Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          i8jxXJLj222yxOIN/sIlZWWmsEcN1sCYuxKyhui/w+s=
Subject key identifier:   90:09:43:31:18:9A:AF:9A:A8:F6:BC:91:76:8A:ED:10:51:D6:9B:E5
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F28B6F3BB23836FA396668D788D36F013
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1993
Signing time:             Fri 03 Jul 2026 16:01:46 +0000
Manifest this update:     Fri 03 Jul 2026 16:01:46 +0000
Manifest next update:     Sat 04 Jul 2026 16:01:46 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: grB+f4DwA8WETpVK3n8gOsIGbeyw5sNv5q0UGj2OKTg=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 04 Jul 2026 16:01:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:28:b6:f3:bb:23:83:6f:a3:96:66:8d:78:8d:36:f0:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  3 16:01:46 2026 GMT
            Not After : Jul  4 16:01:46 2026 GMT
        Subject: CN=90094331189aaf9aa8f6bc91768aed1051d69be5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:83:00:7a:1f:5d:d4:6c:a6:01:32:b1:f0:2d:
                    8f:34:b4:29:f9:a7:35:ee:9c:6d:25:39:0a:af:bc:
                    27:f7:b3:bb:23:7a:01:29:79:a3:47:16:3b:e6:12:
                    ea:ed:68:57:de:c3:b3:1e:53:23:d2:4a:59:65:1a:
                    2e:1e:2a:5d:7d:7d:95:e0:ff:fb:8c:5e:cf:60:ae:
                    de:32:9b:1c:7e:6d:11:a7:52:53:da:ac:10:89:30:
                    1b:05:93:89:51:f3:a7:84:ae:d8:64:72:9c:d9:a1:
                    3a:11:67:b0:83:85:9c:7b:d9:e0:be:e2:0f:3a:4a:
                    2d:55:ed:92:96:36:23:27:09:61:8b:ff:f4:84:f3:
                    4d:70:41:d6:fa:36:ed:57:a6:2d:b2:a5:33:c9:40:
                    7f:ec:c1:b8:7a:2e:9a:f9:b7:97:bd:95:2a:3b:82:
                    61:78:ae:10:18:e8:c9:1f:53:49:39:1c:5b:c2:bf:
                    25:ab:92:1a:10:84:62:43:b0:48:a7:4a:01:b1:29:
                    95:5c:ca:45:d2:cc:74:ca:5c:a7:0a:aa:be:da:2a:
                    03:fc:80:ba:8c:6e:69:54:87:ca:77:dc:5f:3c:dd:
                    e2:10:45:6c:d6:4c:7c:fd:10:84:2d:bb:b1:ac:9c:
                    c2:ec:86:d3:8f:d6:15:e6:4d:1b:92:5c:72:6e:f2:
                    df:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:09:43:31:18:9A:AF:9A:A8:F6:BC:91:76:8A:ED:10:51:D6:9B:E5
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         be:8a:42:bb:00:ad:44:d7:ea:14:22:f1:9d:21:10:de:30:81:
         70:9a:98:c5:3b:8d:1d:35:a9:c8:ba:dc:75:6d:49:b3:83:c3:
         fe:56:42:fe:1c:97:58:70:05:9a:84:76:0f:24:64:a9:32:3b:
         6e:2c:40:fa:72:75:e6:3c:bc:e7:dd:93:64:33:b1:c1:4c:59:
         88:f9:c4:e9:82:31:76:01:b2:78:34:a5:5b:ff:4f:23:61:fd:
         70:cd:95:38:45:f8:b4:b7:35:75:63:46:e9:f9:aa:a0:99:c8:
         be:b1:43:c9:62:4a:45:9d:9d:6a:7a:54:80:c7:46:d8:0a:26:
         9e:b8:b2:47:1d:dc:00:30:29:df:cd:80:54:11:87:b0:97:14:
         1a:88:34:7a:13:05:fb:56:b9:78:62:2d:f2:12:04:c3:25:9d:
         b6:a2:9f:08:00:2e:22:0c:c5:08:ac:fc:57:99:2a:9b:b8:cf:
         80:6e:ea:2f:50:16:5b:6e:bf:2b:90:11:8b:74:2d:32:80:1c:
         0b:aa:01:9b:32:7e:78:a9:62:0c:0f:ad:a7:22:e2:5f:14:07:
         cd:61:ab:0a:2a:ff:3f:67:9c:70:8b:44:df:ef:03:9c:40:94:
         ec:e5:8d:41:6b:6c:8b:01:62:cf:f1:9b:72:3f:89:e2:3f:9d:
         2c:ac:dd:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 00:27:28 2026 by rpki-client