Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
File:                     Os5p2XnZoNxneVEGweVayhVHCH8.mft (raw, json)
Hash identifier:          uP2UHRl5W6Tg+vtz5tJt9y37N0GNK5zqfBiA6jPdVc8=
Subject key identifier:   39:79:9B:13:01:49:18:BC:D4:2C:18:0B:E1:CB:75:D4:A5:BA:F0:36
Authority key identifier: 3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
Certificate issuer:       /CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Certificate serial:       019CAA21F6BA48CEC442FF2D69F75C841F56
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
Manifest number:          183F
Signing time:             Sun 01 Mar 2026 16:01:18 +0000
Manifest this update:     Sun 01 Mar 2026 16:01:18 +0000
Manifest next update:     Mon 02 Mar 2026 16:01:18 +0000
Files and hashes:         1: Os5p2XnZoNxneVEGweVayhVHCH8.crl (hash: KkH9WBAmbLjAIJecb9Ced/XXwk2vNwhc5uEAUHd4qXI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:21:f6:ba:48:ce:c4:42:ff:2d:69:f7:5c:84:1f:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3ace69d979d9a0dc67795106c1e55aca1547087f
        Validity
            Not Before: Mar  1 16:01:18 2026 GMT
            Not After : Mar  2 16:01:18 2026 GMT
        Subject: CN=39799b13014918bcd42c180be1cb75d4a5baf036
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:ae:65:25:20:a8:df:12:6c:a5:10:c5:a5:5d:
                    f3:bb:2e:48:e6:51:88:85:4a:b1:8d:59:bb:16:2e:
                    cd:52:fc:38:97:75:b6:67:ea:50:5f:3d:e3:b3:d9:
                    50:89:df:86:b6:e3:1e:c6:df:08:1e:44:bd:c4:71:
                    15:de:32:3f:95:46:33:36:40:73:06:bd:3e:b2:ee:
                    36:fa:b9:1e:61:71:b0:3a:c9:db:73:e9:4e:0d:4f:
                    31:62:dd:0b:a7:73:de:d1:6f:04:2a:4e:f9:57:a7:
                    72:3d:ab:9a:1f:ee:23:e6:56:eb:f8:58:42:a7:1e:
                    20:b7:5c:44:47:11:17:78:b3:6a:f9:ca:67:f6:f4:
                    d0:25:ec:f9:40:2b:fc:1b:a8:2f:b2:2f:42:22:a7:
                    d3:74:7d:86:30:bb:9f:66:39:24:86:7e:c2:36:8b:
                    d2:ff:85:a6:df:df:26:30:c7:95:ad:6d:f9:ee:33:
                    04:05:eb:8f:3c:b2:04:00:9f:bc:51:0a:80:1f:ea:
                    d9:9e:4d:2a:65:f5:ef:08:1d:fb:1a:9a:87:4e:fc:
                    c0:61:08:7a:fa:98:08:8f:ff:b5:30:62:f3:09:f1:
                    8b:66:4a:21:bc:76:31:c0:7d:8f:68:db:6d:57:63:
                    f2:a2:e0:54:52:e0:ac:6d:9e:26:f2:8f:fa:cc:dc:
                    98:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:79:9B:13:01:49:18:BC:D4:2C:18:0B:E1:CB:75:D4:A5:BA:F0:36
            X509v3 Authority Key Identifier:
                keyid:3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:47:9d:e8:ec:ca:82:2c:99:ae:f3:9c:a7:82:e3:8d:86:67:
         91:21:da:f9:0b:55:f8:f7:ef:ce:9a:6c:e9:a8:1f:62:3e:3e:
         66:27:ee:f5:78:2a:8f:b5:8a:13:33:70:d1:30:1a:df:02:2c:
         98:03:6f:1d:d7:25:6d:63:73:a1:7e:92:3f:cf:89:bb:af:01:
         f4:71:9e:4a:2d:65:d8:a7:9a:04:64:40:cf:ed:e2:45:c4:1f:
         1d:4b:64:e0:85:11:d5:c4:d0:bd:a1:6f:fa:09:47:a3:f9:f5:
         7f:e2:92:16:4b:89:c4:80:f5:54:2c:f8:1f:44:10:08:8a:7b:
         01:f0:6b:f0:6f:09:1d:c8:e0:31:f5:4b:7f:a3:8a:28:87:f1:
         11:28:e3:f9:a9:e0:fc:46:b8:87:99:39:2a:2d:91:c8:31:87:
         57:f5:2d:ed:c1:0f:a6:17:8d:06:a1:97:1c:f3:94:04:73:35:
         dc:6b:6c:b6:6f:9a:f5:5b:c7:ba:e4:eb:a5:b2:a4:aa:5e:ac:
         12:f6:7c:df:87:44:50:d8:ce:43:b3:a4:16:16:e0:19:9a:2d:
         c4:12:e2:22:85:47:83:ae:35:d4:6d:aa:08:a2:c4:48:6d:25:
         05:98:c1:15:8d:aa:d2:b6:15:c7:80:d7:35:19:c2:1d:d8:89:
         0a:f9:db:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----