Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          YfUorVKC9sRn0kASRUaWYnt2lLBpbZQ9brvhNio2qLM=
Subject key identifier:   6C:D4:D7:8D:F1:07:D6:9D:9D:F0:5E:AF:CF:E6:EF:26:05:54:D4:4A
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019F3DF4756A74D1099352CC64E253888D77
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          199E
Signing time:             Tue 07 Jul 2026 19:00:58 +0000
Manifest this update:     Tue 07 Jul 2026 19:00:58 +0000
Manifest next update:     Wed 08 Jul 2026 19:00:58 +0000
Files and hashes:         1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
                          2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: FA2PjX6lgHlYr/58el26XVLVmqFRSLruSFszd6A5ubc=)
                          3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 08 Jul 2026 19:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:3d:f4:75:6a:74:d1:09:93:52:cc:64:e2:53:88:8d:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jul  7 19:00:58 2026 GMT
            Not After : Jul  8 19:00:58 2026 GMT
        Subject: CN=6cd4d78df107d69d9df05eafcfe6ef260554d44a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:59:94:a9:8a:93:69:47:c0:cd:ee:dc:41:ea:
                    4a:bc:02:12:f0:cb:5d:d1:4c:14:30:b4:34:70:ca:
                    a8:f8:ca:39:9d:81:fc:4f:5c:f0:f7:25:f4:b2:42:
                    47:cc:22:9d:2b:d2:7a:97:17:25:ed:0c:30:94:d7:
                    d8:14:6a:d1:c7:07:d2:19:b1:6f:a9:d4:7a:86:41:
                    ae:26:59:a8:37:ad:84:f0:f1:5d:05:37:7e:41:3f:
                    fd:0b:5f:a1:37:91:b6:32:87:25:c0:d9:4d:3d:83:
                    d8:a5:fe:f0:1b:a9:98:8f:a5:72:72:0d:a6:36:59:
                    5d:5e:81:39:db:20:d3:fc:6c:b1:c0:04:bd:1c:7c:
                    2e:cf:71:78:76:88:22:89:eb:59:b0:cd:de:df:5f:
                    e2:e0:ff:a1:ab:b5:df:7a:c0:32:e9:55:b5:0e:c7:
                    d3:fb:64:5d:9f:08:83:78:bd:96:8e:8a:59:88:30:
                    22:1d:0c:92:a2:f9:70:d7:45:3d:83:ba:59:00:34:
                    8d:ea:83:3e:f6:1e:87:c0:db:ba:e4:6b:69:fa:2b:
                    39:1d:ea:1c:30:3b:69:34:98:51:49:5c:dd:fa:ab:
                    c5:25:9c:25:a6:12:4d:cc:4a:88:d2:19:a6:94:2c:
                    a0:21:ba:aa:96:e1:ed:15:11:85:41:c4:1f:6e:60:
                    0e:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:D4:D7:8D:F1:07:D6:9D:9D:F0:5E:AF:CF:E6:EF:26:05:54:D4:4A
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:00:72:42:fc:ad:6e:de:70:fd:36:78:02:1d:01:4a:ec:c6:
         af:f1:30:74:62:35:44:b9:2e:44:f0:19:72:56:35:99:fd:e5:
         16:c2:f1:aa:e0:da:16:12:7f:32:e1:71:0f:6c:c5:04:1d:84:
         9c:95:1c:ef:81:63:98:f8:32:6d:0a:be:53:e2:a0:83:b5:c9:
         31:87:73:e5:3e:99:f6:98:51:ba:b7:5a:95:6d:47:bc:34:0f:
         ca:56:c8:89:af:e1:e1:48:94:e7:8f:a6:98:bc:92:e1:39:3b:
         ec:6d:93:f6:11:4e:0d:bc:f9:3d:ec:60:d4:43:f0:5a:74:65:
         7a:dc:47:99:dc:94:45:38:19:dc:0b:e5:25:d8:0c:4b:62:03:
         32:9a:5c:b1:88:19:9b:f0:ef:f2:9d:36:2b:59:63:2a:c0:b1:
         a9:82:7d:04:01:8c:e7:5b:a8:78:21:fc:3d:ab:97:b4:e5:df:
         a4:bd:50:a7:45:fa:c7:7c:ab:1e:d7:5e:47:d0:44:2d:08:3e:
         9d:70:64:f5:f2:83:7e:d4:7b:3d:8d:cf:29:1e:cd:a7:1f:01:
         3b:95:24:6a:52:20:95:41:9b:0c:3e:2e:87:c2:24:59:c4:87:
         c4:da:c1:b0:cc:0d:d8:b5:d9:a0:e9:c1:29:8a:c7:34:de:a3:
         fb:80:3e:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ899HVqdNEJk1LMZOJTiI13MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzA3MTkwMDU4WhcNMjYwNzA4MTkwMDU4WjAzMTEwLwYDVQQD
Eyg2Y2Q0ZDc4ZGYxMDdkNjlkOWRmMDVlYWZjZmU2ZWYyNjA1NTRkNDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1mUqYqTaUfAze7cQepKvAIS8Mtd
0UwUMLQ0cMqo+Mo5nYH8T1zw9yX0skJHzCKdK9J6lxcl7QwwlNfYFGrRxwfSGbFv
qdR6hkGuJlmoN62E8PFdBTd+QT/9C1+hN5G2MoclwNlNPYPYpf7wG6mYj6Vycg2m
NlldXoE52yDT/GyxwAS9HHwuz3F4dogiietZsM3e31/i4P+hq7XfesAy6VW1DsfT
+2RdnwiDeL2WjopZiDAiHQySovlw10U9g7pZADSN6oM+9h6HwNu65Gtp+is5Heoc
MDtpNJhRSVzd+qvFJZwlphJNzEqI0hmmlCygIbqqluHtFRGFQcQfbmAOwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzU143xB9adnfBer8/m7yYFVNRKMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAygByQvyt
bt5w/TZ4Ah0BSuzGr/EwdGI1RLkuRPAZclY1mf3lFsLxquDaFhJ/MuFxD2zFBB2E
nJUc74FjmPgybQq+U+Kgg7XJMYdz5T6Z9phRurdalW1HvDQPylbIia/h4UiU54+m
mLyS4Tk77G2T9hFODbz5Pexg1EPwWnRletxHmdyURTgZ3AvlJdgMS2IDMppcsYgZ
m/Dv8p02K1ljKsCxqYJ9BAGM51uoeCH8PauXtOXfpL1Qp0X6x3yrHtdeR9BELQg+
nXBk9fKDftR7PY3PKR7Npx8BO5UkalIglUGbDD4uh8IkWcSHxNrBsMwN2LXZoOnB
KYrHNN6j+4A+/A==
-----END CERTIFICATE-----
Generated at Wed Jul 8 01:53:38 2026 by rpki-client