Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          t/diyEIjQeIRsMRN/JSW0gHrNPDawWiXagEJeDvGr6g=
Subject key identifier:   52:BE:D8:37:5A:4B:FA:63:D2:D0:2C:9A:23:C9:F3:55:7F:5F:3E:0E
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019EF492D3D9678CAA934025E48A1A6A0AC1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1978
Signing time:             Tue 23 Jun 2026 13:02:03 +0000
Manifest this update:     Tue 23 Jun 2026 13:02:03 +0000
Manifest next update:     Wed 24 Jun 2026 13:02:03 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: KSohD8qWMu4CPRtY4ZjoQOhV2xKN0wnp0Essd771tis=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 24 Jun 2026 13:02:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:f4:92:d3:d9:67:8c:aa:93:40:25:e4:8a:1a:6a:0a:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jun 23 13:02:03 2026 GMT
            Not After : Jun 24 13:02:03 2026 GMT
        Subject: CN=52bed8375a4bfa63d2d02c9a23c9f3557f5f3e0e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:0b:61:c7:dd:91:a5:42:73:e8:b6:33:71:5b:
                    89:dd:1a:01:c3:ea:a5:1c:1b:02:f5:41:e3:80:09:
                    14:fc:35:5e:b3:a6:7c:35:ea:18:c2:7b:7c:3a:23:
                    7b:88:a9:34:3a:42:eb:85:c4:6d:69:7e:a1:cf:69:
                    98:93:fd:80:4b:0a:c8:56:0c:23:00:f4:ee:7a:f0:
                    61:dd:47:5e:c8:bb:9f:48:e0:00:72:00:7d:57:fa:
                    f0:d6:0a:e8:9a:7a:1f:10:c8:07:d8:cd:34:40:8b:
                    1a:10:4c:00:4a:3b:5a:a2:7f:cf:32:96:ef:bb:11:
                    47:33:ef:62:60:70:3d:49:fe:12:f7:f6:63:4e:9d:
                    62:53:aa:eb:73:6e:1b:17:dd:11:88:3d:e9:fc:7d:
                    1a:91:a2:d1:a9:0c:0a:a2:64:93:09:57:4f:e7:48:
                    2e:5f:ed:f9:7a:f4:3c:83:3d:4f:c9:5c:0b:52:94:
                    7a:8e:ab:93:f0:3e:87:7a:4f:0f:43:e0:f4:42:44:
                    8b:69:e0:58:a1:4e:75:0e:f8:5b:ea:33:22:e5:74:
                    32:5e:64:0a:9b:92:fb:bc:b9:3c:0e:ed:b9:5b:5e:
                    47:98:7f:14:fb:80:96:f3:72:15:61:0d:7d:a7:d1:
                    3b:02:0e:e0:aa:a5:e0:ab:f8:70:8f:24:01:a0:bf:
                    62:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:BE:D8:37:5A:4B:FA:63:D2:D0:2C:9A:23:C9:F3:55:7F:5F:3E:0E
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:c0:73:06:76:46:b7:4f:f3:2a:d9:2d:ae:65:c7:b6:eb:1a:
         66:7c:a2:3f:03:da:8d:73:61:64:84:f0:8d:9f:ec:96:5b:e3:
         ba:c2:b6:ed:6b:02:21:d4:3d:de:8e:e9:62:80:94:d5:5c:c8:
         ff:a2:59:71:2d:c6:4d:3e:ba:d3:d3:4e:45:f3:63:fd:71:ea:
         a6:ba:9c:14:68:65:6c:f5:ff:13:c2:c8:72:dd:c0:f1:ae:cc:
         01:69:97:3a:94:32:99:37:22:8e:67:d9:1b:fa:19:4c:59:12:
         61:43:12:e7:d8:d3:51:d1:c8:fe:e5:bf:cc:77:92:77:20:72:
         b1:ac:6c:9d:d8:11:d2:8c:31:a8:a8:3f:a9:7b:06:dc:54:ca:
         20:c9:6b:11:d6:79:ff:82:c0:e0:fc:7c:c0:72:5e:38:14:c3:
         78:35:48:30:fa:60:ff:41:35:b4:2d:5a:c0:c9:ff:5a:9c:d6:
         2c:31:ab:8a:36:47:24:99:7f:49:6c:4b:4b:68:0b:56:5d:1f:
         6f:22:60:33:4a:6a:a8:fd:ab:ef:57:0e:c6:f6:9a:81:49:3a:
         fc:8f:fa:af:85:4c:77:81:cb:4f:98:9b:c1:bc:52:ff:81:43:
         a5:1a:dc:30:b9:8f:f8:89:65:13:3e:d0:57:01:00:75:ce:1a:
         76:63:49:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 16:54:53 2026 by rpki-client