Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          LBcbPWwY36l2SEexIeSjp5X++FYcsZi89+PtNxqXJuQ=
Subject key identifier:   02:57:78:20:AD:0E:F5:F0:13:89:67:61:56:67:1E:C3:11:46:CA:6F
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F4D6833008BF0115C018D4251CCD5EFC4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19A6
Signing time:             Fri 10 Jul 2026 19:01:42 +0000
Manifest this update:     Fri 10 Jul 2026 19:01:42 +0000
Manifest next update:     Sat 11 Jul 2026 19:01:42 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: meMw3pKVXY0tkGOhl04LM4BqviTAunuORyLq5muDE+s=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 11 Jul 2026 19:01:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:4d:68:33:00:8b:f0:11:5c:01:8d:42:51:cc:d5:ef:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul 10 19:01:42 2026 GMT
            Not After : Jul 11 19:01:42 2026 GMT
        Subject: CN=02577820ad0ef5f01389676156671ec31146ca6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:8e:ab:cd:8a:b9:a5:c2:ac:71:ed:e5:c3:72:
                    42:ee:c5:d4:0a:d5:00:79:92:8b:6b:ef:3c:6d:52:
                    14:db:4e:28:6d:c9:55:16:c9:8c:4f:3a:7f:17:27:
                    31:4e:0a:78:40:a4:f6:28:a1:f6:57:b9:fd:03:e0:
                    a9:d2:d1:6a:52:f3:1f:34:96:68:e0:cc:92:b6:ad:
                    02:41:c1:dd:54:e4:4a:3f:70:47:a9:95:c8:dc:06:
                    13:5c:0d:13:d0:24:97:57:4b:9b:d1:e4:b3:85:dc:
                    87:b2:09:fb:92:37:a8:f5:f0:98:2b:2a:4f:64:62:
                    90:c8:c6:f5:e3:57:24:1a:f0:3f:1a:61:d4:57:a4:
                    a3:6c:da:84:9e:1d:34:d4:27:57:34:26:0d:ce:e4:
                    04:c6:e5:54:94:94:ae:5a:c6:ee:72:7e:4b:d9:4d:
                    7c:ff:3f:5f:00:18:d0:86:2b:cf:33:0b:3e:7d:66:
                    55:69:8c:a4:6d:7f:9a:0f:c7:a9:5e:da:e5:62:80:
                    a9:21:7f:70:e2:8e:f2:74:c9:7a:81:87:b8:08:d2:
                    94:0a:81:22:2c:d5:de:d6:fe:e3:bc:31:8c:35:b2:
                    50:ea:7d:51:4f:35:55:eb:a9:7f:26:d8:6f:98:c7:
                    67:b9:c5:b9:49:6b:44:de:31:c7:ec:a5:ff:96:0b:
                    29:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:57:78:20:AD:0E:F5:F0:13:89:67:61:56:67:1E:C3:11:46:CA:6F
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:b5:cb:a4:de:33:0b:db:16:4c:52:ba:ab:ea:4d:9e:54:1d:
         98:17:03:66:b3:8e:51:79:92:73:8b:f8:78:27:d8:31:be:41:
         1e:fa:3c:7e:71:1b:2a:6d:fe:62:fb:59:d1:db:90:43:25:52:
         ad:8d:99:fb:b5:98:3b:a2:6d:b3:a4:5e:45:54:ff:e9:99:a8:
         09:09:12:cd:1b:78:99:88:db:0b:4b:88:a7:5d:8e:c0:73:a0:
         7c:d3:34:f2:b6:f6:53:fc:ec:85:f7:51:aa:9e:22:8d:bc:b8:
         95:e0:3a:db:26:76:6d:2b:26:a1:34:d2:ae:48:d1:03:82:a7:
         18:57:0a:d8:4d:9a:20:9c:92:ce:e9:76:0e:cf:21:c1:4f:2d:
         8a:47:18:06:84:c3:ba:93:da:d1:75:c2:36:a4:2c:2e:2f:8f:
         ee:fe:37:57:42:b5:4e:09:d5:e9:0c:c9:44:a9:63:e2:b0:63:
         e6:5d:d4:dd:9c:e3:9a:e6:61:5f:9b:ab:12:8e:2e:90:57:6b:
         e1:28:4e:b6:ed:bb:60:67:8a:48:dd:b2:9c:a7:4b:73:29:c9:
         6a:82:2c:a1:84:bb:11:63:0c:74:83:e4:69:b9:fc:b8:b2:cb:
         06:3c:8e:43:76:ce:66:07:8d:ab:dc:c3:ba:e6:a6:b9:e5:08:
         7a:0f:fe:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9NaDMAi/ARXAGNQlHM1e/EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzEwMTkwMTQyWhcNMjYwNzExMTkwMTQyWjAzMTEwLwYDVQQD
EygwMjU3NzgyMGFkMGVmNWYwMTM4OTY3NjE1NjY3MWVjMzExNDZjYTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs46rzYq5pcKsce3lw3JC7sXUCtUA
eZKLa+88bVIU204obclVFsmMTzp/FycxTgp4QKT2KKH2V7n9A+Cp0tFqUvMfNJZo
4MyStq0CQcHdVORKP3BHqZXI3AYTXA0T0CSXV0ub0eSzhdyHsgn7kjeo9fCYKypP
ZGKQyMb141ckGvA/GmHUV6SjbNqEnh001CdXNCYNzuQExuVUlJSuWsbucn5L2U18
/z9fABjQhivPMws+fWZVaYykbX+aD8epXtrlYoCpIX9w4o7ydMl6gYe4CNKUCoEi
LNXe1v7jvDGMNbJQ6n1RTzVV66l/JthvmMdnucW5SWtE3jHH7KX/lgsp4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAJXeCCtDvXwE4lnYVZnHsMRRspvMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH7XLpN4z
C9sWTFK6q+pNnlQdmBcDZrOOUXmSc4v4eCfYMb5BHvo8fnEbKm3+YvtZ0duQQyVS
rY2Z+7WYO6Jts6ReRVT/6ZmoCQkSzRt4mYjbC0uIp12OwHOgfNM08rb2U/zshfdR
qp4ijby4leA62yZ2bSsmoTTSrkjRA4KnGFcK2E2aIJySzul2Ds8hwU8tikcYBoTD
upPa0XXCNqQsLi+P7v43V0K1TgnV6QzJRKlj4rBj5l3U3ZzjmuZhX5urEo4ukFdr
4ShOtu27YGeKSN2ynKdLcynJaoIsoYS7EWMMdIPkabn8uLLLBjyOQ3bOZgeNq9zD
uuamueUIeg/+BQ==
-----END CERTIFICATE-----
Generated at Sat Jul 11 04:36:35 2026 by rpki-client