Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
File:                     9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft (raw, json)
Hash identifier:          /dTzr1+rZFN3w19+hAXcv+Zi+Ot7EEI4+D1usc5vKTc=
Subject key identifier:   F2:78:D7:83:BC:B1:DD:1A:7A:61:F6:A5:8D:77:BF:0E:AC:5B:88:5E
Authority key identifier: F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE
Certificate issuer:       /CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
Certificate serial:       019D2772B6B241811973C9FF3556C177A148
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
Manifest number:          1812
Signing time:             Thu 26 Mar 2026 00:02:02 +0000
Manifest this update:     Thu 26 Mar 2026 00:02:02 +0000
Manifest next update:     Fri 27 Mar 2026 00:02:02 +0000
Files and hashes:         1: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl (hash: UwuDk9TUFScC1kuU2pV3CPFRcQJqt9Pkx4LOgGZqO1g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:72:b6:b2:41:81:19:73:c9:ff:35:56:c1:77:a1:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
        Validity
            Not Before: Mar 26 00:02:02 2026 GMT
            Not After : Mar 27 00:02:02 2026 GMT
        Subject: CN=f278d783bcb1dd1a7a61f6a58d77bf0eac5b885e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:cd:92:f9:e5:2d:5f:28:dd:c0:89:81:08:e4:
                    02:b9:c2:64:74:aa:92:a5:a2:d6:37:aa:88:08:c5:
                    9c:3d:52:19:78:d5:fc:fb:62:bf:15:64:12:14:5a:
                    6d:c3:4d:32:1b:26:0f:9f:3d:dd:9b:53:98:2b:c7:
                    20:2f:84:85:33:11:f9:a5:bc:48:df:b1:13:4a:0e:
                    e3:56:22:60:82:1c:ad:f9:7c:87:2f:77:a4:0c:3a:
                    b8:33:e8:bc:de:8e:69:2f:8a:65:ed:4b:42:93:c7:
                    a4:2e:65:c2:ff:fe:1f:13:a2:62:50:79:9b:c0:9f:
                    20:92:e1:27:cb:18:b6:fe:48:35:c0:0a:b3:86:16:
                    01:e5:16:35:cf:17:a4:2e:bf:2b:9a:1b:5c:88:4c:
                    95:23:d8:09:a0:53:d5:fc:ea:be:60:92:a4:40:af:
                    bd:ff:ca:21:47:aa:33:88:5b:29:7b:a1:d9:28:40:
                    b8:de:7d:94:6f:17:b7:ad:f6:3d:41:ab:2d:1e:41:
                    eb:60:ee:9f:af:e2:e8:01:91:87:37:7d:5c:5e:47:
                    f4:5e:5b:3c:11:76:96:71:c0:51:6e:d4:a2:a1:00:
                    2c:e5:9f:c6:b6:b6:96:f5:b0:dc:7e:cf:c1:c3:cc:
                    95:b1:6f:e0:37:14:e8:7d:fd:70:72:c2:c5:29:44:
                    43:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:78:D7:83:BC:B1:DD:1A:7A:61:F6:A5:8D:77:BF:0E:AC:5B:88:5E
            X509v3 Authority Key Identifier:
                keyid:F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:ac:31:80:6d:6c:77:ae:dd:32:5f:e4:32:02:4c:52:6b:ac:
         48:89:df:c6:9d:d5:f1:a8:b3:48:8f:b7:dd:1d:43:bb:fb:08:
         82:bf:42:58:4f:e1:3e:43:df:55:d4:bc:5d:ce:38:0a:83:0b:
         ac:61:2f:e1:61:ff:1a:da:55:d9:54:b9:a5:85:ca:13:09:4a:
         98:e6:24:d8:b5:8f:73:7e:4a:55:67:ac:94:b1:33:87:11:54:
         85:80:32:9e:13:50:35:7e:30:3b:ed:de:e9:1d:34:10:f2:b4:
         9a:fa:2a:77:26:5b:d6:08:2e:7a:38:91:ac:ec:c8:93:83:35:
         9a:79:e2:cb:c0:b9:31:4c:8d:ff:bd:e8:41:86:32:e8:e1:2c:
         85:19:3f:c4:d8:a4:75:80:0d:de:37:eb:24:96:08:7d:db:08:
         89:99:e3:d9:ab:a5:e2:fa:f1:fe:91:df:fd:73:c2:f1:93:d6:
         2a:e9:7a:59:3a:2e:f1:6a:1e:91:6f:93:05:b6:59:3b:cf:a2:
         66:cd:5d:85:66:30:94:3e:ed:ae:70:c5:b8:b4:5e:04:b4:a6:
         b1:59:8a:61:22:f2:a3:43:05:b2:be:04:da:ca:ad:f9:c5:29:
         fe:bf:43:b4:a9:d0:c7:29:6d:5d:26:6a:64:c4:87:00:1d:4f:
         6c:30:6e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----