Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File:                     2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier:          DfIAamDOuxr0Tvqynp0GWPJSoJSd/XZeaiRZexJqKgg=
Subject key identifier:   2E:B5:5A:08:FC:E1:C3:F3:1B:A9:CB:AA:45:AC:42:89:80:A2:BF:88
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer:       /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial:       019E1E35CA2BD44042EF20CA02788261D199
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number:          03BA
Signing time:             Tue 12 May 2026 22:01:42 +0000
Manifest this update:     Tue 12 May 2026 22:01:42 +0000
Manifest next update:     Wed 13 May 2026 22:01:42 +0000
Files and hashes:         1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: gv0hp4at3gVjA24JIzJFFIZCgvYSb4smcmg4Ox+j6PI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 22:01:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:35:ca:2b:d4:40:42:ef:20:ca:02:78:82:61:d1:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
        Validity
            Not Before: May 12 22:01:42 2026 GMT
            Not After : May 13 22:01:42 2026 GMT
        Subject: CN=2eb55a08fce1c3f31ba9cbaa45ac428980a2bf88
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:f0:b6:e2:08:ae:c3:7d:26:72:5e:61:1b:53:
                    75:7a:26:fa:95:83:72:90:5c:de:4c:12:54:81:c8:
                    1f:08:0b:04:ba:0e:ed:30:e0:f4:68:e5:19:d3:cc:
                    89:a7:fe:c7:fc:d8:70:ae:32:18:40:21:23:ca:e6:
                    d9:47:c1:99:d6:04:49:23:3c:0b:b2:d1:45:94:89:
                    c1:17:78:72:4e:08:d0:c7:cb:4a:31:61:61:99:ea:
                    0e:11:f5:84:96:9a:da:b1:39:f0:e1:43:1a:80:82:
                    7e:66:ef:31:99:49:43:88:34:fe:8a:b7:5d:30:d6:
                    1d:ab:4c:42:89:f5:fb:c0:da:9b:01:41:ac:db:65:
                    20:1f:1e:4c:03:df:77:dd:83:f6:26:89:d5:fe:6a:
                    35:44:b8:ee:4e:72:46:81:01:93:37:da:ab:88:93:
                    3e:ed:4a:30:de:7c:5a:db:a7:20:29:5e:48:c8:1a:
                    f8:85:9b:92:a1:bb:57:79:64:45:99:cc:cf:d1:d5:
                    16:bc:68:b4:44:c4:b3:79:11:f6:2e:cd:e6:66:8b:
                    f5:b8:ba:b7:c0:72:30:89:62:72:e5:54:29:37:8a:
                    91:c1:b4:5a:2d:31:4a:af:b0:b5:22:74:df:3b:0c:
                    7e:8e:be:4a:2e:e6:03:f2:62:6c:56:38:77:dc:3e:
                    c9:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:B5:5A:08:FC:E1:C3:F3:1B:A9:CB:AA:45:AC:42:89:80:A2:BF:88
            X509v3 Authority Key Identifier:
                keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:5c:79:0d:b0:17:25:a8:7e:c6:54:fc:3e:74:73:ab:47:4f:
         23:a8:9f:e2:7c:e2:ce:dd:85:7c:d1:81:40:58:d4:99:ff:0e:
         a0:07:1f:33:2c:2c:99:75:c1:2e:62:62:92:ce:71:77:28:b7:
         cb:30:09:1a:98:1d:63:e3:53:02:31:33:fb:49:4e:e5:36:c7:
         c0:7f:79:6c:33:f3:32:14:e9:da:ff:28:42:2a:93:5b:e2:e0:
         70:ff:36:c2:78:73:a0:5a:0d:bb:85:8b:90:49:dc:64:ef:d0:
         88:ca:3a:9d:66:db:1a:4b:a3:1d:fe:ce:1d:2a:e0:b4:d3:db:
         05:65:c0:6e:ae:cd:d6:e2:a0:9c:a7:9c:b5:0c:ad:88:3d:e2:
         76:dc:23:94:51:8d:22:97:d1:ba:ef:72:df:bf:1b:ee:73:83:
         47:d5:4a:00:54:eb:b8:4a:c8:68:ac:15:e9:c7:10:91:5d:10:
         75:fc:c2:09:74:d3:50:af:12:9e:5b:99:8c:2f:a8:10:bc:14:
         1f:32:30:a6:00:b7:b1:50:1b:ae:97:72:70:84:ba:d8:75:0b:
         c1:90:ec:7e:dd:e2:d3:44:ff:b7:80:32:4e:98:db:61:4f:a9:
         dd:b1:20:63:84:f8:49:0c:c3:48:c4:23:ee:3d:7b:31:1f:2e:
         9d:14:17:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----