Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          oLfwBtN0K/zwHGekth7wsXzqkgyRAkK/AZnppph/JMw=
Subject key identifier:   21:42:3B:BE:30:D1:5C:B5:CA:F3:EB:8D:28:A0:D1:B8:10:05:0C:06
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F62A5C2CE60BCF811552850105F0F6419
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          19B1
Signing time:             Tue 14 Jul 2026 22:00:58 +0000
Manifest this update:     Tue 14 Jul 2026 22:00:58 +0000
Manifest next update:     Wed 15 Jul 2026 22:00:58 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: oN+HyUnQ6ix1/N34ZjiaTNsh254Seeeny2qaJkNqn7U=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 15 Jul 2026 22:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:62:a5:c2:ce:60:bc:f8:11:55:28:50:10:5f:0f:64:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul 14 22:00:58 2026 GMT
            Not After : Jul 15 22:00:58 2026 GMT
        Subject: CN=21423bbe30d15cb5caf3eb8d28a0d1b810050c06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:84:24:2a:6a:01:d6:0f:96:94:fe:b3:3e:a4:
                    48:82:53:e5:b0:8f:e9:69:e4:65:e1:16:70:6c:e5:
                    fc:0d:27:7b:77:08:1c:85:62:6e:70:7a:e1:22:f8:
                    50:ab:a2:4c:c1:83:45:3d:7f:bc:68:cc:51:34:ff:
                    d9:dd:e4:74:0c:25:22:87:fd:05:e1:50:62:90:12:
                    de:44:b3:fa:38:7f:c0:3c:ab:3d:a9:f5:82:e9:6e:
                    2f:83:78:1b:b6:12:9d:65:80:8a:60:39:5c:1f:e8:
                    fc:62:0c:c7:ee:96:41:a9:ef:71:af:6a:a2:6d:0b:
                    78:b1:11:61:4d:86:50:1a:3c:65:94:1c:01:42:22:
                    10:ee:c8:3f:eb:a6:3d:3d:d6:14:f4:4b:e7:1b:8e:
                    22:73:ac:6d:65:b4:eb:06:eb:4c:61:dc:72:7a:1d:
                    bb:0f:ee:4d:84:25:10:d4:2f:6e:76:5d:66:c9:43:
                    dd:aa:30:ed:37:16:b9:d7:21:9d:86:09:6f:70:b2:
                    b1:c4:6e:91:82:7c:34:e4:bd:21:ef:80:94:64:fa:
                    74:ff:d4:ea:f0:e2:b5:d3:b1:b4:eb:09:63:e5:31:
                    b4:b0:f9:0f:7c:cc:cf:41:ef:a1:8c:63:dd:61:b9:
                    5b:8f:93:49:05:72:53:9b:40:c8:6b:94:1e:df:da:
                    a4:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:42:3B:BE:30:D1:5C:B5:CA:F3:EB:8D:28:A0:D1:B8:10:05:0C:06
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d2:4d:9c:5c:3c:06:02:99:cf:72:2e:57:c3:f3:f5:27:ba:29:
         57:8e:66:19:d7:46:0a:69:30:61:81:10:a1:d0:44:5c:6f:bc:
         97:70:c1:96:7f:ab:9d:50:79:68:e5:01:0d:fa:d6:39:9b:52:
         8a:00:13:7f:e0:20:42:b0:05:ce:27:90:fe:c1:4b:8c:a8:f1:
         e9:b7:19:66:52:a4:b9:46:ba:56:38:56:4a:ff:ac:8b:bb:68:
         a1:df:f6:6f:de:6b:96:0c:13:00:a9:e7:40:ef:a4:a6:94:c3:
         96:2b:1f:8f:b8:4e:ef:c0:b3:e5:45:08:25:06:85:40:18:f3:
         49:64:2d:40:bc:3d:43:43:a8:a3:bb:fa:5f:1e:6f:72:c8:19:
         cb:e5:0c:49:f7:28:50:be:0d:bb:f1:d2:02:7a:32:ad:2d:92:
         05:4b:36:f4:f6:ec:df:eb:5b:34:a3:df:34:c8:96:4a:5a:e7:
         38:44:a8:03:27:17:59:b5:8b:c4:5e:c2:07:d9:cf:15:c3:d5:
         26:ad:83:c2:1f:93:44:ea:9e:e8:1c:b9:3c:1e:1c:4d:47:43:
         02:d7:af:6c:82:80:51:1a:86:6c:14:b3:c1:77:34:19:ab:f5:
         7b:dd:f7:0a:5d:ad:7b:85:62:51:84:57:ec:fc:d7:3e:37:9b:
         b1:06:d9:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 06:29:19 2026 by rpki-client