Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          RSp8WG+2EgmMm09M8VjixbAH8vcrtGqUVEhU60dUgaw=
Subject key identifier:   71:B9:96:E0:82:0C:2C:A1:EF:88:35:97:A4:0F:4F:2F:13:AF:25:E3
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F2E8128EC1CB9EB61A9F1F21B7E35384E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1996
Signing time:             Sat 04 Jul 2026 19:00:44 +0000
Manifest this update:     Sat 04 Jul 2026 19:00:44 +0000
Manifest next update:     Sun 05 Jul 2026 19:00:44 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: FFDUxjfmnyqV7ITnzs5vYqADfbBAhNLgu/il5211Qyw=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 05 Jul 2026 19:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:2e:81:28:ec:1c:b9:eb:61:a9:f1:f2:1b:7e:35:38:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  4 19:00:44 2026 GMT
            Not After : Jul  5 19:00:44 2026 GMT
        Subject: CN=71b996e0820c2ca1ef883597a40f4f2f13af25e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:25:1d:fb:f4:eb:90:06:40:74:df:88:9e:7d:
                    c1:34:27:13:9d:52:37:6d:77:61:84:90:d9:02:a6:
                    84:64:7d:8f:a6:85:0f:1b:94:3d:89:ac:51:c3:65:
                    55:52:ab:c3:15:cd:ab:a0:7c:e4:b1:f4:6c:21:20:
                    1c:03:71:89:0a:a9:ca:5f:e3:b3:37:19:7a:2f:6a:
                    d9:e9:08:f2:e7:d9:f3:cc:1f:06:31:1c:35:9c:95:
                    2f:6d:b2:21:0c:9e:57:44:5d:45:0a:b3:71:a5:86:
                    a2:77:19:a1:cc:cb:ba:f8:af:9a:d3:58:23:f8:d2:
                    ae:5b:8a:b9:59:04:80:9c:6d:b9:0c:5c:91:e6:b6:
                    fe:8b:84:51:16:5d:bc:a9:d6:67:01:f7:6c:c6:42:
                    77:9e:37:4b:3b:6e:d4:fc:db:09:42:2e:ce:4b:27:
                    4a:6c:0e:7c:19:da:1c:81:57:12:d2:28:bf:be:f9:
                    92:cc:66:46:18:06:ad:20:48:78:c4:b6:fe:7a:42:
                    e6:4c:dc:56:95:67:f9:8b:74:ec:02:0a:25:a4:77:
                    c0:7a:b6:92:59:dd:20:b3:08:3c:71:4f:ca:c6:6f:
                    b9:40:33:e0:5f:d2:d9:f8:58:19:1c:1b:2a:01:d5:
                    3a:74:ea:a5:c2:49:fc:aa:9b:0d:0c:8d:f7:f9:6c:
                    de:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:B9:96:E0:82:0C:2C:A1:EF:88:35:97:A4:0F:4F:2F:13:AF:25:E3
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:b9:1b:70:9c:f4:70:6b:42:0c:df:a8:b4:28:1d:e8:e8:04:
         22:c9:56:66:87:cd:ab:56:3f:71:f8:18:fa:c8:22:42:32:bd:
         94:91:ed:0d:47:72:6b:df:ad:e6:8f:0f:9d:44:ff:18:10:6e:
         29:42:02:78:c1:9e:d7:06:1f:c7:43:9d:a2:10:ce:bd:3a:2f:
         93:15:bd:a7:e1:66:a1:15:a4:ab:8f:26:7d:39:23:82:68:6c:
         2e:9c:71:c4:f4:e4:16:26:cf:f1:a4:c0:4f:22:7f:e6:f7:e9:
         4f:a4:86:d7:09:3b:dc:aa:02:39:8f:78:92:3e:76:ea:3a:54:
         6c:16:d2:97:6c:2a:d4:7b:c6:a7:ae:b5:e1:dd:83:1d:f9:19:
         d3:56:03:90:a2:ca:8e:c6:95:da:fe:0a:47:d5:50:00:81:8f:
         19:f3:d7:3d:fc:2b:af:3f:a7:b2:a6:f0:4c:7b:32:11:64:45:
         d6:84:93:2a:a1:d3:9a:fd:a1:f1:1f:3e:e0:27:1f:f1:06:ef:
         18:be:b7:49:11:30:4c:6d:44:d8:0c:87:22:eb:a4:5a:3f:ce:
         33:11:eb:64:de:9a:6a:7e:21:b3:bb:df:a6:7c:1d:4b:22:56:
         c3:90:86:c5:18:3f:a4:a5:0e:2f:d8:17:9a:d1:eb:b3:59:bb:
         bb:f0:32:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 00:40:11 2026 by rpki-client