Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
File:                     xqJJoOrNiry-oNgu9xAW04bo75Q.mft (raw, json)
Hash identifier:          HzRKlhu00U7/N+OB8BR/JK8lHll9sLAYzxLoPGCzcG4=
Subject key identifier:   FE:9C:DD:E1:CE:0D:6B:9A:8E:BA:63:4C:65:0A:47:88:74:B0:7B:CC
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Certificate issuer:       /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial:       019F382A69776E5E8B24FD10E13D1AF7D292
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
Manifest number:          1A2A
Signing time:             Mon 06 Jul 2026 16:02:11 +0000
Manifest this update:     Mon 06 Jul 2026 16:02:11 +0000
Manifest next update:     Tue 07 Jul 2026 16:02:11 +0000
Files and hashes:         1: 1jfZW_D7UOXSu39RlXiUyL_tLjk.roa (hash: Wm52sVxYb4B7EnFd3mHTcBpVOHveBj16ZYTfOT8EX/A=)
                          2: 2c-E5BZdiwqZ2Q-DnytRU90rLWI.roa (hash: +KiT1wYNU4xT/dbPCwls8LNvm2nJx4GyHtaKqzRjkQI=)
                          3: 2g3YqagtveoXivlimUOijGK4Sw4.roa (hash: ygC6oN+dOsYHf4Cjh6O/E1qqcFKMCRFPzFyAC5l12yw=)
                          4: 3DoTaNKP9DXg2EXbrrSz95vvqow.roa (hash: 5EzHlmRsOh42vC+7cQ4USrqwxdSUXMIwztbgpIFyZjE=)
                          5: 5B28Ei4KPuBfMPCYz_CdjunmzfA.roa (hash: Fh0fY9vBoWA1h/GgmdDXwKoDcv0YIku/VzyUipmtScY=)
                          6: 65v9LHi_MDiJFfxsRpTQKZGQtKQ.roa (hash: AD4zC7meiWbh1Y7ei46GISC0uTS4fKqWlAroEgp7qMg=)
                          7: 7qbWrERi-ZB_UDqyNvqfTaD1ZSU.roa (hash: goE2128mhw477UYFVBxjZxeafdneEUnERrdg7dgvL9A=)
                          8: D-wN2Cho3G-R7OigNQ7WXddJiSQ.roa (hash: elIU6H6cKWopjbQ/YhoI51hjuDqclSXEHw33HVdNsi0=)
                          9: DeLLhmnL8UGopy5KKmx7aJEcegM.roa (hash: MiHnbQkuo0f/Ih4buFqhTcosJDlqA6PQQ++HZPqmd5w=)
                          10: ElfbXSGIDiSMTPPlbo6V-o0SRuY.roa (hash: lKK5rdzCjZE0+7rICMxRWAfKpw9HWxpCs96nQPbHzso=)
                          11: F3V6NHBiFLHYH9kCeJ_cphI6VuI.roa (hash: S7WFcWfal2pVRy/GM+kUJ9lEuF9xQr0ct0tz3YBvyhU=)
                          12: GzFILLIkAaT9aB9CvnWDZTFwbdY.roa (hash: Wm6rCP0d9sgkyPeTHrd7psMD7wjPvGW5jHpasqKACzk=)
                          13: PS9MTZzdBifx0im1Vrq3VgjsS5s.roa (hash: 0ux5UJNrhxWM198AZ/GNCpoKgSg8gWm9eiQUOhAki7I=)
                          14: TpP8go9gxjsA4n1kC2kuJQbokBE.roa (hash: 7lExTFrNOgtfm66T9jsBGx9Cjl+c6H6zYjBrnH5qrXg=)
                          15: Vrmk2bULiTNAA5JeOQZ33ec3wXc.roa (hash: l2T4AkC8bheD2TY5DDvz9/5pBIbrm/A780nuw41Lr6Y=)
                          16: W9AeGn_4EYTr-z8IbzJJXYoLOc0.roa (hash: r/0RiCOSE+WrdRBD5qqcgjI3IcYBeed6dA+B48z6B+E=)
                          17: dANCF-_ELvUXZe_N9iPSiuIBUYs.roa (hash: L7tV/7qxxRlCHwy6Cmc9dl/HlJ9PPDTVkduSLInAUZ0=)
                          18: gMYRXePhXBj5QEchP90fA4n6PTI.roa (hash: n3t3ay/80ZRLXPkmrmKkNg7PYGv+vXmzByKb6p1QvZ8=)
                          19: hbdbuaRvg2tTLKp10GziAeSgyRU.roa (hash: H+cM7/5ALMd58f/dYxV/Q5+dv/fO2eB8PR2xGdT8ZXc=)
                          20: iE31HcpgdKKrdPMldO0jIS93Go4.roa (hash: q2vi84j7Hjeqqy/+pd9xsj/QdQIOk9oRPO1utxPcNqU=)
                          21: jpMS12QCO2gdD3cuexYC2wQ8Qeo.roa (hash: nMFW9BQneK7T1fgc0t6oA8jRIcD7rZtWnJMbSrXrhdQ=)
                          22: llmpvsJp6iJllq8aPzCHiXy7pDI.roa (hash: DANl4OSIWpehyMk+CpY4YG/h/rDOrMDg4VQVT2cFg7g=)
