Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          K5VoNqKU/hnBjiBZBpmPMXN9zeoBAhVkcHYRCsmVAnI=
Subject key identifier:   28:35:30:35:1B:6B:CA:28:EE:BE:F4:F6:F7:02:E4:7A:C9:C1:63:40
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019EF2A3FED206CD68082988FCDC44BA06E5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1977
Signing time:             Tue 23 Jun 2026 04:01:34 +0000
Manifest this update:     Tue 23 Jun 2026 04:01:34 +0000
Manifest next update:     Wed 24 Jun 2026 04:01:34 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: CkY8ffOjTJiKQPAc0kJyUnIJGN+331fev1EA2Elt2rs=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 24 Jun 2026 04:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:f2:a3:fe:d2:06:cd:68:08:29:88:fc:dc:44:ba:06:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jun 23 04:01:34 2026 GMT
            Not After : Jun 24 04:01:34 2026 GMT
        Subject: CN=283530351b6bca28eebef4f6f702e47ac9c16340
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:a4:75:69:60:71:aa:8c:4c:c0:09:d4:4b:98:
                    97:2c:24:e9:de:1b:b6:2d:6b:ae:27:b2:21:66:ec:
                    00:1c:24:e5:af:94:97:24:ab:01:c6:39:80:a0:dd:
                    f9:91:ea:75:b9:29:9e:5c:44:93:38:ef:e9:cf:fe:
                    31:71:71:c6:30:22:51:15:9b:2e:43:53:f6:6c:c8:
                    cd:3e:19:35:a5:0d:75:eb:4f:bc:fd:2e:2f:cc:ec:
                    41:76:bb:cb:9b:8c:73:c3:18:f4:fd:d0:0a:fa:c5:
                    cb:aa:c5:a1:e0:74:87:f1:3d:f7:35:a8:96:3a:2b:
                    fc:d7:60:ec:53:e1:4f:f7:f2:e4:f2:33:09:9c:32:
                    12:97:10:b4:77:a8:12:29:df:25:82:78:fe:83:03:
                    f7:a4:76:05:b3:14:7c:e8:3a:3f:60:1a:36:53:7b:
                    f6:b3:77:22:5e:42:0b:43:c4:69:c3:5c:29:81:0f:
                    db:ba:0c:c1:a5:7e:b9:ec:33:44:56:49:1f:a9:65:
                    92:a5:e2:47:04:36:43:79:8b:d6:66:98:60:14:a7:
                    1e:43:4e:4d:da:15:93:f8:eb:e3:b1:b5:bc:ee:57:
                    e3:d0:87:b3:19:79:b3:22:4c:ed:14:1d:f9:91:64:
                    01:c4:2b:28:87:c4:76:d8:e7:48:a2:2d:4c:b1:55:
                    23:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:35:30:35:1B:6B:CA:28:EE:BE:F4:F6:F7:02:E4:7A:C9:C1:63:40
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:d5:25:00:ce:12:c1:4e:e8:20:ab:d8:79:9a:9e:9d:0d:06:
         8f:2a:7a:19:70:a9:33:44:f0:3c:0c:0c:d3:af:d6:9b:b6:9c:
         1a:47:b9:f8:60:bd:a6:36:1d:9e:5a:a6:97:84:59:e5:6b:1c:
         3f:04:5e:89:3b:45:04:f2:08:ec:38:a6:fb:02:85:18:f5:13:
         47:cc:1d:5a:d9:1e:2e:aa:f6:2b:1e:15:3b:9a:15:e6:89:bb:
         5a:bf:88:8f:59:e0:ae:5e:14:b1:12:f3:a8:e7:cd:b5:f4:50:
         9a:57:ac:45:6c:fa:97:c9:97:e7:f2:4d:42:83:c8:57:b6:f5:
         e2:ac:ba:18:88:3e:c8:eb:82:e2:2d:57:11:80:dc:d7:56:8b:
         63:60:f8:db:65:3c:69:f0:1e:09:76:8d:44:f2:a6:17:12:6b:
         23:e8:94:0e:c2:1d:68:8c:cd:d6:d1:a4:47:d2:e7:e8:48:2e:
         38:ba:b4:07:64:bb:e4:a2:25:34:1f:b2:de:85:13:b4:0d:07:
         86:11:96:bf:c9:af:06:f7:4a:4d:19:ca:50:da:1e:62:76:3f:
         e9:d8:e7:c8:e6:05:bc:97:f0:5f:a2:27:7b:4d:26:50:98:28:
         15:58:35:48:83:bd:9c:0e:f1:be:6e:9d:77:42:3b:96:f5:52:
         13:e7:26:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 16:09:40 2026 by rpki-client