Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File:                     0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier:          9GZ9wmIr7eNQXbWseRWtpltoZ+abpuPoq5ZQhCH7vrs=
Subject key identifier:   DE:F2:C5:F9:6A:1C:5C:80:36:54:E5:2D:43:B8:E4:25:98:32:5A:E0
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer:       /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial:       019E1D223A8000DCEAE4B6B8AEFB8B91F5D8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number:          1900
Signing time:             Tue 12 May 2026 17:00:42 +0000
Manifest this update:     Tue 12 May 2026 17:00:42 +0000
Manifest next update:     Wed 13 May 2026 17:00:42 +0000
Files and hashes:         1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: j2fdInxSQczeMnwAtb4/z5s0bNR0ZxJ3Ffl4Hbj4HNM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:22:3a:80:00:dc:ea:e4:b6:b8:ae:fb:8b:91:f5:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
        Validity
            Not Before: May 12 17:00:42 2026 GMT
            Not After : May 13 17:00:42 2026 GMT
        Subject: CN=def2c5f96a1c5c803654e52d43b8e42598325ae0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:fb:70:09:d8:f6:33:d8:2b:07:2d:79:b7:9a:
                    fa:5b:19:aa:f3:52:3c:22:95:56:f9:f0:13:b3:74:
                    f7:f3:9b:f7:2e:53:2c:55:03:82:dc:5d:38:53:56:
                    52:5d:32:e3:d7:93:97:1c:4b:cf:c3:8f:96:8c:49:
                    ca:22:99:18:e1:27:3f:00:0b:73:f1:b5:1f:1c:17:
                    e5:42:8d:18:d3:c1:b7:bb:e7:fd:ab:8c:c7:24:14:
                    e2:54:c8:a3:03:68:33:e4:33:45:9e:a5:87:bd:69:
                    14:77:2d:11:41:2b:ee:8c:c5:2c:5c:68:0d:01:18:
                    b2:6c:6f:ce:82:72:3c:a0:37:66:d5:95:32:8c:35:
                    dc:c5:1b:b9:b0:ab:07:30:d0:72:8d:9c:8f:86:57:
                    2f:de:d5:18:ce:44:70:76:c7:02:45:20:58:de:42:
                    85:8c:42:48:26:71:78:c8:16:82:0a:4a:be:98:f4:
                    b7:c5:1a:e6:e6:1f:3d:39:0a:d9:8a:00:88:e9:90:
                    f5:48:17:cc:0b:6c:f4:22:14:63:99:ba:76:06:22:
                    a8:87:28:b8:47:77:19:1a:2b:d0:05:4d:c4:22:9d:
                    5c:56:fd:81:c9:1c:3a:b6:81:c4:05:5f:b5:a1:36:
                    a3:0f:c2:1b:dc:2f:6b:6b:93:6d:39:6f:29:79:cc:
                    00:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:F2:C5:F9:6A:1C:5C:80:36:54:E5:2D:43:B8:E4:25:98:32:5A:E0
            X509v3 Authority Key Identifier:
                keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:df:0b:74:bd:79:41:04:0b:df:7e:9c:79:f8:59:94:4c:77:
         da:80:1c:15:cc:a9:8b:ca:22:b6:9e:14:7d:12:a3:9f:13:8e:
         e2:4a:64:d9:3f:6d:2d:da:a4:04:d7:8f:60:8e:6c:88:8f:18:
         02:58:65:f7:c4:66:91:db:29:ed:c8:1b:1c:40:cf:36:4c:47:
         b7:a4:94:9f:05:43:03:96:0d:0e:d1:d6:98:20:6c:1b:48:10:
         97:59:5d:9f:f9:44:3c:c8:f9:f6:42:d5:05:a4:89:f9:f8:93:
         7d:30:74:2f:b8:45:a3:8a:72:aa:b8:0a:bb:b9:6f:d4:f5:09:
         2f:45:cd:6b:b7:e1:ea:bd:dc:20:32:08:d3:8c:bc:6d:70:e2:
         63:3d:98:1e:d8:47:a4:e3:ec:da:41:eb:e6:3d:79:3b:90:4a:
         5d:8e:da:91:1b:1e:73:f4:0b:88:7a:05:59:6c:91:fd:fa:8e:
         2a:e5:61:9c:95:e9:d6:25:95:3f:8a:97:56:b6:49:f8:4c:d3:
         06:56:b3:0a:d9:ca:a5:00:a4:2e:61:38:6d:89:65:f1:3c:ef:
         25:b1:46:d0:d5:b4:12:6c:df:fe:06:fc:d2:a9:6b:44:c8:8f:
         8a:0e:92:6e:4e:8a:f9:bb:7d:e6:51:29:47:15:bc:31:34:53:
         f9:91:59:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----