Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
File:                     HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft (raw, json)
Hash identifier:          1uyszxcC+z2lrIUTYS8u2ixZL3iAMMjuTeQ9hD37dnY=
Subject key identifier:   BE:BE:15:CE:FB:1E:13:84:90:4D:C6:03:1B:E6:7C:D5:D4:2F:75:59
Authority key identifier: 1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70
Certificate issuer:       /CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270
Certificate serial:       019D284D6EF452695F42DD38F0A2EB0EDFBF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
Manifest number:          1885
Signing time:             Thu 26 Mar 2026 04:00:56 +0000
Manifest this update:     Thu 26 Mar 2026 04:00:56 +0000
Manifest next update:     Fri 27 Mar 2026 04:00:56 +0000
Files and hashes:         1: HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl (hash: OvfKINnMHmqqVPpto4g0kPYSMcOKuehAJIV+rV0rPlY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:4d:6e:f4:52:69:5f:42:dd:38:f0:a2:eb:0e:df:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270
        Validity
            Not Before: Mar 26 04:00:56 2026 GMT
            Not After : Mar 27 04:00:56 2026 GMT
        Subject: CN=bebe15cefb1e1384904dc6031be67cd5d42f7559
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:56:b5:9d:eb:f9:66:67:bc:97:d5:29:34:c0:
                    d0:f0:e8:7b:6f:31:83:ac:17:46:13:1b:f4:97:2a:
                    e8:8f:2a:2d:d6:eb:de:95:f2:e7:83:f1:79:6e:14:
                    0d:97:0d:81:ae:fe:1f:d4:16:ee:38:a4:25:80:32:
                    19:ba:b7:98:21:53:13:0d:70:61:69:46:48:bc:aa:
                    0d:ba:91:5b:3f:83:d7:ef:d2:55:e8:e2:9c:07:06:
                    6f:c9:d8:32:74:fc:33:56:da:a7:5f:dc:d7:ce:d2:
                    25:88:e9:5d:ec:e6:04:87:12:fc:9a:fc:15:c2:95:
                    9e:6d:ae:e1:7a:58:fb:d4:11:70:e2:14:83:92:88:
                    1d:48:c6:0b:4a:8b:15:0d:80:bf:0a:4e:be:c1:ef:
                    67:d2:0a:c7:84:12:82:1c:ee:f3:d6:69:a9:ef:e6:
                    8d:1b:cb:69:77:4d:72:a3:3d:2d:03:ec:dc:83:a2:
                    74:7d:99:3c:fe:d5:b9:59:81:8a:11:c2:40:71:da:
                    ac:2c:c5:02:be:1c:47:d3:22:8f:c1:e7:7f:b8:34:
                    8d:6c:21:d2:8c:7a:4f:e3:c2:fd:8e:32:70:5a:36:
                    0e:40:27:00:ed:43:7c:9f:fa:cd:bc:df:1f:3a:54:
                    2f:e1:76:68:f1:ad:ed:25:b8:ca:76:e2:15:70:f8:
                    fb:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:BE:15:CE:FB:1E:13:84:90:4D:C6:03:1B:E6:7C:D5:D4:2F:75:59
            X509v3 Authority Key Identifier:
                keyid:1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:e3:59:9d:db:41:bc:0a:b4:fb:53:a6:67:e3:9e:41:4f:e6:
         5c:2e:6b:68:54:65:ab:20:95:b5:e0:8c:82:61:a8:2e:c2:ec:
         6a:69:8e:9c:ae:d7:01:c0:86:fc:93:cb:8c:61:79:f7:ed:96:
         a2:e2:b7:75:03:8c:55:78:9e:21:cb:93:c5:ae:36:d9:5a:97:
         81:c1:4a:bd:3a:b5:75:ca:2b:de:dc:6c:8d:c4:87:ee:65:b1:
         36:c1:d2:db:16:03:48:64:5b:f9:83:df:8e:d9:06:54:7c:13:
         43:99:09:bc:98:c2:0a:dc:05:36:ab:09:83:6e:19:f9:93:d9:
         6e:a0:a1:49:40:c1:0f:d4:03:9c:50:90:6b:e7:52:1f:b2:fc:
         53:d7:e9:a1:0c:79:78:72:c1:ed:7f:0f:fe:ca:2e:c8:62:b1:
         e5:fb:fa:f4:90:ee:82:1f:a4:7f:d9:4a:84:4d:37:12:0d:a7:
         02:b0:cd:e1:76:47:49:77:cc:4d:2a:37:30:41:d3:a0:fa:23:
         63:ce:4b:3f:f4:b2:11:aa:b7:72:62:c7:03:43:74:aa:ac:e7:
         9e:5e:ed:9c:70:7e:f0:f2:73:1b:48:f0:f0:56:df:6f:87:f2:
         f9:af:b1:a7:f6:fb:33:78:32:b8:d3:e1:cc:05:bd:e6:07:3c:
         e4:b1:76:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----