Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
File:                     I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json)
Hash identifier:          3SCiBHPvdoWhwWLBYQLitZVk9bH+W4CQbyM6DvShay0=
Subject key identifier:   21:47:5E:05:17:6A:53:5B:D7:30:11:AC:A6:69:2F:E4:51:A0:CA:CF
Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9
Certificate issuer:       /CN=23b1943087ce69623e76b2145b3479ac204ba1c9
Certificate serial:       019F37185E388F5332F5F86C86406D34E662
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
Manifest number:          18D6
Signing time:             Mon 06 Jul 2026 11:02:51 +0000
Manifest this update:     Mon 06 Jul 2026 11:02:51 +0000
Manifest next update:     Tue 07 Jul 2026 11:02:51 +0000
Files and hashes:         1: 78v4VJEfw5PVOd7xHPXoIyfNp48.roa (hash: 6qQ8BW5L0oi0uF4TdnOMiqJXcCMSoxgt26+h+J3CUsI=)
                          2: Di79UbTmbpFxSYwbXsMn-pZLrV8.roa (hash: tV65sDjzx9UVZdR97H6FDEjyFBVEvZi4/CVnig4SJ08=)
                          3: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: 6FJ0+DbzNPN5gRl8YzSKOJm9W1hu6wEmieTK+/b4XcI=)
                          4: Xy9KAo8RgHqzd9LCgtHpYYSq1Ws.roa (hash: pkyeg5y/UqA2MwW/DbnlFyqNjdMeUTSbZh1g/kjVAXE=)
                          5: fMLivNYCuxdhHtX3Ga7hVSkjoJM.roa (hash: 9AwEnRwEhqte/EFdOWwlxFhd4JAdP6+asha44+p++gg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 11:02:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:37:18:5e:38:8f:53:32:f5:f8:6c:86:40:6d:34:e6:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9
        Validity
            Not Before: Jul  6 11:02:51 2026 GMT
            Not After : Jul  7 11:02:51 2026 GMT
        Subject: CN=21475e05176a535bd73011aca6692fe451a0cacf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:cc:a8:02:6a:5a:21:38:23:d1:06:83:dc:68:
                    01:24:38:0c:d9:4b:32:3c:dd:42:be:03:ea:30:14:
                    d9:16:82:20:9e:36:7e:e6:5e:de:79:76:82:8b:43:
                    be:c9:a9:b8:6c:ca:61:34:ef:d3:35:39:e3:6f:64:
                    84:eb:f7:85:37:2a:7a:44:7d:ed:c6:66:e7:01:a1:
                    70:a2:5c:54:04:ad:07:ea:c9:9c:60:63:58:80:c3:
                    6c:22:21:13:62:4b:f4:81:7f:5d:d6:4f:22:0a:2a:
                    f5:af:3d:cd:24:24:f9:03:7f:aa:85:0e:2a:3b:11:
                    52:98:f1:0f:cd:3c:60:4a:06:f1:72:77:cb:68:cc:
                    fe:c4:e2:8d:d6:67:a0:63:55:4b:2a:47:26:ed:dd:
                    48:d4:d1:df:45:7e:f1:06:e2:db:76:bf:fd:40:8f:
                    7d:18:19:1e:09:4d:ff:b6:71:57:05:75:36:8f:d5:
                    fe:0f:c7:38:f0:3a:c4:51:b6:9e:e6:ab:fc:0d:f6:
                    ea:f1:f2:e5:18:ab:de:72:74:a7:4d:32:3e:41:63:
                    3e:41:ba:28:7d:8f:e5:0f:b9:49:b6:35:6b:80:67:
                    e3:c1:a7:c7:4b:6e:31:4c:8c:7f:7c:38:3c:b6:b2:
                    6a:15:8f:76:6c:6c:23:99:71:72:a5:01:3c:84:5d:
                    47:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:47:5E:05:17:6A:53:5B:D7:30:11:AC:A6:69:2F:E4:51:A0:CA:CF
            X509v3 Authority Key Identifier:
                keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:b2:66:60:75:8b:2d:16:e4:84:8c:b5:c9:d7:ae:af:9b:e6:
         b8:8b:6f:78:e2:75:bf:4d:bc:e8:9e:a4:ce:58:44:6e:3e:52:
         5a:c7:fe:16:f5:17:e5:12:da:2d:be:b5:9f:e1:eb:0e:7c:23:
         cd:65:9c:c2:6c:f7:fc:97:79:17:1e:95:ed:c6:ad:bc:a1:63:
         84:3f:40:a4:a4:0e:fd:0c:96:55:18:d0:a7:23:35:9f:1b:ae:
         f4:0e:c6:b6:ce:3e:6f:60:03:a6:2a:94:03:a4:52:24:c2:b7:
         e3:10:07:35:4a:44:b4:3f:46:64:5f:f2:a6:f4:72:9f:04:d9:
         ca:d6:66:f7:c3:6c:22:2f:4f:03:a2:28:c2:0d:3e:3c:76:9e:
         f9:a4:b4:d8:9d:13:6d:1b:50:6d:75:a3:48:3f:fc:71:dd:87:
         28:33:6c:ea:97:c4:22:d5:92:83:12:af:27:d8:17:21:94:30:
         27:f3:0a:7a:37:67:0b:30:76:9e:e5:fd:d5:ed:33:70:52:ce:
         41:78:51:82:0f:ec:14:f2:26:26:82:e3:2d:e0:06:f4:87:2d:
         f6:c8:cf:bc:7c:53:55:c4:d5:4a:42:26:2b:70:c1:19:0a:69:
         a0:46:61:51:5f:98:4a:b3:73:a0:02:b4:fc:ad:6d:7c:1e:27:
         77:09:0e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:29:31 2026 by rpki-client