Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File:                     3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier:          uAZTTPO72S4zb3L8WA1+PcT7y1BxzcyTmMJJIJWUfPs=
Subject key identifier:   8A:C7:B6:83:69:4F:E4:EA:F6:78:A6:61:97:FA:5B:A3:11:7F:DC:A1
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer:       /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial:       019D27DFCE18C53305A8AF690E0B13239FE5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number:          1451
Signing time:             Thu 26 Mar 2026 02:01:11 +0000
Manifest this update:     Thu 26 Mar 2026 02:01:11 +0000
Manifest next update:     Fri 27 Mar 2026 02:01:11 +0000
Files and hashes:         1: 2uJAkewiUJwsbNaj2yvunQboIco.roa (hash: FFjpTcabKOY4bvHAqUpVIWDG0dv6yHtpa4jSe9dcbIQ=)
                          2: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: 9sdO0WhbEwaRr5PeKCcIKSx66qaG7URx4xNKwyQ0KW0=)
                          3: B1STsfdesV5NfTBKRKCVN2ABrCw.roa (hash: NWB6mpqgZNqK5Ki19/Fr7idV+OhlroMe3Jwdlj+J+M0=)
                          4: VaQhwNUDpB1f377_pgDC7bKIVs8.roa (hash: yIsP2S+y7+H5E1qVaCf/heokAGlt0wDZeCh1+1PijTk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 02:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:df:ce:18:c5:33:05:a8:af:69:0e:0b:13:23:9f:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
        Validity
            Not Before: Mar 26 02:01:11 2026 GMT
            Not After : Mar 27 02:01:11 2026 GMT
        Subject: CN=8ac7b683694fe4eaf678a66197fa5ba3117fdca1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:d7:49:0e:bb:b3:5b:57:4d:06:03:8f:ca:56:
                    e9:e0:50:b6:13:14:3d:8a:bf:96:a8:5e:cc:db:40:
                    44:94:38:9e:9a:38:96:75:d4:39:55:44:37:0b:f4:
                    8c:ce:00:69:d8:b0:b7:27:37:0d:ed:2b:bb:ce:a6:
                    5f:56:2c:cf:69:a8:91:24:e2:66:b8:5f:5f:f3:7d:
                    2e:b0:c9:78:a6:67:52:d8:e7:c6:55:b8:1e:11:0a:
                    5c:1b:72:69:62:b2:55:58:d2:ae:4f:28:0f:94:97:
                    96:88:b8:10:93:f7:14:df:9e:d9:06:43:25:92:82:
                    af:69:cb:00:09:9b:63:72:41:38:96:34:35:79:b4:
                    f7:17:66:be:70:80:a4:32:92:ee:a5:32:48:d4:f0:
                    d2:2b:a5:a7:69:81:bf:ed:b7:ce:33:22:66:e1:e5:
                    42:6b:e1:37:e7:f9:ee:cc:ca:28:b8:dc:e0:26:73:
                    b3:12:fe:13:f3:e6:b6:15:5f:17:a9:fc:46:ed:80:
                    94:2d:7c:7b:8b:ad:d7:24:72:e9:12:30:5f:a3:19:
                    01:2b:0b:ee:70:29:53:b1:0d:c6:ff:a0:eb:8b:9b:
                    a0:89:45:e0:c3:85:d5:f4:53:66:81:d9:1b:09:1c:
                    1a:4b:8b:59:06:c2:62:f4:af:af:10:20:fb:00:a1:
                    4b:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:C7:B6:83:69:4F:E4:EA:F6:78:A6:61:97:FA:5B:A3:11:7F:DC:A1
            X509v3 Authority Key Identifier:
                keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:18:73:7b:46:40:90:5b:a4:2e:a1:73:42:3a:6e:e8:00:4f:
         e4:45:6b:25:0b:38:e2:82:81:80:6c:f3:d9:0e:a8:23:dd:9d:
         b9:dc:8e:d5:0a:e0:43:40:b0:df:43:9e:d1:9c:b2:4a:d4:72:
         16:62:a0:9b:b0:f1:38:df:d5:e2:0e:a0:2a:21:2c:b4:5c:62:
         8a:19:79:1c:68:08:c0:b0:5d:d3:c5:d6:f6:ac:68:20:16:6e:
         cb:d1:f6:c7:32:a8:91:01:8d:d8:64:d0:55:cc:65:0a:f8:00:
         9d:e3:46:df:db:e2:9b:63:a4:8b:ea:95:8f:da:d0:66:10:e7:
         41:d0:d1:03:2d:c3:95:4d:d8:d9:ae:5b:dc:c6:b0:22:1b:f6:
         de:aa:3c:af:df:f8:b1:7e:46:30:3a:4b:16:6c:f3:a4:90:d3:
         60:0a:45:bb:17:ae:6d:d8:16:71:5e:c5:9c:01:15:b1:6d:a8:
         31:cc:39:e3:26:fd:0d:c0:6c:b4:51:14:36:03:60:f6:ca:51:
         78:55:8a:9e:cb:bd:f9:a3:10:4a:7f:7f:4b:83:4d:e6:39:12:
         b8:05:96:a9:70:36:4f:7e:6c:d0:10:14:9d:bf:ee:db:47:96:
         3e:0d:3c:ce:97:8b:ea:8a:45:48:aa:c4:68:3a:ea:f9:3a:b1:
         e3:4f:d9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:52:57 2026 by rpki-client