Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          B8va4SNEnPRzfcOoeZj332p8BkzR8sxZS/foLGYzKmc=
Subject key identifier:   31:98:72:70:5C:61:FE:14:0C:7C:B4:3E:09:05:2B:20:F1:12:0E:E7
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F344D22D96C1AF2F98A7946B108693D99
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1999
Signing time:             Sun 05 Jul 2026 22:01:38 +0000
Manifest this update:     Sun 05 Jul 2026 22:01:38 +0000
Manifest next update:     Mon 06 Jul 2026 22:01:38 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: ehAU9bQqM29mzt27cvZmQ6/l+SRjVjxp73Re4VTu13A=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 06 Jul 2026 17:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:34:4d:22:d9:6c:1a:f2:f9:8a:79:46:b1:08:69:3d:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  5 22:01:38 2026 GMT
            Not After : Jul  6 22:01:38 2026 GMT
        Subject: CN=319872705c61fe140c7cb43e09052b20f1120ee7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:1b:9d:9e:53:34:8b:8e:f9:79:fb:e4:c6:8e:
                    c4:d3:c7:5a:d6:db:86:e8:66:6f:69:db:2c:cd:f0:
                    84:9b:3d:5a:a0:dc:19:18:21:e1:15:60:b7:d0:cc:
                    28:fc:96:69:64:63:7a:e3:07:82:cc:66:64:68:f7:
                    9f:b5:ce:6f:73:65:7e:3c:a1:55:72:3f:3f:cb:77:
                    8b:0f:24:db:11:e5:a9:a4:bd:00:be:18:1b:8e:03:
                    99:97:ad:4b:dd:b5:f5:b2:41:56:ac:c5:15:e2:93:
                    37:7d:8d:bb:52:a1:73:5d:fb:6a:0f:fe:02:06:16:
                    2d:94:b7:7a:02:7c:c3:d6:fb:79:83:b1:2e:8e:b3:
                    e6:8e:c2:a0:53:c4:02:2f:93:a8:c1:75:e8:ba:6f:
                    a3:13:d2:97:f7:9c:62:65:fa:6f:79:cf:ce:c1:06:
                    a3:ba:ce:6f:ba:b3:25:54:67:d9:f3:38:df:e2:6b:
                    a5:30:17:55:ec:fd:e2:f6:4f:7c:e0:76:da:e2:35:
                    bc:ef:24:89:df:d4:7c:1c:95:47:4b:97:f7:25:09:
                    ed:93:0a:08:09:2f:fa:e0:5c:40:73:d4:ca:7c:50:
                    27:21:f8:e6:30:a3:fd:27:64:02:e0:d9:f4:20:2a:
                    30:43:5c:a6:6e:bb:cf:be:f9:5a:e2:ae:eb:2f:06:
                    87:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:98:72:70:5C:61:FE:14:0C:7C:B4:3E:09:05:2B:20:F1:12:0E:E7
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:4d:d9:2c:e0:88:fa:88:e0:e0:41:15:c1:f3:5e:3e:26:88:
         93:fe:ee:3c:8e:26:1a:cf:2f:15:6b:3d:fb:6b:72:78:c6:72:
         75:dc:86:5d:c9:0b:82:79:5a:60:99:83:7d:54:3b:74:52:db:
         c6:6b:73:ef:70:a8:3d:44:8b:b1:a4:1e:91:1d:82:6d:3c:41:
         df:fe:9f:80:da:84:b2:1e:86:83:d5:e6:4e:e9:91:5a:ca:da:
         f6:5e:23:56:b6:f5:4c:a4:47:0b:43:a1:23:15:0f:b0:35:7f:
         d8:62:e3:c0:13:ec:db:d2:c3:13:81:80:25:5e:aa:fc:d4:f6:
         02:60:14:a2:90:a9:aa:62:50:25:3c:1d:22:0a:1a:a3:d7:8e:
         2b:11:5c:47:a1:17:33:23:ff:67:10:75:1d:36:22:c4:fa:98:
         73:bf:ea:db:bf:3b:0c:6d:a3:d8:83:6a:45:d1:ff:27:c8:93:
         cc:b3:40:f4:bf:3d:ec:7e:80:f7:01:49:bb:b7:13:fb:21:08:
         23:e1:29:b5:38:39:fc:d6:93:40:b6:e1:ca:f7:4a:70:64:8a:
         c1:c3:ce:86:09:90:b1:f8:d2:e7:93:74:8c:a7:5f:23:ab:97:
         32:ad:df:04:47:aa:c8:25:ca:ac:77:2a:87:df:50:34:40:7a:
         b6:ea:b8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 00:48:18 2026 by rpki-client