Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft
File:                     Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft (raw, json)
Hash identifier:          kvts5g9svSd2S5+4t9BUBZ8AV5vNR2zFJ5SQ/kBWCUY=
Subject key identifier:   21:B6:3A:80:E6:61:78:33:5F:B7:C7:2B:69:59:48:01:16:C0:65:46
Authority key identifier: 31:FD:40:17:41:E6:69:E9:20:B0:3C:6C:76:AA:3A:78:71:40:3F:54
Certificate issuer:       /CN=31fd401741e669e920b03c6c76aa3a7871403f54
Certificate serial:       019D98F439D88B7092062623193C5BAF4FFF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft
Manifest number:          0728
Signing time:             Fri 17 Apr 2026 01:00:35 +0000
Manifest this update:     Fri 17 Apr 2026 01:00:35 +0000
Manifest next update:     Sat 18 Apr 2026 01:00:35 +0000
Files and hashes:         1: Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl (hash: QgZ7GQ9KG3bxfDQKGCjEcqSHYfVinKWvtDzOj2bhRl4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 01:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:39:d8:8b:70:92:06:26:23:19:3c:5b:af:4f:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=31fd401741e669e920b03c6c76aa3a7871403f54
        Validity
            Not Before: Apr 17 01:00:35 2026 GMT
            Not After : Apr 18 01:00:35 2026 GMT
        Subject: CN=21b63a80e66178335fb7c72b6959480116c06546
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c4:e0:e1:05:17:c1:56:3d:bf:a4:33:2f:51:
                    76:57:8c:00:75:65:56:e9:03:16:8c:98:98:cb:a5:
                    f6:86:cb:72:fa:a0:e9:ff:8b:64:18:30:78:99:e5:
                    35:ae:88:9e:94:14:02:07:4a:26:29:a3:ac:95:06:
                    6b:1d:ab:61:56:d8:b1:a4:dc:b3:41:06:02:58:d0:
                    81:42:2b:6e:f9:bf:d2:bc:25:49:42:62:7c:e2:a4:
                    79:25:fc:78:72:66:cd:34:82:2a:61:9d:c1:e8:9d:
                    b7:00:27:22:33:09:c0:05:b1:72:9d:b2:fd:c6:5c:
                    67:70:c3:bf:9f:f7:11:b1:24:a3:2a:03:01:ad:20:
                    46:e1:ef:fa:dd:1d:51:f1:8e:85:13:df:0c:00:17:
                    49:13:18:8c:4c:85:a8:de:25:41:6b:96:f7:05:10:
                    e7:e0:54:0d:5b:b0:9b:1e:02:45:5c:97:05:18:ea:
                    70:cc:18:d9:bc:12:ab:4e:50:ec:77:71:90:f0:fe:
                    ec:60:52:33:64:b1:22:0c:a5:04:dd:c3:82:28:72:
                    14:76:2b:12:a5:74:fe:38:8d:90:d7:b1:16:d3:81:
                    fd:c3:6a:7a:22:c3:b1:17:d6:a9:ae:58:97:16:8f:
                    92:7e:2b:c2:55:b8:b0:26:8b:07:1c:7c:8a:96:11:
                    53:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:B6:3A:80:E6:61:78:33:5F:B7:C7:2B:69:59:48:01:16:C0:65:46
            X509v3 Authority Key Identifier:
                keyid:31:FD:40:17:41:E6:69:E9:20:B0:3C:6C:76:AA:3A:78:71:40:3F:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:83:f8:a8:1e:32:5d:b5:69:e7:d9:9c:67:90:b3:82:2d:e8:
         06:35:d7:c7:da:02:c9:86:e9:9b:ef:15:eb:77:ba:bc:dc:ab:
         52:aa:6f:8d:4d:ff:99:46:50:ab:74:84:e8:57:9d:9e:b9:d5:
         15:d0:ce:d6:90:d2:60:63:c1:20:e7:80:ce:26:a1:d3:dc:ab:
         c4:01:c8:85:47:97:8f:83:58:03:45:07:42:de:77:8a:68:bd:
         0f:a6:b4:14:9d:52:b9:10:2f:6a:d4:56:83:d7:e6:77:16:7e:
         dd:e0:f6:93:33:8f:f8:fa:e3:6c:5a:61:01:86:5f:84:52:59:
         ca:7b:92:bb:6b:71:9b:88:5a:6e:0a:50:e1:34:1c:3a:63:da:
         34:82:e1:f8:3b:7d:71:d8:2d:80:6b:65:dd:11:c9:91:d5:3e:
         08:56:bc:79:c7:eb:e9:62:f9:c0:5a:6e:6a:99:88:c3:a1:e9:
         7d:b5:c6:73:dc:67:4e:a7:bd:af:ae:66:af:75:5e:ae:cb:f1:
         1d:dc:b0:33:47:7e:0d:11:82:99:ff:6f:d5:72:ce:c4:14:de:
         24:c1:06:c9:51:eb:05:f8:e1:a2:37:2f:42:73:a8:01:c3:27:
         a8:e0:a3:38:e3:26:c5:1a:02:ae:bc:19:9d:53:9e:9d:e2:8f:
         b2:05:a6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----