Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/017147-a6c1-4f48-a5d9-2cde4045c42a/1/oWkKV2UZ54d6ZAis325pu4RyqhU.mft
File:                     oWkKV2UZ54d6ZAis325pu4RyqhU.mft (raw, json)
Hash identifier:          s0Ynj4BEW2pBnoXJC5TpPdoeGiXSLejWCpHPBz+4Crw=
Subject key identifier:   3C:83:0D:57:BB:9D:43:4D:DB:0E:93:2E:73:25:03:DE:C8:D2:45:A3
Authority key identifier: A1:69:0A:57:65:19:E7:87:7A:64:08:AC:DF:6E:69:BB:84:72:AA:15
Certificate issuer:       /CN=a1690a576519e7877a6408acdf6e69bb8472aa15
Certificate serial:       019D29979B3383C6A24B11F6F62B6A7C9CDB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oWkKV2UZ54d6ZAis325pu4RyqhU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/017147-a6c1-4f48-a5d9-2cde4045c42a/1/oWkKV2UZ54d6ZAis325pu4RyqhU.mft
Manifest number:          0779
Signing time:             Thu 26 Mar 2026 10:01:34 +0000
Manifest this update:     Thu 26 Mar 2026 10:01:34 +0000
Manifest next update:     Fri 27 Mar 2026 10:01:34 +0000
Files and hashes:         1: oWkKV2UZ54d6ZAis325pu4RyqhU.crl (hash: WX5x71GVGiljzN5pf4Qgbu6yrwT+8+WXwpTW6T0e+cY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/017147-a6c1-4f48-a5d9-2cde4045c42a/1/oWkKV2UZ54d6ZAis325pu4RyqhU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/017147-a6c1-4f48-a5d9-2cde4045c42a/1/oWkKV2UZ54d6ZAis325pu4RyqhU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oWkKV2UZ54d6ZAis325pu4RyqhU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 09:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:29:97:9b:33:83:c6:a2:4b:11:f6:f6:2b:6a:7c:9c:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1690a576519e7877a6408acdf6e69bb8472aa15
        Validity
            Not Before: Mar 26 10:01:34 2026 GMT
            Not After : Mar 27 10:01:34 2026 GMT
        Subject: CN=3c830d57bb9d434ddb0e932e732503dec8d245a3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:24:93:2b:81:d8:ad:0c:4e:8c:f3:c5:1d:e5:
                    79:31:f9:2a:a7:40:e4:41:b2:f9:e3:03:77:de:b3:
                    19:f3:82:83:ca:2a:76:a4:45:b5:2d:4a:6e:fb:ec:
                    6d:32:75:22:30:f1:30:5a:e3:91:7a:8c:15:69:82:
                    1f:80:75:ef:14:13:0e:55:92:45:ad:8d:83:39:16:
                    5f:25:9b:5d:86:3e:ab:89:ef:c1:ee:5a:d8:da:47:
                    67:18:66:48:89:1f:fe:aa:cf:04:ec:ea:2c:7c:0e:
                    97:1c:92:da:41:49:03:ac:c6:f4:2d:13:64:27:1d:
                    b8:47:f1:42:3e:1e:08:d1:ed:11:7c:ae:60:54:5c:
                    af:b9:a6:fc:0b:6a:66:75:f1:bf:55:c8:d2:ab:d0:
                    c9:64:37:62:d1:6d:c7:22:57:8a:78:b7:2c:49:73:
                    2e:05:7a:97:9c:07:e8:ae:65:ad:e8:a5:41:9a:9a:
                    3e:0a:73:06:cd:37:ab:fd:56:ab:b0:08:a3:d3:95:
                    1d:ba:b0:c9:81:b7:d2:df:8a:fd:15:08:4f:e4:ae:
                    9e:fe:50:cc:2b:a9:b4:c1:2f:17:e9:e2:24:dc:bc:
                    0f:aa:a8:a9:39:54:f6:0a:03:28:3d:d9:67:cc:3a:
                    77:60:29:d5:05:98:d4:d2:54:cf:23:39:40:c2:fa:
                    58:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:83:0D:57:BB:9D:43:4D:DB:0E:93:2E:73:25:03:DE:C8:D2:45:A3
            X509v3 Authority Key Identifier:
                keyid:A1:69:0A:57:65:19:E7:87:7A:64:08:AC:DF:6E:69:BB:84:72:AA:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWkKV2UZ54d6ZAis325pu4RyqhU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/017147-a6c1-4f48-a5d9-2cde4045c42a/1/oWkKV2UZ54d6ZAis325pu4RyqhU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/017147-a6c1-4f48-a5d9-2cde4045c42a/1/oWkKV2UZ54d6ZAis325pu4RyqhU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:08:7b:67:2e:79:3f:61:2b:ba:8f:4f:32:57:87:fa:b5:f6:
         58:73:32:1f:36:65:a3:90:ea:ba:cb:77:10:09:f3:d0:c3:e1:
         7d:f1:38:a5:ca:98:26:8b:2d:9e:07:20:9a:3c:d5:73:48:d8:
         d3:71:2d:c9:e4:06:79:60:8c:0f:bc:b6:db:5c:79:80:46:db:
         21:22:ec:18:a4:04:c0:90:7b:77:ab:86:5b:7d:65:22:8c:66:
         5f:3e:5a:7a:64:af:00:bb:00:7e:85:93:da:ec:c2:bd:fc:ad:
         16:0c:d3:dc:0d:1a:40:94:f0:51:36:e9:9b:98:6c:d8:66:5e:
         a4:7f:43:f7:30:46:28:16:be:6a:c7:4c:96:6c:9e:db:70:04:
         29:84:1f:cf:b8:1e:f6:ed:44:2d:a3:b5:53:f2:b7:8a:95:ae:
         9d:c5:a2:07:91:f3:01:e9:5d:ea:33:4f:bf:5a:7a:9a:5e:6a:
         51:b6:d8:bb:30:9c:00:a6:c4:a5:b7:11:b8:10:4d:d1:79:f4:
         00:ce:d1:a3:b2:27:45:cc:f6:d1:0f:59:21:0e:84:c8:90:fd:
         55:9d:6a:a9:fb:35:ac:85:bc:d0:b9:a8:c9:19:36:e1:32:8c:
         66:b9:a2:4d:91:e1:15:64:60:ce:d0:41:3f:fb:22:ca:f9:20:
         c8:75:b3:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----