Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
File:                     RHhnr-yeLyk5So9fl_kJKdkoIQI.mft (raw, json)
Hash identifier:          cLOlhcDUucCPYjM33nXmg9oD5ObbYztndu9jV15W/88=
Subject key identifier:   CD:B3:84:60:EF:AE:48:05:6B:34:6D:F2:01:07:D7:AD:BD:5A:3E:57
Authority key identifier: 44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02
Certificate issuer:       /CN=447867afec9e2f29394a8f5f97f90929d9282102
Certificate serial:       019D28F2356D4D4AFE1584862B3CC6B1FE8D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
Manifest number:          1884
Signing time:             Thu 26 Mar 2026 07:00:55 +0000
Manifest this update:     Thu 26 Mar 2026 07:00:55 +0000
Manifest next update:     Fri 27 Mar 2026 07:00:55 +0000
Files and hashes:         1: RHhnr-yeLyk5So9fl_kJKdkoIQI.crl (hash: q53tvZ2PFYJ6rr4avGqYp444QXq6a4a+HMBpbc5bWVI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:f2:35:6d:4d:4a:fe:15:84:86:2b:3c:c6:b1:fe:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=447867afec9e2f29394a8f5f97f90929d9282102
        Validity
            Not Before: Mar 26 07:00:55 2026 GMT
            Not After : Mar 27 07:00:55 2026 GMT
        Subject: CN=cdb38460efae48056b346df20107d7adbd5a3e57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:fb:dd:77:44:4a:65:5b:66:2e:6b:50:ea:c8:
                    0e:10:58:c2:4a:98:4a:c4:83:4b:01:f8:83:f0:e6:
                    0a:10:12:7b:db:33:55:b5:56:70:77:ec:cc:58:89:
                    e8:3e:81:45:ac:ba:32:03:3b:39:ea:6a:66:56:e5:
                    c8:9f:09:38:69:fa:c4:f8:dd:74:79:91:9c:7b:3c:
                    ee:d2:a3:5e:0b:96:5c:8c:75:5f:13:0d:3d:dc:9e:
                    c4:94:6a:86:2a:81:09:1c:c8:61:f2:2b:71:0b:d8:
                    82:53:49:87:ba:cb:e6:f1:11:8f:2d:7f:11:f8:64:
                    e4:38:e1:df:31:78:65:ad:87:d7:47:cd:0b:97:bd:
                    b5:69:fc:27:15:b0:e5:0e:db:56:2f:47:0c:45:80:
                    0f:91:5c:7a:fa:66:01:87:ec:d1:b6:15:59:bd:48:
                    c8:85:54:38:11:6b:c4:75:61:06:4d:c0:9b:c9:a9:
                    87:1e:50:7d:f1:73:fd:7e:73:3c:28:63:a2:ea:32:
                    0e:dc:18:68:b3:54:13:9c:33:f6:fa:5d:a2:42:21:
                    0e:93:db:6b:0a:cc:e9:2e:cc:a3:17:13:8b:9b:3b:
                    d0:d9:b5:a4:1d:29:8a:c1:6c:5a:67:c1:95:5d:ba:
                    84:df:14:15:2b:33:37:19:f1:e1:9d:9c:b0:8c:9d:
                    4a:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:B3:84:60:EF:AE:48:05:6B:34:6D:F2:01:07:D7:AD:BD:5A:3E:57
            X509v3 Authority Key Identifier:
                keyid:44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:46:2a:f1:ea:72:fc:02:3b:40:92:77:ea:7f:49:78:ea:3b:
         66:35:98:b3:8d:c9:a8:d3:7c:b1:4b:a6:19:12:39:24:b7:5e:
         7a:98:31:10:ba:f7:84:e1:24:7b:96:ef:93:92:41:b0:53:83:
         3b:8d:f2:b8:0f:67:ef:76:e0:55:92:a9:bf:e3:17:d5:9b:86:
         e5:89:b9:5d:81:9c:d7:58:fd:0e:47:cf:11:1b:c6:c2:80:ae:
         f1:46:f2:ad:ef:7e:7f:dc:8c:8a:44:a0:c3:6b:6f:4a:58:a1:
         f8:b3:66:ac:4d:fa:c0:e3:ac:72:b7:0b:ef:50:61:98:77:4b:
         dc:1c:a2:83:e3:07:1d:92:a2:a9:56:39:69:2f:c5:72:5e:16:
         ef:b7:32:97:84:3c:81:b9:95:e5:ef:ad:46:d7:32:71:6d:2a:
         bf:7a:a9:c0:36:2c:ae:26:21:cb:a9:a6:8f:3c:22:28:b9:3e:
         93:5f:dc:4b:01:18:c1:e6:fc:05:b0:a1:cf:f6:3c:f4:23:b9:
         29:46:d8:3d:3f:c7:4b:80:e9:e2:b7:58:b5:b5:a3:61:a2:39:
         a3:d1:ea:f9:62:0c:76:61:aa:61:dd:65:c3:6d:a0:6e:8b:38:
         e2:9b:d6:a6:63:c7:c1:92:c3:db:bb:88:d1:06:87:59:e3:0f:
         5f:fd:e6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----