Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft
File:                     DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft (raw, json)
Hash identifier:          bjXkOv6xV88Q3fRgRlOsemiYtzlVx7g4JaTIndnFR0Y=
Subject key identifier:   CD:A1:C3:91:0D:79:2E:25:CB:B4:32:48:19:54:4A:F7:19:58:91:EF
Authority key identifier: 0E:56:C9:E5:8D:96:AF:1E:41:30:D7:22:42:21:19:2B:2C:13:2A:5C
Certificate issuer:       /CN=0e56c9e58d96af1e4130d7224221192b2c132a5c
Certificate serial:       019D28BB32233B11780E3638D530C8415BEA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft
Manifest number:          1818
Signing time:             Thu 26 Mar 2026 06:00:49 +0000
Manifest this update:     Thu 26 Mar 2026 06:00:49 +0000
Manifest next update:     Fri 27 Mar 2026 06:00:49 +0000
Files and hashes:         1: DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl (hash: J9Jz/i7AtJUvPOB3ASBY8Jm4MYQa3+tm9cG5/l4NSp8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 06:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:bb:32:23:3b:11:78:0e:36:38:d5:30:c8:41:5b:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e56c9e58d96af1e4130d7224221192b2c132a5c
        Validity
            Not Before: Mar 26 06:00:49 2026 GMT
            Not After : Mar 27 06:00:49 2026 GMT
        Subject: CN=cda1c3910d792e25cbb4324819544af7195891ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:f9:b0:bd:ff:73:a5:b1:7e:2a:d6:d8:29:81:
                    fd:67:0c:c5:c7:bb:c3:d9:a6:4e:58:3e:b6:7d:83:
                    0e:61:38:a5:d5:78:45:78:94:94:9d:05:74:22:59:
                    ba:36:69:bc:2b:9e:c4:45:08:70:f5:c6:59:1e:82:
                    6c:7f:2b:7c:87:3e:2d:76:78:a8:e8:20:89:e1:37:
                    b5:06:67:6a:a2:44:75:9b:ed:70:5d:6b:3c:c3:49:
                    0a:78:71:df:a3:24:28:74:60:57:aa:1a:1d:94:f3:
                    3a:3e:ce:dd:99:b7:71:ea:91:31:e6:13:e0:05:da:
                    17:c2:45:85:f9:75:c6:03:5e:e5:29:4d:ec:ef:2e:
                    be:d1:6c:f8:9f:d5:fd:92:7c:b8:6f:70:f6:75:77:
                    07:eb:08:32:09:fe:d0:0a:43:7d:ee:6a:12:48:74:
                    13:75:3e:07:b1:07:ae:f8:bd:f0:fa:71:0b:df:54:
                    db:c5:af:5b:36:64:08:f2:99:e4:f2:fe:6a:af:94:
                    65:7a:a7:03:1e:f9:c0:d6:a6:5e:8c:83:8d:77:eb:
                    9c:dc:0e:68:a4:d3:e7:ae:3d:3f:b6:a6:88:7e:ba:
                    54:76:fb:f4:9d:8e:32:42:e2:96:22:30:05:2f:7c:
                    31:e3:68:d1:78:11:a1:98:b2:d6:62:6d:31:f3:6d:
                    11:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:A1:C3:91:0D:79:2E:25:CB:B4:32:48:19:54:4A:F7:19:58:91:EF
            X509v3 Authority Key Identifier:
                keyid:0E:56:C9:E5:8D:96:AF:1E:41:30:D7:22:42:21:19:2B:2C:13:2A:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:7e:39:c8:65:96:7e:82:01:97:1f:1e:94:69:63:40:fa:38:
         82:b3:45:ab:01:be:f4:70:76:28:5e:eb:ad:49:a4:bd:a3:96:
         cd:37:8e:bc:6f:03:01:8a:2f:9b:ec:08:48:5f:70:fb:4a:ba:
         c8:54:f2:af:81:16:16:26:40:f4:5e:60:58:9b:b5:b3:b7:41:
         3e:4f:57:27:07:09:4f:a0:63:56:9e:fa:a6:ab:c4:78:93:15:
         59:92:1f:eb:b0:21:e2:52:9e:c8:fd:a4:55:7d:e0:71:51:0a:
         40:2c:7b:f8:4b:be:dd:55:24:35:50:7b:3d:47:ae:87:9d:9e:
         1a:76:66:42:1d:8e:56:d6:da:0f:27:e5:dd:71:e7:5a:94:23:
         93:94:b9:ae:a6:74:ce:07:a1:63:ae:57:78:be:46:8f:1a:d1:
         b9:eb:f1:1b:81:d6:64:3a:5c:b1:6f:9b:92:18:a4:dc:8a:4f:
         9f:ff:cd:0d:c3:f5:d7:ad:1e:8e:e4:16:d6:a2:45:3e:01:c4:
         48:8c:28:2e:fd:51:2c:72:f2:9f:0c:4c:d0:f0:75:9b:7f:47:
         a2:cc:ba:36:f9:61:26:ab:8a:66:57:1f:ca:03:56:b9:b6:ea:
         b2:9c:b1:5d:83:c7:65:69:b3:41:00:65:8e:6f:d8:4b:3a:54:
         61:69:ac:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----