Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          D+8m6oaIT/inFSQJbMoXoxPVYbtOrR9Tos3Ri5jlk6c=
Subject key identifier:   68:E4:61:42:DF:7B:13:68:34:01:3D:4F:0C:51:56:DD:62:B7:4D:4F
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F77E46E9C677C6A7D5FB4AF398505E02F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19BC
Signing time:             Sun 19 Jul 2026 01:01:26 +0000
Manifest this update:     Sun 19 Jul 2026 01:01:26 +0000
Manifest next update:     Mon 20 Jul 2026 01:01:26 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: yGyxSg/aHQtCsYFWCyf/ciLSHVhnymDWqf6CBdjTg5U=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Jul 2026 01:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:77:e4:6e:9c:67:7c:6a:7d:5f:b4:af:39:85:05:e0:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul 19 01:01:26 2026 GMT
            Not After : Jul 20 01:01:26 2026 GMT
        Subject: CN=68e46142df7b136834013d4f0c5156dd62b74d4f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:ed:d0:b5:a8:5f:c3:50:a5:fd:f0:8a:aa:cf:
                    3e:c3:19:91:36:84:9a:ef:7f:00:48:ee:0e:b5:43:
                    9d:67:b7:ec:1e:08:88:8b:bb:ae:b4:9c:2f:cc:1d:
                    ef:3a:bf:5c:9c:bd:fe:8b:39:3f:26:87:d2:0f:72:
                    03:36:d2:04:d3:64:17:78:35:e2:fe:d0:d5:db:15:
                    15:f2:a4:cf:f9:19:0d:ce:11:dd:7f:00:c6:b1:10:
                    d9:e2:03:ce:36:dc:26:16:e0:bf:ec:ba:be:92:62:
                    10:5a:17:06:33:8e:25:95:9e:53:f6:26:4f:eb:e8:
                    80:05:5e:99:8f:b0:d6:fa:96:a2:41:24:60:c0:02:
                    bb:18:5e:5b:db:d5:b5:01:33:1a:1d:6b:33:45:32:
                    86:1d:49:09:8b:e3:95:8a:58:6e:13:70:e6:68:1b:
                    ad:c3:34:c1:92:ef:9a:47:52:90:8d:f2:5a:b5:e5:
                    a8:61:f5:da:25:a5:ed:fa:91:de:2a:0e:5f:e4:1f:
                    ab:36:0d:29:1e:56:53:08:1d:1b:ef:8a:0e:b6:a6:
                    da:43:e1:bf:98:47:ae:97:79:f4:07:bc:d1:8b:a9:
                    6c:7a:f5:e4:7b:6c:c6:23:7c:63:01:1f:4a:c3:f1:
                    d8:06:e5:26:cc:28:8d:df:54:fe:db:a7:5e:89:a8:
                    1c:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:E4:61:42:DF:7B:13:68:34:01:3D:4F:0C:51:56:DD:62:B7:4D:4F
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:a1:17:6f:71:e6:b6:51:01:1c:91:ff:4d:7d:a4:72:01:dd:
         77:4d:e2:55:c7:37:77:b5:9f:f0:54:61:0f:a0:a6:ec:86:bf:
         f5:f5:71:d7:46:63:a0:0f:21:9c:a6:89:88:f3:9c:8d:3d:2a:
         d2:7f:5c:c2:5d:07:33:af:48:86:64:8e:54:4c:02:ff:10:e9:
         5f:8e:f4:ea:2b:0c:29:40:b3:b2:2c:6a:ad:49:b2:b8:2e:b3:
         cf:8a:3c:58:6c:5b:ac:1e:26:01:0e:b0:68:0c:26:1f:55:41:
         63:62:64:8c:a5:f8:b3:62:28:1a:8d:a7:51:9d:59:21:e2:0f:
         46:9e:bb:3f:40:09:cd:a4:5e:06:ec:9e:5e:46:40:0e:45:f2:
         e9:3b:4f:48:6b:fe:c9:8c:dd:6d:e8:a8:55:7b:53:ca:bf:69:
         37:8d:86:c3:aa:13:4f:69:ed:b5:4f:da:3e:8c:64:24:24:0f:
         3b:ed:fb:0b:50:80:4b:0b:c2:4a:2f:91:d8:f3:57:e0:1a:ac:
         05:58:2d:76:ac:eb:d1:49:59:05:a1:57:91:19:1d:82:89:1c:
         ac:7f:66:9c:d1:2d:20:7a:8f:4c:87:9a:5b:c0:fd:fc:4f:e5:
         e2:83:d8:69:5c:00:81:d6:4f:c0:a0:3c:38:8d:d8:60:18:12:
         44:84:48:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ935G6cZ3xqfV+0rzmFBeAvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzE5MDEwMTI2WhcNMjYwNzIwMDEwMTI2WjAzMTEwLwYDVQQD
Eyg2OGU0NjE0MmRmN2IxMzY4MzQwMTNkNGYwYzUxNTZkZDYyYjc0ZDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAru3Qtahfw1Cl/fCKqs8+wxmRNoSa
738ASO4OtUOdZ7fsHgiIi7uutJwvzB3vOr9cnL3+izk/JofSD3IDNtIE02QXeDXi
/tDV2xUV8qTP+RkNzhHdfwDGsRDZ4gPONtwmFuC/7Lq+kmIQWhcGM44llZ5T9iZP
6+iABV6Zj7DW+paiQSRgwAK7GF5b29W1ATMaHWszRTKGHUkJi+OVilhuE3DmaBut
wzTBku+aR1KQjfJateWoYfXaJaXt+pHeKg5f5B+rNg0pHlZTCB0b74oOtqbaQ+G/
mEeul3n0B7zRi6lsevXke2zGI3xjAR9Kw/HYBuUmzCiN31T+26deiagcpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjkYULfexNoNAE9TwxRVt1it01PMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJqEXb3Hm
tlEBHJH/TX2kcgHdd03iVcc3d7Wf8FRhD6Cm7Ia/9fVx10ZjoA8hnKaJiPOcjT0q
0n9cwl0HM69IhmSOVEwC/xDpX4706isMKUCzsixqrUmyuC6zz4o8WGxbrB4mAQ6w
aAwmH1VBY2JkjKX4s2IoGo2nUZ1ZIeIPRp67P0AJzaReBuyeXkZADkXy6TtPSGv+
yYzdbeioVXtTyr9pN42Gw6oTT2nttU/aPoxkJCQPO+37C1CASwvCSi+R2PNX4Bqs
BVgtdqzr0UlZBaFXkRkdgokcrH9mnNEtIHqPTIeaW8D9/E/l4oPYaVwAgdZPwKA8
OI3YYBgSRIRIdg==
-----END CERTIFICATE-----
Generated at Sun Jul 19 09:25:24 2026 by rpki-client