Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          xou90HFIcYOXGV4AhRNo2qflZC0aY/OQv8YyEbQ+Ay4=
Subject key identifier:   27:22:96:AB:A0:86:64:B4:E6:FA:E4:EF:3F:03:06:E9:CE:79:93:6E
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F6870E821735D9874A0C8F3DCBD9AC166
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19B4
Signing time:             Thu 16 Jul 2026 01:00:57 +0000
Manifest this update:     Thu 16 Jul 2026 01:00:57 +0000
Manifest next update:     Fri 17 Jul 2026 01:00:57 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: BUSmdSBrnm3HB3Y4ioOsBFAFfXXqbvtUFh/cRz7qIpo=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 16 Jul 2026 23:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:68:70:e8:21:73:5d:98:74:a0:c8:f3:dc:bd:9a:c1:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul 16 01:00:57 2026 GMT
            Not After : Jul 17 01:00:57 2026 GMT
        Subject: CN=272296aba08664b4e6fae4ef3f0306e9ce79936e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:85:d2:f3:8d:ed:34:2e:74:26:99:e1:0b:cb:
                    5c:df:87:f8:65:a7:5b:01:d7:0a:7b:b3:f7:ca:a1:
                    3a:a5:53:06:cb:6f:2d:58:1a:be:b1:37:02:03:9c:
                    af:fb:9d:2f:1e:ce:2e:25:db:5f:63:ad:bb:dd:c1:
                    77:3a:91:49:99:66:a2:5b:d8:6f:3a:ea:26:d0:d6:
                    36:a5:5f:07:c5:1e:0d:41:fc:f5:7f:4f:75:58:9e:
                    9c:52:4b:b4:b4:e7:9c:f8:fa:8b:35:cf:1c:59:e2:
                    04:50:07:42:8f:f6:66:5a:46:83:e1:62:25:b4:e5:
                    9f:98:48:04:3d:f3:17:10:22:62:d7:3f:57:2d:5b:
                    48:b2:2e:d8:53:95:3c:a4:95:68:29:4b:ac:dd:17:
                    71:0a:aa:74:6e:41:88:87:c4:4f:b9:6c:0b:50:f7:
                    71:32:76:09:d5:16:c5:86:f5:ee:36:4b:4a:6d:99:
                    74:53:55:3d:f4:9a:38:bc:28:d8:b8:4f:a2:b8:f5:
                    2c:f0:b1:e2:06:3b:b2:d6:fb:0a:9d:b6:3f:f0:54:
                    c1:89:a7:e5:63:94:6d:51:5f:c4:40:a8:ea:95:71:
                    c6:ed:32:06:57:56:78:57:9d:9a:75:bc:7e:8e:f9:
                    e3:41:a6:4d:23:d4:1a:58:cc:5d:17:29:b9:c1:2a:
                    18:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:22:96:AB:A0:86:64:B4:E6:FA:E4:EF:3F:03:06:E9:CE:79:93:6E
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:bc:27:65:83:bf:a6:d0:de:5d:d7:20:e1:d8:99:c9:00:b6:
         3c:3a:72:03:15:fb:2c:2a:6c:a8:d2:1e:50:c5:5f:be:d7:2f:
         35:06:da:75:87:ff:d2:a8:2a:dc:c5:d3:f0:66:4b:9c:db:88:
         ae:b2:e5:b9:b3:68:0e:bd:3f:b3:e1:2f:28:22:bd:6a:34:b9:
         18:80:3f:8b:1b:76:8f:4e:ab:89:11:69:51:e8:09:f8:4f:b4:
         58:6c:49:9d:c2:08:34:b6:91:2e:ca:f4:83:15:e3:52:bf:ba:
         1b:f4:b1:68:57:5b:4d:27:b7:33:75:4b:12:0a:80:20:75:6c:
         e0:0e:31:24:55:04:c9:b3:5d:ff:68:67:64:78:75:dc:f5:61:
         3c:6b:f7:21:df:95:0a:ac:eb:64:b9:bc:14:55:96:55:83:80:
         d8:a0:80:dd:bf:9e:17:2d:9d:6f:3d:62:2f:71:46:05:90:9e:
         e4:23:70:ea:dd:f8:95:ab:ca:f9:9d:73:a8:1e:0f:d9:b6:8d:
         f4:6b:ae:d6:1c:e1:65:4e:b1:1d:11:19:1e:3d:6e:bb:de:fa:
         9b:b0:ec:38:9e:15:97:bd:e6:a8:19:76:d7:aa:06:dc:ad:93:
         10:69:84:7a:52:a2:5e:3d:90:71:2d:e7:20:f7:a6:9a:b8:e8:
         4a:d7:8f:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9ocOghc12YdKDI89y9msFmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzE2MDEwMDU3WhcNMjYwNzE3MDEwMDU3WjAzMTEwLwYDVQQD
EygyNzIyOTZhYmEwODY2NGI0ZTZmYWU0ZWYzZjAzMDZlOWNlNzk5MzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9oXS843tNC50JpnhC8tc34f4Zadb
AdcKe7P3yqE6pVMGy28tWBq+sTcCA5yv+50vHs4uJdtfY6273cF3OpFJmWaiW9hv
Ouom0NY2pV8HxR4NQfz1f091WJ6cUku0tOec+PqLNc8cWeIEUAdCj/ZmWkaD4WIl
tOWfmEgEPfMXECJi1z9XLVtIsi7YU5U8pJVoKUus3RdxCqp0bkGIh8RPuWwLUPdx
MnYJ1RbFhvXuNktKbZl0U1U99Jo4vCjYuE+iuPUs8LHiBjuy1vsKnbY/8FTBiafl
Y5RtUV/EQKjqlXHG7TIGV1Z4V52adbx+jvnjQaZNI9QaWMxdFym5wSoY8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCcilqughmS05vrk7z8DBunOeZNuMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdLwnZYO/
ptDeXdcg4diZyQC2PDpyAxX7LCpsqNIeUMVfvtcvNQbadYf/0qgq3MXT8GZLnNuI
rrLlubNoDr0/s+EvKCK9ajS5GIA/ixt2j06riRFpUegJ+E+0WGxJncIINLaRLsr0
gxXjUr+6G/SxaFdbTSe3M3VLEgqAIHVs4A4xJFUEybNd/2hnZHh13PVhPGv3Id+V
CqzrZLm8FFWWVYOA2KCA3b+eFy2dbz1iL3FGBZCe5CNw6t34lavK+Z1zqB4P2baN
9Guu1hzhZU6xHREZHj1uu976m7DsOJ4Vl73mqBl216oG3K2TEGmEelKiXj2QcS3n
IPemmrjoStePPw==
-----END CERTIFICATE-----
Generated at Thu Jul 16 06:56:57 2026 by rpki-client