Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          bl+uxzcuHDhraq4ZOOd4q6q/4l88kG9Bp90aqzQJd58=
Subject key identifier:   68:F8:5E:E5:95:EF:3B:36:7F:D6:AF:96:62:A6:7A:0B:F1:7A:F4:AC
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F3829FFFCE6C2F7B8984FFF3F7A7F8D1A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          199B
Signing time:             Mon 06 Jul 2026 16:01:44 +0000
Manifest this update:     Mon 06 Jul 2026 16:01:44 +0000
Manifest next update:     Tue 07 Jul 2026 16:01:44 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: A/U4DG13f+h/XQty+ITqC0CCd0yLySgMHWxAel7qN+4=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 16:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:38:29:ff:fc:e6:c2:f7:b8:98:4f:ff:3f:7a:7f:8d:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  6 16:01:44 2026 GMT
            Not After : Jul  7 16:01:44 2026 GMT
        Subject: CN=68f85ee595ef3b367fd6af9662a67a0bf17af4ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:bf:dc:0e:33:56:a9:68:9c:7b:98:b8:45:7e:
                    cb:e9:3b:bf:7e:ce:af:05:de:08:ab:86:07:86:99:
                    dd:42:d3:3d:e6:7a:44:33:49:2f:d5:ef:a1:73:5c:
                    0f:2f:bb:57:79:de:55:a1:3d:66:96:4e:22:58:86:
                    ad:26:e1:18:15:25:87:9c:8e:62:21:14:03:20:6f:
                    0f:88:ec:b7:6d:dd:43:22:03:f1:4d:2f:8a:89:87:
                    97:84:03:0d:c5:5a:7a:b8:df:e8:58:d7:97:17:68:
                    df:da:56:fc:a7:ce:bb:64:13:d6:08:00:f7:41:27:
                    cc:4c:e0:74:54:49:b6:7f:b7:8d:c2:f1:be:0b:d1:
                    fc:5f:f5:8f:de:76:65:96:c0:57:ff:c6:e1:a3:31:
                    e9:66:57:f9:62:34:71:94:19:11:48:13:7b:e3:45:
                    ca:07:0d:88:b0:59:9d:08:c7:a4:55:d0:fe:f2:b2:
                    6b:5f:d6:2b:0c:00:cb:5a:bd:57:37:96:c1:9c:14:
                    1b:c4:e0:8a:d2:3c:1d:6b:ee:13:69:3c:1e:de:ef:
                    ae:99:a0:c7:ba:71:7c:87:7c:44:57:4b:a8:0e:58:
                    99:12:14:01:17:f1:46:88:7f:73:17:ef:4c:ce:47:
                    13:14:3f:8f:b4:d5:8a:22:da:bb:93:d6:53:3d:4f:
                    50:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:F8:5E:E5:95:EF:3B:36:7F:D6:AF:96:62:A6:7A:0B:F1:7A:F4:AC
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:f7:2e:39:f3:bf:bd:9a:72:21:fb:84:d9:a6:d6:8c:04:cf:
         60:92:f6:7d:14:c5:62:2b:3d:aa:12:6e:b8:b9:56:ee:7b:52:
         bb:96:63:42:8c:d7:89:42:0c:00:a5:f0:c7:2d:62:a5:b4:8a:
         67:b7:41:19:87:cb:56:d5:64:8a:ae:e7:38:7d:b6:49:93:a6:
         a4:05:53:72:f2:4c:d5:34:7a:99:69:51:b7:03:28:42:5b:77:
         4d:d6:72:ea:47:3b:ce:8f:3d:c5:d2:66:9b:7b:f7:0a:b2:81:
         db:69:3d:79:5f:98:22:67:f7:b9:8d:7b:2d:40:71:71:63:d0:
         a1:8d:d2:c0:0d:65:69:e3:b2:8f:bc:32:0a:f7:4e:d7:fc:22:
         19:d7:3d:d3:8d:6f:62:0e:f6:05:74:67:1d:b2:58:be:ba:2b:
         e4:3e:07:c2:39:60:da:de:33:a3:9f:26:30:92:44:18:6b:f6:
         52:f7:94:ea:ca:12:e6:88:31:c7:80:fd:f3:87:36:d1:48:f3:
         9a:f9:4c:a1:22:6b:31:a7:a0:48:0a:94:b8:7e:29:98:e6:42:
         f6:a1:52:93:8e:e1:ff:e1:0c:1f:42:b2:14:b0:44:03:7d:1d:
         6e:97:83:52:00:50:76:2f:40:ae:3d:11:5e:a1:c4:19:14:b4:
         60:7e:69:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 01:11:20 2026 by rpki-client