZ6tIKSCjJDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFUOzhg0+mK7wFInyCDAhf1rGsBSMB8GA1UdIwQY
MBaAFIYCLhYvbmuXVc5M6EUSDmKTlQb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC83ODJjMDctNGJiYS00ODEwLWI5OGIt
MDU5ZGJjYzhkY2VmLzEvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC83ODJjMDctNGJiYS00ODEwLWI5OGItMDU5ZGJjYzhkY2Vm
LzEvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhPRb9Yvc
tyDnUg2a/ecHBuq+axcjHuN02+wgFGtfeUp7OdWa2LYQFEhFPtRNCe2S98OGC/WC
/l5UINVMEDAViKFAF+TBfzKqCBorZRbaLBqV3oFoDn7i9o3g4gca5BmOetxLvJ1E
V8VSZtIAynq/t7QGzXEBv/ahQmUn7Vuj9gWUcW3nuP37b7WuXGmugq/mA4VQSvz7
NoO0UjCI3bU88YeR91xVTUwwTkWKtrqBGnSGmyQETwGZUDVALjgtdwuKlhkMpT8l
5M961ewDnawB1mho5t6iDVpyuKclfYOT7xinE/0WFXqgKcZyc9ANfSuyaCNQuXXh
a+weT8OXjUCN4Q==
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:17:17 2026 by rpki-client