Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          PDTTl9g6H8yqw4BJl5ZpvXsSOIHRo+jEiO8lXV556L8=
Subject key identifier:   EA:55:48:C4:F6:B5:9F:E5:F1:06:FB:E9:D1:0E:D6:A0:CC:B6:DB:65
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F498AA55025FDD30093DE072B210DF64A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19A4
Signing time:             Fri 10 Jul 2026 01:00:50 +0000
Manifest this update:     Fri 10 Jul 2026 01:00:50 +0000
Manifest next update:     Sat 11 Jul 2026 01:00:50 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: GSrs8jsdkU/aUaA56R4kDFHtI6Ub5gAZyJnEJNpZnJE=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 10 Jul 2026 20:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:49:8a:a5:50:25:fd:d3:00:93:de:07:2b:21:0d:f6:4a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul 10 01:00:50 2026 GMT
            Not After : Jul 11 01:00:50 2026 GMT
        Subject: CN=ea5548c4f6b59fe5f106fbe9d10ed6a0ccb6db65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:40:37:56:d5:95:9e:87:57:ff:65:c0:31:09:
                    35:52:6a:05:16:cb:ca:ba:4e:44:90:92:f7:84:34:
                    73:01:28:5b:16:07:5a:4c:af:6e:c7:69:bd:e4:39:
                    39:f7:2c:8c:23:12:cd:61:40:14:db:0b:a8:fe:3f:
                    e6:68:cb:51:f3:96:ae:d7:1f:5d:9e:bd:b9:a7:9f:
                    8a:ab:37:98:46:d1:ae:09:79:1b:88:38:59:49:46:
                    d9:d1:75:c7:b8:ce:18:ef:73:d9:05:e8:53:3e:5d:
                    63:bf:b0:b5:50:13:67:8a:9c:14:70:34:14:d5:5a:
                    6f:21:e6:fe:06:90:a7:a2:84:d7:69:67:22:17:06:
                    fd:8c:10:96:be:c9:87:8a:36:67:58:d5:c9:f9:fd:
                    cc:20:e6:1e:9a:b5:1a:80:7d:ce:17:c7:7a:e6:28:
                    90:da:d1:76:99:e6:b7:59:26:d8:a7:de:8d:5c:0d:
                    6f:d3:c6:ba:12:62:64:4b:74:39:ed:e4:03:8e:12:
                    b9:f2:44:9e:6a:07:80:5e:b7:be:f1:7c:35:94:29:
                    a2:2a:39:fd:2f:04:b7:3d:a3:be:73:ef:2e:dd:a0:
                    c2:cc:cf:c7:a6:43:32:61:4d:07:41:47:82:c8:64:
                    5b:f0:e1:3c:96:11:ac:e7:57:bd:e2:d4:99:46:24:
                    8a:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:55:48:C4:F6:B5:9F:E5:F1:06:FB:E9:D1:0E:D6:A0:CC:B6:DB:65
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:f1:71:4b:cb:64:9e:d4:30:9b:a5:f3:e3:68:70:2f:d3:6d:
         96:d0:99:29:d5:2f:8e:da:9e:e3:0a:bc:82:f0:e5:8c:38:bc:
         2a:15:1f:4c:9b:ce:0a:e4:5f:6d:16:4c:8e:2a:55:fc:56:84:
         87:d9:c1:ad:40:99:f3:21:81:09:2a:05:e3:6a:17:0f:b3:62:
         79:2c:a9:c0:c9:0b:99:9a:0a:2d:e2:a4:a0:5f:d0:41:ad:44:
         d9:6b:9d:56:93:8f:c9:98:ff:f3:c7:7b:cf:8d:70:95:95:fe:
         02:ba:d1:6f:aa:f0:75:a3:dc:78:95:b8:32:0e:59:68:27:fc:
         bf:6f:a3:1a:95:9b:f2:0f:c1:e6:3b:61:56:fc:18:2e:f5:1f:
         f0:6c:7e:3a:ac:82:27:32:65:1c:dd:14:33:92:30:4a:e9:98:
         36:b6:f9:b1:bc:cf:68:d7:16:34:59:21:a9:0c:1b:5f:f0:4d:
         73:a4:9e:1d:f3:89:0b:7b:0b:2b:98:26:be:36:5e:d0:bf:93:
         bd:63:24:92:35:f0:f3:78:5c:b9:03:3e:26:0e:10:51:21:3f:
         84:2c:79:88:5e:c2:73:bf:86:ce:65:fc:1c:ae:92:93:a9:de:
         70:f4:56:21:cf:10:89:dc:0e:ef:f2:fe:62:aa:e7:74:8f:c6:
         bd:1b:87:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 03:19:48 2026 by rpki-client