Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
File:                     mtVmfEEoFBE5zKfFBH_BclC_Y68.mft (raw, json)
Hash identifier:          o6+Upvc/4rgd5LWH083gBJGb/C09egyALJ2whjtDv5c=
Subject key identifier:   91:84:77:89:75:23:79:EE:37:C1:73:43:90:E7:DE:01:51:F1:56:6C
Authority key identifier: 9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF
Certificate issuer:       /CN=9ad5667c4128141139cca7c5047fc17250bf63af
Certificate serial:       019D9962F4D9108AFABC35893777FDB6727E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
Manifest number:          18BE
Signing time:             Fri 17 Apr 2026 03:01:32 +0000
Manifest this update:     Fri 17 Apr 2026 03:01:32 +0000
Manifest next update:     Sat 18 Apr 2026 03:01:32 +0000
Files and hashes:         1: mtVmfEEoFBE5zKfFBH_BclC_Y68.crl (hash: FjhTZOFXWzeCPJOMjRqVqHDjAc+GTT3Yh0b3gJYla8c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 03:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:62:f4:d9:10:8a:fa:bc:35:89:37:77:fd:b6:72:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9ad5667c4128141139cca7c5047fc17250bf63af
        Validity
            Not Before: Apr 17 03:01:32 2026 GMT
            Not After : Apr 18 03:01:32 2026 GMT
        Subject: CN=91847789752379ee37c1734390e7de0151f1566c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:35:01:5d:9b:8d:ae:78:ab:73:3d:ce:58:bf:
                    27:ee:67:70:7b:06:82:b0:d9:bf:71:80:ef:87:28:
                    5c:3d:40:4e:07:4f:fa:9c:84:fa:27:e3:78:0b:20:
                    9d:86:71:82:bf:a8:be:34:18:8b:35:99:76:00:d3:
                    13:d9:87:ac:7a:d0:98:65:31:c5:36:75:e0:0a:26:
                    72:e2:71:d5:18:47:f6:7c:ad:f3:36:00:c0:dd:b2:
                    aa:4b:d0:8d:8b:5a:60:41:39:1c:26:9c:ec:67:7c:
                    3e:36:29:d2:f2:40:5e:60:d2:7c:e6:c8:a6:d8:60:
                    d1:8b:3b:d7:8c:96:03:01:5d:41:2c:cf:5a:b0:ac:
                    cf:3b:86:58:40:a8:61:65:2e:83:45:27:95:32:33:
                    e5:7e:c4:23:da:7a:1a:5b:80:d0:6f:6f:1f:21:51:
                    c1:a9:d4:d8:0b:c5:f8:cb:cb:ce:d4:03:9e:1d:e7:
                    a3:09:8a:07:fb:64:2d:43:83:74:28:ea:e8:09:3e:
                    c9:bc:fe:0b:70:83:2a:f2:c4:ec:05:b6:bc:81:f7:
                    75:48:3c:52:99:d1:70:67:84:22:36:f9:bf:56:cc:
                    2c:d6:f3:7a:5a:e3:1f:81:07:38:47:a0:ca:eb:a1:
                    4f:74:a3:79:ff:c7:0b:93:c3:f0:45:5b:f7:fd:7b:
                    89:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:84:77:89:75:23:79:EE:37:C1:73:43:90:E7:DE:01:51:F1:56:6C
            X509v3 Authority Key Identifier:
                keyid:9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c7:b2:97:5a:13:ab:25:90:14:a9:78:6b:a4:fb:b5:fa:b2:0b:
         4c:c1:e2:be:18:cf:2a:e3:03:6f:2c:85:e2:60:08:b6:a5:bc:
         16:fa:23:41:55:1a:ae:64:07:16:f4:84:ca:97:92:0c:ae:e6:
         bd:0a:1d:bb:23:9b:ee:79:42:63:ed:25:f1:44:3d:1c:0f:ab:
         0a:c3:82:1b:d5:4f:4a:92:0b:78:5c:8f:89:84:48:ed:34:8a:
         a8:c9:5c:4c:57:d1:2c:62:4e:28:cd:98:3e:4e:85:1d:0a:4d:
         b2:e5:39:29:38:a7:84:dd:1c:fe:de:d3:7d:29:f8:0b:6d:0b:
         a9:7a:68:ca:ff:a8:cc:ca:56:ff:f4:7e:d9:f2:22:08:b6:88:
         bd:fa:1c:2d:ae:fa:f3:e1:e3:5a:56:55:a2:18:26:b9:56:bb:
         94:3d:e4:f0:26:d4:6a:48:83:e4:13:93:1b:69:ee:20:08:e4:
         4a:12:20:5d:f9:7b:fe:4d:9b:65:0d:bf:9c:e2:8e:23:7f:78:
         50:ba:a7:63:b3:61:7f:05:fb:bc:94:d4:f5:18:b0:48:77:29:
         18:b9:db:76:21:05:d3:38:c4:47:32:19:19:62:be:16:a4:64:
         a4:e3:45:cf:19:00:f3:13:7e:a8:d3:8a:93:c2:e3:3f:9b:f4:
         99:38:0c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----