Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File:                     QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier:          Z+WG1skx1eSZYPxWwEtiBoPtTad7C0Lbe4qFgjk3U4s=
Subject key identifier:   E3:C7:6B:57:0D:A8:B1:DE:38:BF:09:2F:1D:00:62:6F:48:47:0A:B2
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer:       /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial:       019EBF91219AC98D384868CB29B05A4FCE00
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number:          1966
Signing time:             Sat 13 Jun 2026 06:00:19 +0000
Manifest this update:     Sat 13 Jun 2026 06:00:19 +0000
Manifest next update:     Sun 14 Jun 2026 06:00:19 +0000
Files and hashes:         1: NJO_Y8Rmad7gmCoQl4EFdeb0puI.roa (hash: PeV4K+XBlCAlY87jlA0oZLozJmq4/8N/ed2usUmq5JY=)
                          2: NOncOo0ID7OFhBxkxahXCWMkSks.roa (hash: eW58ef5cup8x8SSubU4LarAJsD4cHKXH22VsKckNWME=)
                          3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: wnN38TVsQpaav79Z6IX/Nj4WdU+qm21YPlvl/quvPK8=)
                          4: QxEip3wlOXriAz7nnAs_AC0I9NA.asa (hash: iXtb4Nzk+e2nFY3GJNhD9F09a2bTSvaIp01d/mdO65Y=)
                          5: rNA54cjskPX4lQNjfLFcvXVm1ps.roa (hash: 25Bd9sAqIVmNUoNvrSpnzoBxZmHIxEPQvqsKC2Kc+TY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 06:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:91:21:9a:c9:8d:38:48:68:cb:29:b0:5a:4f:ce:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
        Validity
            Not Before: Jun 13 06:00:19 2026 GMT
            Not After : Jun 14 06:00:19 2026 GMT
        Subject: CN=e3c76b570da8b1de38bf092f1d00626f48470ab2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:3d:93:a1:ea:fe:63:4e:7b:23:e8:af:9c:b2:
                    1f:1b:43:c6:67:46:ad:31:f9:2e:73:65:4c:8e:d6:
                    50:c8:ef:f6:a5:52:1d:2a:63:a5:33:64:24:be:73:
                    34:9d:65:24:bd:9f:88:60:34:5b:aa:de:1d:b9:e4:
                    26:52:a7:f4:3e:4d:ef:8f:fb:7c:fa:01:e5:7d:12:
                    be:c3:85:52:e0:a6:ea:51:b8:5e:df:35:e4:3a:b1:
                    3b:ed:8b:11:f9:80:6d:8a:4b:f9:38:87:6a:fc:a7:
                    7a:2a:5c:f3:be:a1:a5:d0:d8:f7:bb:a0:41:90:fb:
                    a5:d9:8e:92:6a:4f:cf:35:44:46:71:88:df:eb:7f:
                    eb:30:91:32:69:81:93:ac:99:c4:82:88:95:05:66:
                    89:77:60:1c:f7:9f:47:8e:ad:2d:a2:51:c5:3a:bd:
                    d5:ce:87:6a:82:20:d8:21:d5:d7:43:bf:f5:39:48:
                    12:ab:9a:f4:cf:3a:f2:94:5b:f3:f2:56:11:9f:62:
                    d3:c8:a2:b4:8f:00:fa:d8:fc:8f:03:a3:ce:a2:fb:
                    f3:f7:03:11:f7:97:55:da:2c:ee:2b:4f:60:ce:5d:
                    37:a8:fa:02:2d:03:a3:37:ad:f6:7a:6b:35:b0:cf:
                    49:ae:88:a4:4a:fc:25:37:00:47:56:8f:ce:10:ad:
                    f2:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:C7:6B:57:0D:A8:B1:DE:38:BF:09:2F:1D:00:62:6F:48:47:0A:B2
            X509v3 Authority Key Identifier:
                keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:35:0c:28:e4:0e:ad:1b:5d:fa:52:4b:cf:8c:20:02:a2:a2:
         45:a9:45:ff:73:b3:61:fa:d0:38:06:11:a3:ae:77:32:0a:4f:
         70:27:b3:f8:93:e1:60:73:d0:24:78:9f:36:80:3c:f5:50:d5:
         a1:43:4d:fb:9c:2e:26:e2:95:0b:e3:41:69:c9:57:76:fa:09:
         ee:a5:9e:8c:e3:cc:b5:60:e2:45:4d:1a:65:8c:2c:82:78:41:
         77:87:bc:fb:23:7c:c1:40:34:6c:b5:bb:57:b9:09:dc:17:c2:
         df:bd:a6:9e:17:61:2e:75:e7:66:8d:ff:41:d2:bb:1d:a5:05:
         62:b2:65:00:5a:38:c3:4d:c3:35:0b:77:68:6c:48:f4:0b:1e:
         fb:d0:bd:be:93:0f:a3:7a:4f:52:88:92:90:db:68:f8:b6:bf:
         d8:b6:7e:7e:a9:0f:3a:6a:7a:d0:51:49:2c:b5:6e:fa:00:8c:
         b8:23:ef:cc:62:4f:e1:45:2b:20:14:d6:51:b5:72:ec:53:cd:
         98:e6:b5:d6:bb:58:8d:4c:90:35:60:68:6a:17:31:f5:3b:f3:
         a1:14:80:19:75:dc:9b:2f:51:fd:d2:28:d2:2e:c5:dd:5c:d5:
         aa:ee:e5:a0:c8:99:79:4a:89:e7:27:5e:db:30:80:47:0c:5e:
         49:e4:76:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:24:32 2026 by rpki-client