Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
File:                     4TcnopRRvk3Zkitg0cWW6Aaplfs.mft (raw, json)
Hash identifier:          EBIvfxHb+92h0rUOlZIxkcAgt+OhZ0q/Y3FulOZZz0Y=
Subject key identifier:   C0:74:00:76:E8:9B:1A:DE:8D:AD:D3:B2:49:93:EE:3D:FB:B0:2F:D8
Authority key identifier: E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB
Certificate issuer:       /CN=e13727a29451be4dd9922b60d1c596e806a995fb
Certificate serial:       019D27046491FA6C7C2A64B1CA13DF186AF5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
Manifest number:          1882
Signing time:             Wed 25 Mar 2026 22:01:32 +0000
Manifest this update:     Wed 25 Mar 2026 22:01:32 +0000
Manifest next update:     Thu 26 Mar 2026 22:01:32 +0000
Files and hashes:         1: 4TcnopRRvk3Zkitg0cWW6Aaplfs.crl (hash: 4kVYNvvMovVtIk8IHv8FCIvnGIJIYzjRl7Vb7QZ5Nws=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 22:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:04:64:91:fa:6c:7c:2a:64:b1:ca:13:df:18:6a:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e13727a29451be4dd9922b60d1c596e806a995fb
        Validity
            Not Before: Mar 25 22:01:32 2026 GMT
            Not After : Mar 26 22:01:32 2026 GMT
        Subject: CN=c0740076e89b1ade8dadd3b24993ee3dfbb02fd8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:42:b1:e1:5a:3a:71:89:99:c1:fe:52:76:31:
                    e8:53:fc:a5:87:5d:05:d6:16:63:c5:f3:38:3e:40:
                    52:ad:33:22:aa:24:7e:be:6e:72:2e:6f:d9:b6:cc:
                    e8:09:de:db:dc:fd:32:7d:e5:41:d0:27:3a:6d:a8:
                    5f:42:36:13:be:9c:16:6f:10:93:94:e5:bb:0c:de:
                    18:da:2b:5e:b9:37:9c:4f:35:2d:02:92:22:a0:a8:
                    05:bc:de:58:79:c0:14:cc:ad:35:b5:cc:4b:d3:b1:
                    99:1f:49:ea:ec:11:2a:1d:7d:e6:ff:2f:96:03:ca:
                    ef:f3:c8:e0:70:f3:7d:d0:51:6b:0b:43:ad:fa:81:
                    e3:3b:91:da:78:43:d3:96:c5:a4:77:68:6a:60:e2:
                    72:e4:c3:db:cb:eb:27:f7:aa:d2:07:c6:66:0a:e0:
                    96:93:2c:af:81:a4:28:90:74:b1:28:cb:84:f3:a6:
                    4c:0f:5e:67:b3:aa:e6:47:8d:ba:72:11:63:f7:7d:
                    15:e5:8c:55:ca:ee:48:e7:b0:ff:e4:00:3b:bf:96:
                    fa:d4:67:64:18:18:51:64:3c:be:aa:fe:60:ce:e3:
                    27:97:d1:93:b6:5c:3f:7d:c0:8c:0d:5d:da:d4:22:
                    ad:7d:49:2e:4b:7e:5a:51:75:7a:ff:9d:55:58:11:
                    97:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:74:00:76:E8:9B:1A:DE:8D:AD:D3:B2:49:93:EE:3D:FB:B0:2F:D8
            X509v3 Authority Key Identifier:
                keyid:E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:11:73:d5:e7:bc:08:40:84:1e:f0:04:a0:44:0d:e2:49:c0:
         42:9b:a8:90:00:b2:53:82:d5:82:1c:47:0b:ac:6a:32:2a:ed:
         24:24:85:68:d5:b6:f3:a2:82:a4:b3:f9:c1:73:3f:b9:96:c5:
         e7:2d:06:7f:c3:97:e7:a5:f6:b8:59:d7:aa:04:27:b2:d8:6e:
         08:b5:85:f9:d8:da:6c:e4:0a:a0:62:14:81:6a:93:a5:27:47:
         fc:5d:09:43:83:30:10:78:bb:98:ee:ed:c5:eb:6c:5a:0e:e6:
         ea:1a:28:6e:bf:79:31:f5:f8:6c:51:5e:b7:06:4f:77:f8:df:
         32:68:13:d9:e2:3a:47:f1:0b:ff:f8:7d:24:8d:fc:b2:5c:2f:
         27:c8:9d:55:ff:65:e7:1d:30:37:02:88:95:ae:d1:fb:c9:75:
         6d:62:6a:e2:3f:96:6b:b2:50:c1:f6:b9:f8:ee:b6:65:7c:4f:
         77:f0:9e:94:b4:3f:ee:93:d0:11:6b:b5:ef:24:05:9d:72:6f:
         4c:a6:25:70:52:ea:02:4f:d7:54:15:e0:70:f6:26:b8:ba:76:
         c3:ac:67:9f:b3:c7:fb:30:9c:81:d3:2c:09:13:86:a3:75:2f:
         d9:b9:b6:d9:89:ba:6e:23:f1:2b:51:4a:39:44:ad:95:cc:78:
         af:14:c3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----