Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          fUoY+UTC8gIJayKT/yYHXqE6NAqHsAE9nAorzMs/q7U=
Subject key identifier:   1A:82:15:6F:9C:F0:5F:EE:1C:3F:32:46:0A:B3:58:2F:B5:38:CE:AE
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F58FDA01A09865025BE983A77E7DC923D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19AC
Signing time:             Mon 13 Jul 2026 01:00:44 +0000
Manifest this update:     Mon 13 Jul 2026 01:00:44 +0000
Manifest next update:     Tue 14 Jul 2026 01:00:44 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 1zWiZfhVPCsw6xf4vWnj88vHFYOMRY2Dz2iZdfJreok=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 13 Jul 2026 23:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:58:fd:a0:1a:09:86:50:25:be:98:3a:77:e7:dc:92:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul 13 01:00:44 2026 GMT
            Not After : Jul 14 01:00:44 2026 GMT
        Subject: CN=1a82156f9cf05fee1c3f32460ab3582fb538ceae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:1e:29:63:38:7e:7c:40:96:59:b5:99:04:ec:
                    a5:99:c6:2a:87:92:fe:9b:1a:c2:3a:3b:6c:10:b4:
                    3d:98:d3:96:f8:03:e5:9b:f1:e7:5f:c0:db:15:ee:
                    68:4f:7a:af:31:36:55:86:7c:fa:53:97:4c:62:42:
                    ee:6e:e4:88:71:00:eb:fa:43:9b:44:9c:fa:da:e3:
                    21:ec:23:6a:d7:f6:38:d4:4f:14:ac:08:26:32:8a:
                    83:ca:64:60:fd:f6:9b:67:45:6f:fb:98:f4:3c:6c:
                    14:a0:e3:af:10:c9:a9:47:8f:16:02:fd:41:1d:35:
                    af:e5:00:7f:79:51:6a:8c:bf:a9:53:5b:21:8f:70:
                    2b:ff:a4:10:df:6a:99:0d:4f:67:6a:46:58:a9:06:
                    6c:69:ba:d3:04:a6:3d:8d:62:da:e2:f8:5b:11:9a:
                    ab:42:7e:b3:b0:c2:3f:8d:7f:37:7e:66:0f:72:c7:
                    83:73:7b:24:bb:fb:1a:6f:36:38:0d:c8:b4:7b:62:
                    5b:3f:cd:37:6e:87:b4:78:32:69:51:af:cc:0b:69:
                    65:ae:9d:5e:e9:87:79:a5:f2:d5:f5:55:4b:0d:a6:
                    59:9b:ab:4a:96:ec:3d:7c:6b:5a:a8:4a:51:9f:1e:
                    b5:27:ef:93:7c:2a:b0:2d:d3:59:ec:0d:7c:5e:07:
                    92:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:82:15:6F:9C:F0:5F:EE:1C:3F:32:46:0A:B3:58:2F:B5:38:CE:AE
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:9a:0a:0a:d4:ae:67:e8:51:11:63:1c:64:25:74:4c:d6:ca:
         3b:a4:ca:6f:43:a3:d0:4d:5b:76:73:1e:f6:6d:50:d2:06:27:
         32:df:bc:02:9c:39:79:2b:19:e6:f4:b5:4d:bf:07:84:94:9a:
         bb:d2:70:4d:bf:43:9c:94:7b:ee:c5:ef:cd:ff:75:53:b9:19:
         12:16:f0:09:5f:25:d9:c6:78:7f:48:21:5d:25:b6:ad:35:87:
         61:60:0f:a8:58:99:47:c5:55:a2:88:28:6a:6f:ae:63:45:9d:
         64:ce:ad:74:93:43:4b:9b:ce:db:55:8d:fe:4e:b4:79:da:c3:
         99:2b:6d:76:56:36:d6:7d:0f:d3:6e:6c:e2:2d:75:7e:56:b6:
         e1:fe:85:c9:e1:30:14:5f:ed:ac:c5:fb:7e:11:5f:4a:6a:58:
         1c:81:aa:18:06:fc:99:02:a3:8a:00:61:aa:e2:41:8c:8a:b3:
         ce:2e:af:97:76:23:99:84:b0:2c:bf:2a:df:0a:1e:96:a5:47:
         cd:7b:08:58:13:27:0c:59:a4:c1:07:29:29:c9:90:72:81:d2:
         94:6c:4c:4f:79:9a:51:69:d0:af:f8:30:3d:1a:be:af:a1:46:
         cc:9d:e3:a3:46:85:5f:30:b5:9d:aa:e5:e0:a3:b1:ec:fb:2f:
         e6:79:63:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 06:40:16 2026 by rpki-client