Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          5DArFYiTuf42dbM33tkZj7EplHCFkMRvmh806z31lNc=
Subject key identifier:   21:16:EA:B6:D1:35:3E:95:BB:3F:F0:5E:3E:42:94:BF:91:A4:9F:C1
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F22EBA88EEFEA6A0A8F249371CD037B4D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1990
Signing time:             Thu 02 Jul 2026 13:01:37 +0000
Manifest this update:     Thu 02 Jul 2026 13:01:37 +0000
Manifest next update:     Fri 03 Jul 2026 13:01:37 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: bfUPkVPQTYD40c0TXk6URfRytR5OPe4zHM8XMPN/XXQ=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 03 Jul 2026 13:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:22:eb:a8:8e:ef:ea:6a:0a:8f:24:93:71:cd:03:7b:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  2 13:01:37 2026 GMT
            Not After : Jul  3 13:01:37 2026 GMT
        Subject: CN=2116eab6d1353e95bb3ff05e3e4294bf91a49fc1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:32:19:0c:be:b1:d6:eb:2b:d5:8e:88:79:0a:
                    40:d3:bb:5d:b0:ac:d1:7b:b8:48:cd:ed:21:88:29:
                    2b:70:99:bf:05:7f:70:2d:d9:32:72:e3:f1:6b:1a:
                    1a:ae:37:98:58:bf:3f:9e:0e:b7:d5:6e:44:d3:da:
                    1f:40:8f:b8:f0:a9:c5:52:fc:db:31:9f:0d:d0:18:
                    a0:7c:ad:57:f5:0c:e3:0c:7e:19:0d:eb:70:1e:26:
                    26:99:eb:67:9a:1f:31:d4:67:7f:e7:c0:74:29:80:
                    ff:fe:09:18:c9:4a:4e:aa:68:18:29:24:ab:24:ca:
                    32:17:73:82:b7:85:af:f1:fc:32:e5:03:32:2f:c9:
                    22:7b:c5:cf:37:ed:26:0f:f2:6e:d0:09:17:70:79:
                    8b:44:f3:35:8f:39:29:35:f6:61:89:61:d1:89:0a:
                    9c:14:d6:a1:8f:8b:44:4b:f7:06:6e:df:b1:93:74:
                    56:82:b9:7c:02:de:3f:50:34:22:84:80:be:55:41:
                    5f:d4:7a:89:7b:08:be:ec:24:b6:c4:ca:99:b8:fe:
                    80:a1:b3:1a:99:12:5f:99:0d:c0:f2:b3:b8:90:25:
                    a5:25:88:b2:38:c5:8a:0b:01:c6:06:99:cd:f8:6b:
                    05:5a:bf:d8:af:5c:9f:f5:bd:36:7a:ca:fd:4e:48:
                    44:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:16:EA:B6:D1:35:3E:95:BB:3F:F0:5E:3E:42:94:BF:91:A4:9F:C1
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:73:f0:6a:b7:44:86:ba:1b:ab:a2:90:8b:da:4d:e9:5a:49:
         06:1e:13:66:7f:47:dd:cd:fc:52:fc:91:52:ff:e5:c5:49:dc:
         d9:78:0d:28:67:be:74:d9:07:9d:c9:3a:47:33:5a:86:b1:f4:
         64:54:b7:60:31:5d:a6:10:ae:02:2a:9c:76:20:c6:f2:ec:95:
         06:d4:1e:d7:37:4d:7c:19:97:d7:7c:ad:95:7c:a6:85:b2:4a:
         79:fe:9f:b9:5c:5b:10:d1:0e:cd:24:de:5a:4b:c5:c8:4f:fb:
         50:e4:67:5b:86:4e:9c:03:06:cb:8d:1b:0a:c9:32:e2:f0:7e:
         0b:fe:1e:e3:eb:79:b9:95:66:79:7c:0a:91:23:20:24:83:9c:
         d5:77:4c:35:36:61:49:02:65:47:6a:11:8d:b4:f7:d9:24:d7:
         c1:83:45:d4:74:db:24:b6:61:8a:f3:32:84:86:b0:df:38:29:
         8f:b9:65:98:99:14:e6:8d:d3:94:36:a3:c2:cf:f0:14:9b:dc:
         45:74:7d:db:36:bf:4b:61:f6:30:bc:47:4e:e3:f1:ec:22:5e:
         45:fa:91:34:70:24:1c:94:ec:f1:e9:fb:2b:8b:dd:c4:b4:44:
         b0:15:45:4e:94:9e:05:29:c6:4e:7d:79:3c:08:c0:81:59:d6:
         2f:20:28:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 21:31:24 2026 by rpki-client