Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File:                     QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier:          L1/mYcyk8flp7bLQx0hqphPrfYhoVsQSrtr3y9a/Vxc=
Subject key identifier:   43:A6:38:A6:0A:53:D0:14:07:5F:13:0D:4A:C5:43:75:74:E6:B0:D2
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer:       /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial:       019F10AE609E2478A62186E412D40A57A144
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number:          1990
Signing time:             Mon 29 Jun 2026 00:01:31 +0000
Manifest this update:     Mon 29 Jun 2026 00:01:31 +0000
Manifest next update:     Tue 30 Jun 2026 00:01:31 +0000
Files and hashes:         1: NJO_Y8Rmad7gmCoQl4EFdeb0puI.roa (hash: PeV4K+XBlCAlY87jlA0oZLozJmq4/8N/ed2usUmq5JY=)
                          2: NOncOo0ID7OFhBxkxahXCWMkSks.roa (hash: eW58ef5cup8x8SSubU4LarAJsD4cHKXH22VsKckNWME=)
                          3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: bt2YYtlNX0RDu7Jz0PGd6Uw5brT2yNSKl2WO7wzpb1E=)
                          4: QxEip3wlOXriAz7nnAs_AC0I9NA.asa (hash: iXtb4Nzk+e2nFY3GJNhD9F09a2bTSvaIp01d/mdO65Y=)
                          5: rNA54cjskPX4lQNjfLFcvXVm1ps.roa (hash: 25Bd9sAqIVmNUoNvrSpnzoBxZmHIxEPQvqsKC2Kc+TY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 30 Jun 2026 00:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:10:ae:60:9e:24:78:a6:21:86:e4:12:d4:0a:57:a1:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
        Validity
            Not Before: Jun 29 00:01:31 2026 GMT
            Not After : Jun 30 00:01:31 2026 GMT
        Subject: CN=43a638a60a53d014075f130d4ac5437574e6b0d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:7d:33:7f:01:81:50:b2:99:98:e6:99:34:b3:
                    63:3a:59:fc:5a:5c:df:28:09:75:ed:8b:59:42:9c:
                    6f:9c:96:7d:bb:b0:0f:23:ff:b6:3d:ae:18:5a:4e:
                    78:91:ab:3f:7b:b3:cb:a1:19:a9:52:3a:53:69:17:
                    2a:f3:c2:4c:65:d3:d5:50:fa:38:3d:ed:9b:aa:20:
                    dd:e1:a2:60:62:fe:73:03:61:51:1c:3f:8e:00:79:
                    a0:e3:fc:db:23:84:fd:3f:2b:3f:c3:b5:60:8a:2f:
                    55:af:c5:b4:b3:28:89:a3:9a:0c:a4:df:c7:0c:05:
                    9e:d0:75:4a:9a:96:fe:61:2a:90:26:2c:7e:e7:de:
                    9f:f0:44:48:bc:5a:45:a4:76:a7:b9:8f:83:95:56:
                    18:e2:4a:de:5a:74:13:1f:43:11:1c:bf:7a:21:74:
                    cd:7b:65:03:ef:5c:53:0d:6e:a2:e3:f3:f5:93:13:
                    a6:0e:a0:d7:eb:e9:71:e0:4f:3a:d2:91:a8:e5:e3:
                    aa:99:44:cf:91:c1:7a:7d:7d:8e:94:bc:1a:c8:39:
                    36:ba:ba:aa:47:58:af:dd:ed:60:75:48:cb:d8:0a:
                    77:4d:cf:7d:22:d2:37:0d:c3:3f:2f:1b:9b:05:3f:
                    03:43:f4:52:d3:03:c6:c4:05:4b:81:b3:70:9d:af:
                    40:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:A6:38:A6:0A:53:D0:14:07:5F:13:0D:4A:C5:43:75:74:E6:B0:D2
            X509v3 Authority Key Identifier:
                keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:d4:f8:0f:58:9e:91:63:c7:94:41:fd:06:4b:92:bc:68:63:
         8a:38:e5:c3:ca:97:e5:da:77:be:52:f7:93:f5:d1:d3:01:d7:
         7f:06:15:38:48:22:4b:43:fd:a9:97:f3:d5:48:52:04:8d:d9:
         7f:e9:72:f3:66:c8:85:51:75:d0:da:9f:77:99:f8:f6:0c:59:
         27:03:91:e6:6f:67:a4:37:62:01:4d:36:46:66:72:9e:99:23:
         09:fb:dc:b1:43:0a:11:e6:c7:2e:bd:6d:e1:7a:4f:c5:ea:fe:
         64:67:bd:62:5d:b8:61:d4:7f:76:bb:9e:8c:03:d6:19:e0:c4:
         aa:8b:60:f3:2f:d4:68:7e:b1:76:71:11:2f:0e:56:3e:c4:4d:
         e7:27:3a:07:42:94:3c:e5:8d:b7:81:12:2e:83:ab:fa:83:38:
         87:06:38:2a:61:42:ce:0c:94:aa:ab:96:ac:97:e5:c6:c6:1f:
         5c:4d:03:d8:8b:a4:88:e4:13:a7:34:49:39:55:af:3d:73:7b:
         46:e7:c5:51:99:f7:e6:0d:20:a2:b4:cd:3e:1d:9e:a1:4f:9d:
         c9:90:e0:89:d0:34:36:df:66:c3:09:aa:bf:3b:b4:8d:4d:f4:
         28:c2:73:03:c7:8a:00:e4:ed:82:1b:8e:be:5a:44:fd:ec:23:
         36:1d:fe:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:39:12 2026 by rpki-client