Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/90ba17-09dc-4b7d-a453-f606ace4acc2/1/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.mft
File:                     DE8Lml_gOJ-ty7-x-hxAxKS6DSs.mft (raw, json)
Hash identifier:          FxMjIcqzGloDQI9n78yoS2OJnRGh/TowVRbyruC7rFM=
Subject key identifier:   A2:8C:0A:49:63:D3:0E:4C:F6:A7:CD:85:5B:C4:A6:8E:61:16:84:69
Authority key identifier: 0C:4F:0B:9A:5F:E0:38:9F:AD:CB:BF:B1:FA:1C:40:C4:A4:BA:0D:2B
Certificate issuer:       /CN=0c4f0b9a5fe0389fadcbbfb1fa1c40c4a4ba0d2b
Certificate serial:       019E1F1126183A823256A461EDEE10BF4836
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/90ba17-09dc-4b7d-a453-f606ace4acc2/1/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.mft
Manifest number:          15E1
Signing time:             Wed 13 May 2026 02:01:17 +0000
Manifest this update:     Wed 13 May 2026 02:01:17 +0000
Manifest next update:     Thu 14 May 2026 02:01:17 +0000
Files and hashes:         1: DE8Lml_gOJ-ty7-x-hxAxKS6DSs.crl (hash: 5vUoHlQghtk3lkLp92b29p0guP2+JQtPIT9/sETcmt4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/90ba17-09dc-4b7d-a453-f606ace4acc2/1/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/90ba17-09dc-4b7d-a453-f606ace4acc2/1/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 23:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1f:11:26:18:3a:82:32:56:a4:61:ed:ee:10:bf:48:36
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0c4f0b9a5fe0389fadcbbfb1fa1c40c4a4ba0d2b
        Validity
            Not Before: May 13 02:01:17 2026 GMT
            Not After : May 14 02:01:17 2026 GMT
        Subject: CN=a28c0a4963d30e4cf6a7cd855bc4a68e61168469
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:a6:c8:a2:79:76:f0:b2:5f:c2:b3:98:7e:13:
                    b0:0b:8f:d2:80:73:e5:bd:4d:f0:70:9e:23:f0:91:
                    da:89:fe:15:61:c7:7b:08:44:0b:7c:81:b9:2b:57:
                    9c:f7:6b:fe:45:d6:c5:ea:08:54:5b:24:2f:f1:57:
                    62:dc:13:b5:1b:92:55:f4:66:77:e2:bc:e0:bb:04:
                    f0:03:e8:0f:d8:c8:b3:7f:e9:bb:c9:fe:77:6e:f0:
                    51:2d:74:9b:b9:f6:ab:d7:25:3e:30:ef:c0:f3:2c:
                    f7:e4:b7:7e:02:79:7c:0f:bf:52:d6:eb:d7:e2:bc:
                    c4:00:42:fd:c9:db:b8:09:ae:75:4d:71:30:7e:5e:
                    b4:25:9e:cf:c4:fd:b6:e0:e2:bd:c2:32:b9:0c:84:
                    f7:ee:d8:f8:93:ec:b7:ff:2c:c3:b5:76:18:8b:2f:
                    fb:70:58:ca:43:c9:6b:59:86:9c:a0:88:73:79:5e:
                    1d:76:e4:9e:82:f7:0a:d4:d1:fc:d1:22:fc:ed:f9:
                    bd:49:7a:0e:7d:23:f5:4f:bf:32:48:22:a6:c0:89:
                    12:7d:0d:f1:08:e9:cb:84:0b:e4:f7:0d:2b:c4:ff:
                    af:83:75:37:10:0b:31:2e:c5:c9:83:35:95:f3:4b:
                    b8:c4:5b:63:96:f2:b5:82:38:93:cb:39:ff:a1:e9:
                    07:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:8C:0A:49:63:D3:0E:4C:F6:A7:CD:85:5B:C4:A6:8E:61:16:84:69
            X509v3 Authority Key Identifier:
                keyid:0C:4F:0B:9A:5F:E0:38:9F:AD:CB:BF:B1:FA:1C:40:C4:A4:BA:0D:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/90ba17-09dc-4b7d-a453-f606ace4acc2/1/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/90ba17-09dc-4b7d-a453-f606ace4acc2/1/DE8Lml_gOJ-ty7-x-hxAxKS6DSs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:cb:b0:ed:6f:64:99:5d:e0:13:49:fa:68:cd:14:d1:3d:64:
         e5:78:5f:a9:10:d2:1a:7e:f8:82:05:33:bc:29:fb:fa:9f:f1:
         d8:f9:cd:6a:71:11:7d:eb:db:3d:52:58:a2:48:66:14:76:c7:
         8e:80:c9:13:78:91:b2:ca:b3:f6:5b:3a:68:01:8e:fc:70:1a:
         d8:0e:7d:e1:30:fd:19:33:35:e0:ac:d2:a1:16:96:54:44:b2:
         4b:fc:72:14:55:4a:ad:fd:e7:38:f4:b7:04:5f:03:75:16:16:
         0f:5d:b5:97:0e:07:7a:1b:90:8f:1a:e0:0f:95:b1:7e:b4:c2:
         93:3f:f3:11:2f:c5:cf:1b:1b:cd:ad:44:b5:44:19:60:02:a6:
         e8:a4:43:f3:81:8c:63:6b:b4:23:cf:19:64:34:8b:25:72:ca:
         be:53:9e:77:54:bf:9a:e6:5a:cb:a6:9d:30:9b:11:19:13:53:
         c2:e0:93:7e:24:49:0e:e2:45:21:cb:53:45:c5:39:3e:f9:96:
         ab:c8:9d:04:4c:b7:6c:bf:c9:0a:31:a5:69:55:9e:08:29:45:
         ec:b3:f1:b8:a4:76:0b:56:2b:4e:5a:d5:51:75:d3:c7:84:a8:
         bd:f0:e9:51:15:fa:97:34:e5:9a:5d:7c:2c:4d:6b:fb:dd:41:
         44:c3:15:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----