Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
File:                     mtVmfEEoFBE5zKfFBH_BclC_Y68.mft (raw, json)
Hash identifier:          8EEmPRBQ27NEu1oLVrql1dkgiSULjAhi9c+PEJD+XWM=
Subject key identifier:   08:4B:D0:E5:13:B0:96:20:96:12:F5:98:C2:A9:E7:7A:96:2D:27:1D
Authority key identifier: 9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF
Certificate issuer:       /CN=9ad5667c4128141139cca7c5047fc17250bf63af
Certificate serial:       019CADC7710B4765F92605A0379EBFF24A55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
Manifest number:          1844
Signing time:             Mon 02 Mar 2026 09:00:54 +0000
Manifest this update:     Mon 02 Mar 2026 09:00:54 +0000
Manifest next update:     Tue 03 Mar 2026 09:00:54 +0000
Files and hashes:         1: mtVmfEEoFBE5zKfFBH_BclC_Y68.crl (hash: IT3SlxuwkE1ndIBIHM0FKlxmouNXAHYHapgir9cS9Kk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 09:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:c7:71:0b:47:65:f9:26:05:a0:37:9e:bf:f2:4a:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9ad5667c4128141139cca7c5047fc17250bf63af
        Validity
            Not Before: Mar  2 09:00:54 2026 GMT
            Not After : Mar  3 09:00:54 2026 GMT
        Subject: CN=084bd0e513b096209612f598c2a9e77a962d271d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:18:55:f1:0d:c8:3a:f0:7e:77:31:9d:5b:15:
                    3c:ec:4f:74:42:16:f4:69:ff:d9:d9:a8:04:98:b6:
                    6c:ea:54:6e:1f:83:12:80:3e:56:f2:5b:fe:5e:56:
                    0b:cb:56:4a:d8:f4:74:83:8d:20:cd:bb:f5:ae:83:
                    26:a1:38:ed:27:9e:3c:22:49:e8:e0:71:af:0b:82:
                    df:3f:38:5f:84:1d:c5:37:eb:af:2e:b2:9a:b1:04:
                    1e:2b:c3:bf:03:7a:24:26:7a:a8:a8:cc:e9:02:da:
                    69:ec:1a:bc:a6:ba:28:32:f4:c9:a7:fa:8c:27:7a:
                    67:bb:04:4b:c5:e8:0a:2e:27:3c:77:a9:12:c0:27:
                    62:5b:4a:30:1d:a5:86:1f:a2:c5:1a:2b:bb:c4:6d:
                    ae:5c:6c:a2:e4:a8:e1:0e:23:e7:91:a9:e0:64:1b:
                    d2:97:80:06:c2:95:f6:de:20:06:df:3b:64:2c:7c:
                    24:35:d1:25:53:06:7e:c8:36:b5:20:06:0c:d0:61:
                    81:7f:9e:88:f2:1b:6e:0a:45:33:e2:fb:c9:78:74:
                    17:cb:e4:2f:26:7a:d2:bd:94:f3:13:45:16:b7:0a:
                    86:28:7b:a3:1a:c2:0f:f1:c9:c4:76:1b:09:04:4d:
                    0a:bc:fc:9f:38:14:55:b0:71:84:e6:ba:a2:3d:e7:
                    93:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:4B:D0:E5:13:B0:96:20:96:12:F5:98:C2:A9:E7:7A:96:2D:27:1D
            X509v3 Authority Key Identifier:
                keyid:9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:ed:91:62:9f:40:fd:02:5f:ad:8e:23:88:c0:28:1c:51:e3:
         6b:96:db:7c:a5:11:84:96:15:d0:c5:31:b0:4b:e7:d0:de:bf:
         19:49:1a:15:99:d6:95:da:69:89:a0:66:da:54:f0:de:8b:7b:
         e2:c7:06:33:57:52:06:c8:5e:5d:d0:8c:32:c5:19:ce:6f:39:
         3c:91:b5:6e:af:c3:18:17:54:dd:ba:95:1d:25:85:be:b5:2b:
         db:d3:37:62:02:78:ce:63:49:c4:dd:b7:4a:6f:d7:41:7a:4c:
         99:ea:4a:08:7e:cc:5f:db:03:0e:fd:e7:02:c3:86:2e:6f:7d:
         9a:ff:53:a7:8b:21:2e:54:ce:94:a2:a2:62:81:39:33:41:57:
         1f:cc:83:0e:2b:d8:05:4d:e1:d7:bd:aa:91:3b:7d:37:29:d0:
         f9:98:1d:08:81:7d:97:be:9b:f4:68:96:ee:fd:78:1d:ca:c0:
         fe:ac:db:b9:68:91:86:cc:43:44:ba:74:3d:ba:90:ae:f7:c2:
         23:ab:fe:18:5e:22:57:e6:60:1d:4d:01:fe:44:97:0e:79:ed:
         3c:d7:62:56:7c:7e:f8:64:fe:1c:12:eb:ad:1a:02:4e:e9:a0:
         33:2d:c7:28:20:5b:90:2b:6b:6e:21:0b:18:43:ea:ca:d2:42:
         75:72:24:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----