Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft
File:                     FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft (raw, json)
Hash identifier:          6e6oGDTJifG8QtyAMpyhTQtbQlSmn/vN2K3VqNjwsMQ=
Subject key identifier:   7F:52:12:AD:E7:9F:23:30:D0:F1:B3:AE:55:84:86:9D:CE:FC:17:E7
Authority key identifier: 14:BB:6F:AC:69:19:D9:00:A2:FE:BB:78:1D:19:7F:4D:81:34:E0:5B
Certificate issuer:       /CN=14bb6fac6919d900a2febb781d197f4d8134e05b
Certificate serial:       019D284D9493DED033079D7FC85CDEAE109D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft
Manifest number:          149D
Signing time:             Thu 26 Mar 2026 04:01:05 +0000
Manifest this update:     Thu 26 Mar 2026 04:01:05 +0000
Manifest next update:     Fri 27 Mar 2026 04:01:05 +0000
Files and hashes:         1: FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl (hash: u4XiKI7oc0w6xirSBqnHuTg2XbofhZ81QH4LjlERN+k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 04:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:4d:94:93:de:d0:33:07:9d:7f:c8:5c:de:ae:10:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14bb6fac6919d900a2febb781d197f4d8134e05b
        Validity
            Not Before: Mar 26 04:01:05 2026 GMT
            Not After : Mar 27 04:01:05 2026 GMT
        Subject: CN=7f5212ade79f2330d0f1b3ae5584869dcefc17e7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:49:7c:ad:b5:58:79:63:cc:5a:4c:69:88:33:
                    0a:7c:19:25:39:16:6e:9c:e6:6d:22:0b:a1:53:65:
                    68:fd:6f:8e:1d:59:79:ec:99:21:35:13:a1:93:22:
                    ca:7d:ec:88:68:fd:33:78:fa:05:5c:39:e5:bb:ba:
                    09:06:c0:dc:db:ce:fd:91:91:ac:91:ee:9c:0d:7d:
                    93:42:b4:e3:d2:88:3f:4b:a6:d8:8a:a5:06:6d:de:
                    e2:8b:79:0d:b2:32:cb:03:6b:d4:c6:62:40:e4:49:
                    db:98:c5:a0:29:51:9b:d1:fa:27:4a:33:24:98:8f:
                    f7:ef:1b:b0:0c:ca:73:40:64:c6:aa:de:3c:1e:be:
                    52:94:da:96:c8:51:44:22:87:67:eb:e6:26:bd:c5:
                    cc:44:a2:7b:e1:e6:a8:5e:3d:d3:97:4f:f1:15:4f:
                    1e:72:0b:21:8b:88:fb:9b:41:f1:9c:0e:ae:44:75:
                    6e:89:bc:81:6a:a2:11:ac:86:b1:f9:42:3f:f7:63:
                    f7:20:3e:07:de:67:6d:64:c1:c6:d7:a6:e5:a1:66:
                    fc:9b:a2:3b:da:7d:21:b9:aa:23:f9:df:d1:91:2c:
                    a2:94:3e:3a:3a:74:0c:33:37:8e:4f:68:a7:74:17:
                    f6:32:55:8c:3b:f9:8b:5b:cd:0f:69:f9:aa:d0:ff:
                    ad:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:52:12:AD:E7:9F:23:30:D0:F1:B3:AE:55:84:86:9D:CE:FC:17:E7
            X509v3 Authority Key Identifier:
                keyid:14:BB:6F:AC:69:19:D9:00:A2:FE:BB:78:1D:19:7F:4D:81:34:E0:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:58:bf:c9:05:80:1c:6a:51:5e:94:59:37:6e:e8:cb:db:0c:
         b7:a8:fe:dc:a1:39:59:19:8e:5f:e2:8e:71:4d:db:a6:91:8c:
         32:5d:4f:79:16:be:2e:28:45:9f:8d:a7:c5:68:be:9c:c5:f9:
         52:8f:20:59:e4:be:67:33:c8:9d:06:3a:d1:50:fd:65:7b:ef:
         7b:73:45:09:94:a1:fd:43:ad:14:fa:dc:75:6d:e6:cb:d4:9d:
         a0:ea:6b:70:c8:ff:e6:00:4f:8c:8c:91:f8:85:15:f1:de:4c:
         72:9e:b2:ee:77:55:5c:99:5c:4d:a7:65:01:d4:d3:d5:0c:48:
         68:9f:02:c4:06:6b:37:3d:57:43:ca:47:b1:ef:3e:75:73:33:
         99:5c:80:de:da:05:fc:ab:e4:1a:a2:3b:ce:02:15:4b:f1:88:
         78:64:31:ea:30:c4:fa:77:02:ef:cc:a5:4f:94:c3:7b:88:59:
         f5:14:3b:b7:76:30:70:22:6e:d2:18:49:62:21:77:6d:e4:8e:
         0e:b5:12:f0:7a:f2:5b:57:b8:c6:b2:a7:e2:67:ab:4c:2b:0f:
         59:d8:dd:e5:d5:13:b4:42:17:7e:c2:55:d4:88:34:d6:2b:fa:
         11:3f:ec:0f:75:b9:c1:3a:4d:7b:48:1f:9b:89:30:5d:33:92:
         39:57:30:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----