Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
File:                     8cgdjkJn0tRetlJQoqSCULX7Uls.mft (raw, json)
Hash identifier:          INGouzVzdLwHx/IrXd2aD2jc2/GDfyr942NwRg7vQEE=
Subject key identifier:   92:C4:80:CF:C4:83:90:3D:4A:FF:C1:B5:9F:02:40:4D:7C:62:70:02
Authority key identifier: F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B
Certificate issuer:       /CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
Certificate serial:       019E20245064893E252FBA299DE434FC0F47
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
Manifest number:          0D2B
Signing time:             Wed 13 May 2026 07:01:51 +0000
Manifest this update:     Wed 13 May 2026 07:01:51 +0000
Manifest next update:     Thu 14 May 2026 07:01:51 +0000
Files and hashes:         1: 8cgdjkJn0tRetlJQoqSCULX7Uls.crl (hash: OexRqZLbluuQqHKaUwkVKCNyeTE50Se5eAQCAgWosxw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 14 May 2026 06:33:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:20:24:50:64:89:3e:25:2f:ba:29:9d:e4:34:fc:0f:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
        Validity
            Not Before: May 13 07:01:51 2026 GMT
            Not After : May 14 07:01:51 2026 GMT
        Subject: CN=92c480cfc483903d4affc1b59f02404d7c627002
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:b9:b6:b2:d2:9e:0d:d7:71:0b:88:cd:11:be:
                    be:76:2f:91:ea:3c:a1:75:d3:b2:94:db:d7:05:7c:
                    f6:22:dc:33:17:f7:44:cd:b3:6c:bc:81:56:f8:74:
                    b7:78:c1:0e:1e:b5:f5:2b:a3:0a:8b:8b:3c:0a:90:
                    00:93:0e:4a:9f:b9:e1:2a:b7:14:92:a7:de:94:fa:
                    0b:7a:71:a8:da:2f:3b:cd:e5:83:e2:e4:5f:57:e1:
                    c9:f1:70:c3:6b:8b:31:24:4f:01:d8:50:28:f2:ce:
                    58:33:56:c4:e3:03:6c:0a:d3:03:56:60:45:93:1e:
                    d9:9e:e2:15:b1:b2:92:fe:99:97:12:a2:68:9a:db:
                    b3:1a:df:71:56:ee:9e:76:a4:1d:77:4c:69:c9:66:
                    f4:9b:aa:d8:72:a7:23:d2:43:49:e4:7b:c0:29:d2:
                    0a:82:67:f5:aa:e5:f6:f5:13:7f:3b:12:22:06:e1:
                    e0:9e:6f:64:da:aa:30:f5:ac:a6:20:86:cf:78:0c:
                    3a:af:df:ef:e8:75:76:98:48:4a:15:f6:ac:b9:84:
                    59:87:28:5e:4f:b6:a7:6e:4b:86:e0:e1:fd:ee:63:
                    26:ae:a9:b8:24:d8:ea:ef:a8:d7:d2:55:eb:22:cb:
                    65:dc:16:92:25:4e:e1:8b:97:1b:e6:6f:ba:84:bb:
                    92:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:C4:80:CF:C4:83:90:3D:4A:FF:C1:B5:9F:02:40:4D:7C:62:70:02
            X509v3 Authority Key Identifier:
                keyid:F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:0d:de:d6:16:2d:20:02:d2:aa:67:ff:01:cc:4b:c6:96:22:
         69:2f:fa:64:4f:f6:2c:74:e6:2d:91:67:f7:d2:13:e8:e9:ca:
         9c:93:0e:56:3e:17:53:7d:92:ea:03:62:da:f5:f6:32:c7:78:
         43:06:5c:12:22:a2:e9:7c:79:b9:f6:b7:3c:35:5e:f5:51:39:
         bb:68:67:1d:7a:8b:11:21:94:b5:4e:ed:b2:46:a0:ce:06:13:
         61:0b:11:ab:90:26:a3:d0:1d:c9:e5:ea:65:ee:0a:10:e5:ec:
         b2:a9:a6:f2:ad:82:85:86:37:dd:e1:97:21:8b:a8:f6:c0:5b:
         0f:e2:93:1d:cd:4a:f6:4b:8f:3f:17:33:db:63:5a:b7:0e:89:
         d9:92:c3:21:ae:06:67:5b:98:15:f3:49:f2:81:81:24:be:8b:
         3d:a6:fe:7f:65:ba:df:2f:f4:b1:16:da:40:07:3a:29:ff:0d:
         36:e4:f3:7a:03:09:01:a4:05:d4:46:48:b9:fb:94:c6:64:c3:
         8e:e3:2a:56:50:3b:0c:cc:ee:ba:9d:69:38:7c:c4:40:0f:a8:
         4d:93:82:4b:f2:f1:64:4d:a9:0b:72:23:1f:96:b2:e0:96:dd:
         70:1b:0e:98:97:5b:f2:f3:d1:0b:03:a5:66:6e:59:39:b1:0f:
         49:37:7a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----