                          23: ms0wuT7v6-h1UgnL6n_jgWkOkVU.roa (hash: QBEq8rCcXKzWf4ULJs+y+Nad4kF1AXFNATRKBuEGesA=)
                          24: nm-KZislIGz6wosxLU6C90OgEBY.roa (hash: eiBhQ/2d82wkJoJ8lwkynR/qT2+hnESyOr9AACLRf+E=)
                          25: ugtI-QyWNOjJ59RgJ8WbbnFfW4U.roa (hash: aT3mMJhpwKfI0RkCBtFq/BKu85xA6+3aVTdjvSvqPZQ=)
                          26: w6gmNc7f_bvjPNIJjuhS3RSIpZQ.roa (hash: GdBjwBkJ4iGW3k1Xd7AiPym4634yoaPZu5TSA3ZGyx8=)
                          27: xqJJoOrNiry-oNgu9xAW04bo75Q.crl (hash: 19qsQe8BRnuQZfzopcyZSOr7I1uvVLsGI9fPir7+xuM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 14:46:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:38:2a:69:77:6e:5e:8b:24:fd:10:e1:3d:1a:f7:d2:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
        Validity
            Not Before: Jul  6 16:02:11 2026 GMT
            Not After : Jul  7 16:02:11 2026 GMT
        Subject: CN=fe9cdde1ce0d6b9a8eba634c650a478874b07bcc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:b9:ea:49:e8:85:64:af:9a:ab:3f:0b:79:b6:
                    16:36:57:a1:6c:b1:3d:19:37:b3:dd:1e:0e:b4:53:
                    f1:ab:72:84:29:7a:6c:92:78:5c:ff:90:3e:5b:ae:
                    4c:9e:29:d8:6a:51:be:17:95:68:b3:06:2b:58:52:
                    62:08:0a:9c:0d:a0:8c:98:6d:8e:f3:b4:6f:2c:0d:
                    c8:11:47:f4:03:92:60:00:63:e6:d3:b7:e9:12:03:
                    7d:19:2c:70:26:98:61:90:da:e1:09:92:0b:b9:1d:
                    f3:95:e2:ef:6b:b6:30:67:ad:3e:bd:43:9b:48:af:
                    20:ad:dc:48:08:34:14:61:48:3a:e7:97:f7:c8:37:
                    48:5a:cd:10:4a:38:50:85:fd:2c:c4:10:a7:bf:f2:
                    1d:b1:d7:ef:d2:10:5d:33:51:48:ee:1d:59:78:3a:
                    8e:0e:83:4b:fb:82:94:0f:04:41:78:e3:40:9e:88:
                    69:1e:21:78:4f:fb:bb:9e:41:3e:e7:02:1f:a7:d3:
                    25:12:4c:18:4e:c6:84:8a:77:48:51:31:6b:95:30:
                    37:40:d3:bb:08:a4:3f:cb:11:1f:ce:ec:e5:26:5d:
                    93:1a:c7:50:79:79:dd:be:e7:08:d0:c2:0b:18:b7:
                    54:64:a6:1e:74:9f:0e:a0:c0:5e:79:f5:77:4b:3b:
                    de:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:9C:DD:E1:CE:0D:6B:9A:8E:BA:63:4C:65:0A:47:88:74:B0:7B:CC
            X509v3 Authority Key Identifier:
                keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:d7:7c:33:9a:b7:3f:c4:f9:22:89:14:10:06:b6:34:dd:ba:
         74:84:20:2f:de:5c:15:1f:c2:14:c6:39:93:03:ce:93:99:92:
         72:84:20:39:b8:d7:76:a3:17:f1:29:2a:0f:73:28:a2:b0:f0:
         3c:15:e4:ef:8e:3e:4b:a3:c1:5b:7f:d0:23:0c:05:2d:35:4f:
         af:db:5b:d7:69:99:f8:94:8a:40:ea:e4:6d:33:ca:d4:51:42:
         67:3d:57:a5:24:be:d4:ad:a7:b2:4c:d8:23:4d:a8:7f:10:cd:
         02:2d:4c:e6:b8:b8:54:18:d1:85:07:44:5c:13:0a:6f:68:54:
         70:42:0f:ed:dc:18:cc:02:a1:8b:6e:15:b8:67:da:0a:65:27:
         09:ff:49:33:c6:77:39:05:ca:00:02:c9:ac:fa:3b:f0:b6:17:
         fa:5c:a8:41:59:0f:5b:19:a4:c1:39:e6:f5:37:7c:95:4c:bc:
         be:5f:d4:0f:bd:c2:1c:0d:9f:f1:77:84:72:38:14:5d:6d:36:
         07:d1:eb:78:67:05:74:c8:9a:f8:13:f2:d0:37:be:27:aa:84:
         cc:d4:0f:d6:af:37:7e:c5:a9:cd:02:6f:c0:ef:70:7f:97:d7:
         52:bf:a1:4e:af:af:05:e8:65:78:ae:e9:fb:f2:de:f9:93:54:
         02:8d:af:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:20:38 2026 by rpki-client