Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          MRboxu4dkeqkvVV4pGQnJvdU71wBx209ar1fltur54c=
Subject key identifier:   BF:9D:E4:02:42:19:2F:AA:08:71:28:CE:E1:D4:96:9E:43:3D:E3:F1
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F43C033982744CB76EC33F2C0D9DE0B1C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19A1
Signing time:             Wed 08 Jul 2026 22:01:37 +0000
Manifest this update:     Wed 08 Jul 2026 22:01:37 +0000
Manifest next update:     Thu 09 Jul 2026 22:01:37 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: GagK8/sh3h8T9wACvOIdEBLQt9LXz95A1JpViYSd9pg=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 20:43:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:43:c0:33:98:27:44:cb:76:ec:33:f2:c0:d9:de:0b:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  8 22:01:37 2026 GMT
            Not After : Jul  9 22:01:37 2026 GMT
        Subject: CN=bf9de40242192faa087128cee1d4969e433de3f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:eb:d4:2e:f2:ac:46:14:8c:8c:ae:da:27:80:
                    f4:53:92:5b:61:67:d6:76:3d:f0:9d:ca:c3:34:7e:
                    be:71:1b:b3:de:3b:4a:c6:c5:3c:f4:80:32:0e:d2:
                    ca:02:ea:69:12:65:86:65:73:2e:83:28:c4:93:af:
                    84:73:c7:d4:b0:bf:72:65:f4:9d:e9:6b:39:eb:f0:
                    f0:9c:58:1e:8a:22:76:58:44:c6:3c:73:f9:01:43:
                    78:46:ac:61:0d:10:0e:09:1e:d5:49:fb:ec:cb:e0:
                    13:4c:06:02:a5:04:63:f8:d8:c7:8a:44:d9:63:9d:
                    87:4f:2f:26:34:23:2a:4d:25:95:0e:b9:b3:dd:69:
                    06:e9:82:35:e3:9a:c2:5b:79:95:ac:4c:47:b0:75:
                    af:ae:7f:44:82:27:84:ba:a4:36:fa:6f:b6:df:8a:
                    81:33:87:43:56:3b:99:ea:ea:8c:a8:48:a3:9c:3a:
                    a9:92:f1:1e:06:cf:81:e7:7a:54:a7:79:8d:e0:b9:
                    f3:3f:7c:c4:f3:e8:42:43:ba:4d:c9:9c:a6:29:64:
                    65:a7:ad:f3:cc:6b:fc:0d:31:e3:d7:6a:c3:77:82:
                    13:84:ea:28:74:fc:3d:78:3a:d9:43:46:03:f6:b5:
                    4c:9b:c2:69:f7:49:c0:9e:fa:fc:64:a0:93:3c:a1:
                    88:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:9D:E4:02:42:19:2F:AA:08:71:28:CE:E1:D4:96:9E:43:3D:E3:F1
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:b6:d0:c4:8b:9f:e2:29:21:03:8a:99:b4:f9:05:0f:3f:dc:
         ec:eb:9d:62:e3:5d:ed:59:f4:1c:97:31:8b:a3:fd:b7:53:43:
         8c:a1:a4:d1:f5:fb:08:f6:a6:df:5f:72:ba:2f:a6:6f:33:7a:
         89:9a:57:1b:e8:07:92:85:00:87:51:9d:c0:fa:b1:ac:b3:b6:
         fb:fc:03:d9:9b:e2:49:2d:5f:b2:cc:82:b7:7f:fc:a5:e3:77:
         52:fa:b2:3b:88:d7:d7:e8:e5:43:29:ac:db:1c:e4:44:a0:d0:
         f7:62:0a:6f:ce:4b:86:47:20:bc:c3:3e:89:84:50:1a:6a:67:
         4d:54:3f:f5:59:b7:d3:49:74:53:0d:fc:cf:64:ba:c7:47:57:
         23:8e:76:b7:f4:47:8d:81:bc:81:c4:5a:30:b0:85:c3:43:c4:
         e1:ff:27:26:10:c7:70:76:6b:db:6d:5f:af:f9:f4:ff:a9:6c:
         0f:42:04:93:45:fd:2b:9e:f1:8d:0a:cf:51:7a:2a:f4:a5:ec:
         60:d3:35:13:ad:7f:f7:15:94:6f:9c:03:ba:14:58:a7:16:6f:
         23:2a:a0:dd:1b:06:db:0b:a2:5c:65:db:9a:1a:20:68:80:9b:
         80:e4:7c:a1:88:bd:8c:76:f6:21:d9:1c:11:9e:3a:33:cd:52:
         d4:ae:22:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 02:36:00 2026 by rpki-client