Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
File:                     EDfew086MutlAvFmKoKiD4teohw.mft (raw, json)
Hash identifier:          iX7JsobYFzYkLJV6jwNedz8Vy0OeGxmH4250h9DNNS0=
Subject key identifier:   E3:D7:5E:16:78:E9:DB:D9:2B:A2:C7:B0:73:7C:D5:B0:F8:24:50:E3
Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C
Certificate issuer:       /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
Certificate serial:       019D277293052E281B522EA32897A46E880E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
Manifest number:          1884
Signing time:             Thu 26 Mar 2026 00:01:53 +0000
Manifest this update:     Thu 26 Mar 2026 00:01:53 +0000
Manifest next update:     Fri 27 Mar 2026 00:01:53 +0000
Files and hashes:         1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: lFnzBLDzq/gksTYA59CORRW2IZVAcJzvU5KyQuePdlE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:72:93:05:2e:28:1b:52:2e:a3:28:97:a4:6e:88:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
        Validity
            Not Before: Mar 26 00:01:53 2026 GMT
            Not After : Mar 27 00:01:53 2026 GMT
        Subject: CN=e3d75e1678e9dbd92ba2c7b0737cd5b0f82450e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:dc:13:ff:19:c6:31:c8:66:af:34:f6:ac:5f:
                    fa:bb:54:15:70:9f:f3:c5:75:f1:18:8b:d7:b3:f6:
                    d8:80:41:21:3c:5c:94:e5:23:22:0f:e0:ce:d4:ee:
                    ae:07:cb:a9:fb:b1:4f:02:0b:f7:fd:29:86:62:2c:
                    5e:14:32:2f:ad:bd:52:16:0f:b0:df:8a:bc:7a:2d:
                    ae:58:71:6e:79:75:df:89:47:15:bb:94:66:a2:c0:
                    bd:a0:79:91:86:22:ec:13:1e:05:b7:b3:c6:ee:9d:
                    06:f0:0b:a6:9c:d5:91:70:39:04:27:0a:3c:ea:5c:
                    f3:4a:d4:73:80:ac:20:13:9b:9c:98:3c:ed:29:7d:
                    25:d7:eb:8c:56:c4:11:55:d3:be:12:49:63:92:5d:
                    cb:62:b3:8f:79:b1:cf:4d:c1:83:82:fc:af:52:8d:
                    8f:a9:44:59:77:70:f6:2d:80:91:6c:f2:f3:d9:12:
                    a9:f7:34:89:9e:5d:98:c0:56:47:19:1e:b9:a6:1b:
                    89:73:49:d4:7d:05:91:c8:8a:65:84:35:1e:3c:6a:
                    00:99:5c:b4:a5:fb:3a:7d:4a:02:2b:03:6a:c3:a0:
                    13:63:55:ed:28:c8:db:00:9e:72:24:ce:92:63:de:
                    69:e8:f2:df:9c:e8:71:86:a1:17:ce:6d:af:46:93:
                    48:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:D7:5E:16:78:E9:DB:D9:2B:A2:C7:B0:73:7C:D5:B0:F8:24:50:E3
            X509v3 Authority Key Identifier:
                keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:a0:42:c2:6c:d4:7b:9e:0f:2f:83:d3:74:ad:34:e2:71:93:
         3a:2d:fe:58:40:5f:d8:be:b1:dd:60:42:6e:49:b4:c1:94:34:
         ae:4b:bc:e6:69:49:3d:45:04:c1:a7:a7:3a:54:29:80:6b:08:
         79:06:65:ed:55:d7:dc:a8:16:d6:43:4c:62:d8:a2:f5:40:32:
         af:f0:ac:01:aa:75:0b:b9:5c:ef:12:3a:85:54:d5:9e:10:10:
         6b:83:8d:ee:6d:b8:f1:5d:79:ea:fa:90:b7:12:c5:45:3d:d0:
         fd:60:2d:e7:b6:2d:67:53:43:68:5d:70:03:05:d0:3c:61:0a:
         56:94:24:36:fa:02:9b:cb:5b:fd:17:1a:e3:24:58:d6:a2:e6:
         9f:74:b8:a5:11:5b:39:56:b3:35:b5:e0:c2:41:ac:bb:ac:5b:
         22:8c:74:7c:48:d1:06:9a:f0:56:27:d5:f1:d9:4a:f7:5a:11:
         c2:ca:f1:8c:dd:b6:d9:84:9b:08:e4:e6:21:de:86:33:be:ce:
         d3:73:cd:be:29:92:49:d3:76:b7:a8:ab:9e:00:e9:cc:41:ae:
         7f:2b:3c:e4:ac:9b:34:80:ed:85:3f:ec:e3:69:8e:41:6b:f4:
         f9:f7:19:11:f4:44:8d:89:57:e3:e4:50:d4:1b:9b:c3:3f:c5:
         e6:9b:0a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----