Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
File:                     C86QcAXcPrBHC8PbRpCNoQkXuEo.mft (raw, json)
Hash identifier:          eFJqS1mVseIMx/L5YVGxSTRKDHcbL7qyncNwDfI6Bu8=
Subject key identifier:   6B:AB:60:A7:5F:3E:5F:1A:BC:28:43:1B:77:17:71:2D:86:70:BC:9F
Authority key identifier: 0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A
Certificate issuer:       /CN=0bce907005dc3eb0470bc3db46908da10917b84a
Certificate serial:       019E1E35C8BCD67CE69F622A12AB50890CC1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
Manifest number:          12B5
Signing time:             Tue 12 May 2026 22:01:41 +0000
Manifest this update:     Tue 12 May 2026 22:01:41 +0000
Manifest next update:     Wed 13 May 2026 22:01:41 +0000
Files and hashes:         1: C86QcAXcPrBHC8PbRpCNoQkXuEo.crl (hash: u+V3pwzaHMI6acI/OlrpqgBHQ3LIhBA6zqIdSgDoGik=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:35:c8:bc:d6:7c:e6:9f:62:2a:12:ab:50:89:0c:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0bce907005dc3eb0470bc3db46908da10917b84a
        Validity
            Not Before: May 12 22:01:41 2026 GMT
            Not After : May 13 22:01:41 2026 GMT
        Subject: CN=6bab60a75f3e5f1abc28431b7717712d8670bc9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:cc:5c:09:46:63:42:c4:a2:77:0a:ee:c6:0e:
                    cb:c8:4e:7c:32:7b:be:1d:68:a9:92:47:f6:2e:9b:
                    43:40:e6:c5:59:87:ad:97:4a:5e:cf:22:8e:a4:e1:
                    cf:b8:ac:9d:e1:75:a6:33:e5:59:ba:3a:09:0c:44:
                    1e:1f:51:31:db:4f:1d:9f:59:f7:c9:f1:95:b1:d0:
                    27:bd:d2:16:b2:1d:52:84:3c:37:52:5d:13:82:f1:
                    cc:ad:72:ca:3d:c8:75:7a:78:48:0a:b0:1b:eb:da:
                    95:31:49:59:e3:7b:14:40:61:b9:98:3b:9c:5b:02:
                    f8:c0:4e:75:92:fe:fe:c6:1e:94:5e:fa:7d:5d:1b:
                    56:0c:39:e7:72:3e:75:02:cd:ef:5c:96:75:ed:c6:
                    37:9d:1d:37:48:f0:5c:3c:f5:fc:5f:a6:a6:4e:17:
                    74:ea:08:01:c6:43:82:98:e9:84:35:c1:36:5a:d5:
                    15:1c:38:fa:1d:e8:c6:59:fe:8c:c0:d2:45:90:03:
                    e4:5e:90:ca:85:34:9d:27:a9:be:2b:e7:b6:f0:43:
                    4c:95:90:11:ec:2d:aa:80:d9:95:9a:be:ed:3b:54:
                    0e:c2:5c:16:31:f4:8c:e5:7c:66:fd:0c:21:ae:17:
                    f4:9a:31:27:83:41:01:ba:f8:7c:49:61:a6:a8:b9:
                    3a:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:AB:60:A7:5F:3E:5F:1A:BC:28:43:1B:77:17:71:2D:86:70:BC:9F
            X509v3 Authority Key Identifier:
                keyid:0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:d1:60:d9:17:0e:47:9f:bd:99:b6:c0:2e:32:ff:95:c2:99:
         ef:88:75:48:89:a4:93:c9:67:4b:0b:e7:89:4d:8c:ec:4d:7b:
         4e:75:d0:b3:69:af:c6:dc:9c:f8:eb:e7:ff:fe:2a:1e:7d:f9:
         fa:de:76:01:9d:c1:25:d5:72:4b:c3:b8:5c:5a:2a:5b:9b:ed:
         54:c5:bb:0d:c2:d8:78:da:25:d5:9f:10:d0:dc:fc:51:4f:a6:
         2e:88:ea:74:2b:49:b6:d6:32:8c:b4:5f:21:a7:34:e9:9a:cf:
         47:16:b3:20:f3:cc:5d:31:f1:5d:75:8e:a0:e9:cb:25:18:ad:
         df:ae:90:e5:fc:6c:b9:ba:11:98:2b:02:94:99:ab:66:0d:21:
         4b:40:4c:0e:a8:d0:cd:85:79:9b:27:95:ae:65:43:72:31:1a:
         8d:f9:8f:96:ab:57:3d:f6:06:66:52:6c:46:07:df:6d:c3:4a:
         e6:05:4c:ba:81:8f:d5:ab:e0:36:b6:7e:f5:b7:b0:51:c4:3f:
         9a:a8:4e:86:72:ca:7a:96:ac:78:36:25:4b:7e:1f:54:4f:d9:
         c3:07:a7:cf:8f:42:f5:28:59:f2:2e:e0:9e:c2:0d:dd:5f:22:
         d7:ba:c8:6a:34:6b:09:01:95:09:f4:c9:22:a8:6e:52:59:15:
         49:8a:fa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----