Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
File:                     k8QjPQuo54YYoJpyVh3M0GSYyE4.mft (raw, json)
Hash identifier:          iaC9r3Wc3PBncdA4ZLhse2k5GOsdk22FYoSdJc42bzc=
Subject key identifier:   12:4D:65:E3:9D:4F:49:3C:38:70:9D:AC:DC:72:1D:AD:C2:4F:64:01
Authority key identifier: 93:C4:23:3D:0B:A8:E7:86:18:A0:9A:72:56:1D:CC:D0:64:98:C8:4E
Certificate issuer:       /CN=93c4233d0ba8e78618a09a72561dccd06498c84e
Certificate serial:       019D28F29053C268117956D445442E546D50
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
Manifest number:          1884
Signing time:             Thu 26 Mar 2026 07:01:18 +0000
Manifest this update:     Thu 26 Mar 2026 07:01:18 +0000
Manifest next update:     Fri 27 Mar 2026 07:01:18 +0000
Files and hashes:         1: k8QjPQuo54YYoJpyVh3M0GSYyE4.crl (hash: 6PnctRbxN2kDvjP1kw+H7gtcS06OxsaOV+jYB0QE0dc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 07:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:f2:90:53:c2:68:11:79:56:d4:45:44:2e:54:6d:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93c4233d0ba8e78618a09a72561dccd06498c84e
        Validity
            Not Before: Mar 26 07:01:18 2026 GMT
            Not After : Mar 27 07:01:18 2026 GMT
        Subject: CN=124d65e39d4f493c38709dacdc721dadc24f6401
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:c6:04:2f:b3:85:1a:e6:cc:89:d4:96:9d:6d:
                    64:1b:4d:e6:56:75:ee:cf:14:57:1f:79:23:2a:c4:
                    7d:20:97:b6:89:d1:ca:7e:cb:0f:d6:02:88:bc:ea:
                    54:eb:f1:a1:9a:d3:e0:c5:c6:4a:6f:37:8d:14:6c:
                    40:97:d5:c3:64:68:75:eb:4d:51:e8:3a:7e:90:78:
                    dd:00:2c:86:d2:56:75:74:91:99:1b:d1:ea:ba:a4:
                    2f:cd:19:d6:f7:2f:2a:40:02:84:ae:a3:c2:b2:10:
                    f6:c7:74:f6:1f:d6:e1:29:b3:40:bb:56:32:3a:99:
                    c3:1f:99:71:56:3b:7a:bc:61:11:df:74:c7:d6:77:
                    86:4d:84:49:f1:36:1e:2b:58:32:78:92:00:43:59:
                    de:ed:91:1f:66:d0:c7:f1:1a:b8:6d:8a:26:ef:8c:
                    5c:79:90:8b:73:f2:c7:2e:df:c4:e9:cc:a3:e8:a2:
                    a5:17:97:68:49:1d:c3:0e:73:37:c2:03:3c:be:b7:
                    79:62:41:a2:e3:84:2e:63:10:5d:2a:46:e5:6b:25:
                    9c:98:92:6b:84:54:6e:61:a8:4f:2f:b1:97:ae:3d:
                    72:84:9f:8c:a7:23:32:34:21:c5:78:5d:45:3b:51:
                    88:7a:8b:7d:ea:96:14:e6:15:61:a8:82:4c:62:eb:
                    e1:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:4D:65:E3:9D:4F:49:3C:38:70:9D:AC:DC:72:1D:AD:C2:4F:64:01
            X509v3 Authority Key Identifier:
                keyid:93:C4:23:3D:0B:A8:E7:86:18:A0:9A:72:56:1D:CC:D0:64:98:C8:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:1b:b3:af:a8:ab:81:05:a6:f7:23:2d:59:d6:95:1f:1f:15:
         01:38:39:6c:07:da:77:5f:c1:fa:bd:49:bb:87:24:2e:ac:0e:
         11:c1:1e:f5:7e:5d:19:63:11:5d:0d:51:17:24:55:1c:72:12:
         89:35:a7:92:19:cf:23:cd:40:45:4a:14:37:8c:fa:e6:04:a7:
         c1:16:69:42:de:d3:39:e8:f5:e1:9d:a9:a1:eb:1f:76:61:69:
         c8:b4:1e:87:f6:17:9b:52:ce:4b:d9:f9:cb:06:05:3c:98:b3:
         5c:ad:ff:10:e1:30:f3:bb:3f:0c:1b:be:ed:14:aa:f9:3a:7e:
         aa:49:83:84:6c:6d:df:25:53:17:8c:73:62:78:fb:cc:e0:50:
         4e:2a:21:82:29:30:06:ed:b5:a8:1c:6d:c5:2a:1a:6b:9a:81:
         58:9d:f6:c6:af:57:62:0e:34:93:be:9f:82:d5:32:6e:c9:55:
         f0:c9:a2:b0:27:1e:8b:fe:bb:ff:2d:54:b6:4a:80:9b:db:19:
         b6:66:db:b5:a1:32:49:9b:96:85:07:d5:cb:95:4f:2a:d1:c1:
         3e:55:84:20:63:ef:13:8f:84:68:7b:69:7e:74:47:40:11:ad:
         b6:d9:af:31:c2:e2:bf:4f:ca:6d:49:5e:8d:56:14:86:88:5b:
         22:23:1d:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----