Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
File:                     aiElvfZalVLVuOF6s2FaoQuAWXY.mft (raw, json)
Hash identifier:          HVQ6IQh4Ilf8R/x7YAW3teRm11gLrxZEfQjJpqTIRLg=
Subject key identifier:   7E:81:B3:CB:FE:A4:C5:5B:F9:A3:C0:00:7C:B7:7F:A8:B4:4E:2D:B8
Authority key identifier: 6A:21:25:BD:F6:5A:95:52:D5:B8:E1:7A:B3:61:5A:A1:0B:80:59:76
Certificate issuer:       /CN=6a2125bdf65a9552d5b8e17ab3615aa10b805976
Certificate serial:       019D281679AB2CDA9703068CFCE0C6F5715A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
Manifest number:          0488
Signing time:             Thu 26 Mar 2026 03:00:54 +0000
Manifest this update:     Thu 26 Mar 2026 03:00:54 +0000
Manifest next update:     Fri 27 Mar 2026 03:00:54 +0000
Files and hashes:         1: aiElvfZalVLVuOF6s2FaoQuAWXY.crl (hash: 3B5tX8wsImSBXvjDupo8P316I4qa3LM03CBTjd47ukI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:16:79:ab:2c:da:97:03:06:8c:fc:e0:c6:f5:71:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a2125bdf65a9552d5b8e17ab3615aa10b805976
        Validity
            Not Before: Mar 26 03:00:54 2026 GMT
            Not After : Mar 27 03:00:54 2026 GMT
        Subject: CN=7e81b3cbfea4c55bf9a3c0007cb77fa8b44e2db8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:b8:cc:1a:6a:36:1f:d9:92:af:69:ab:51:0c:
                    18:71:7f:58:37:b1:3b:45:42:12:12:b4:46:f1:e9:
                    54:43:a5:16:72:90:94:13:ef:f1:35:a8:ae:0a:ae:
                    d7:92:03:3f:63:02:aa:48:20:97:38:40:43:76:bd:
                    6b:41:13:04:3e:ab:db:82:69:5e:e2:7f:20:1e:4f:
                    aa:09:a1:7b:0d:94:39:e6:99:a4:3d:52:7b:c2:df:
                    24:cd:0c:91:e3:22:79:a2:30:0c:04:e2:9b:d4:fd:
                    34:fd:6c:92:22:1e:2a:f2:7f:8c:af:90:fa:7b:d9:
                    40:c7:fe:f4:8d:fe:14:92:34:7f:e1:6f:36:8f:39:
                    e5:df:ca:d3:f6:79:02:41:d4:90:96:9b:1b:78:f6:
                    57:e7:97:69:f8:a6:08:b6:36:3d:f3:d8:5b:da:84:
                    04:5b:0e:af:a7:fd:9b:a0:42:8d:aa:bc:df:bd:57:
                    e8:81:dc:44:2f:85:d5:4f:ba:48:7e:40:78:d6:84:
                    8e:80:64:1b:f0:3b:a3:43:1a:da:a4:d5:18:68:05:
                    03:df:33:33:ad:b7:1d:d1:a1:66:89:4c:1a:12:37:
                    9b:6f:30:2c:57:e4:5b:af:e5:b3:03:3d:1d:23:be:
                    cc:46:4e:4c:1c:b2:5e:df:de:9b:3f:06:a7:d3:d2:
                    d6:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:81:B3:CB:FE:A4:C5:5B:F9:A3:C0:00:7C:B7:7F:A8:B4:4E:2D:B8
            X509v3 Authority Key Identifier:
                keyid:6A:21:25:BD:F6:5A:95:52:D5:B8:E1:7A:B3:61:5A:A1:0B:80:59:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:e3:95:be:a6:ca:73:90:bc:d0:6e:c0:04:cc:1e:c0:d3:02:
         7b:09:fe:6b:c7:24:16:08:7b:ce:8f:3c:ac:ae:2d:76:9f:6d:
         7d:db:17:45:20:7f:09:d3:cb:99:43:a1:01:eb:62:b9:b3:e2:
         03:0d:6d:e0:84:8a:d6:fe:64:aa:19:bc:83:c1:6f:92:90:c2:
         3b:94:ba:24:4a:25:6c:9f:67:78:fb:14:12:4d:a1:cf:e3:a7:
         1f:66:76:53:8b:bd:9a:73:cb:d3:94:37:3b:52:03:75:f9:4e:
         d4:3d:8f:98:a6:a8:88:18:3f:2f:43:92:e8:87:81:66:cc:5c:
         48:05:78:65:27:e9:c3:a6:2a:75:9e:40:b2:e7:af:d6:a0:c7:
         00:24:10:32:8c:42:85:4a:5a:22:0f:1e:fe:0a:81:47:cf:47:
         09:e1:5a:06:bb:44:27:8e:65:33:b3:2a:dc:2c:08:ec:d5:c5:
         ca:1a:21:b1:61:46:cf:0e:93:af:9a:a0:fb:89:79:46:54:7a:
         d4:db:86:b4:b0:41:ea:d8:3d:c2:40:49:99:fc:45:7f:84:9e:
         f2:85:1b:7b:00:8e:7e:47:04:81:41:5b:13:3f:73:e3:5a:9c:
         49:57:a2:9d:1e:8a:4d:4d:94:57:43:9c:f6:98:dd:72:b7:b9:
         e0:7e:fa:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----