Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
File:                     2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json)
Hash identifier:          +lzU8M3MjWlnp7qu7kWI8Jg4JQ5bZ99lz2VNqkgO6rM=
Subject key identifier:   96:72:5E:B1:48:27:3C:FE:78:A7:AA:73:8D:3B:5B:89:31:DA:10:85
Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
Certificate issuer:       /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Certificate serial:       019D98F52C125B051FB5B0753B58BBB0F26F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
Manifest number:          18BD
Signing time:             Fri 17 Apr 2026 01:01:37 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:37 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:37 +0000
Files and hashes:         1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: UWhPrT3U8jJB+rEDFwmQH2oEswuvBb8KNzTDATMdfMU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f5:2c:12:5b:05:1f:b5:b0:75:3b:58:bb:b0:f2:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
        Validity
            Not Before: Apr 17 01:01:37 2026 GMT
            Not After : Apr 18 01:01:37 2026 GMT
        Subject: CN=96725eb148273cfe78a7aa738d3b5b8931da1085
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:e8:74:61:ad:41:2b:c8:7e:87:80:60:90:dd:
                    c5:89:e0:de:00:49:15:36:4e:f4:aa:10:91:79:30:
                    97:bc:c1:1a:a5:5a:f6:1d:66:24:23:10:74:62:4b:
                    ef:46:20:66:20:d8:63:9d:ff:2c:82:97:16:e4:fc:
                    dd:6e:ac:a1:ac:7a:25:38:8a:b0:b6:11:f2:5d:3c:
                    be:83:aa:4d:e2:56:24:3b:48:0d:22:95:0a:73:5a:
                    cf:46:9d:35:9f:83:a2:e8:13:08:56:20:42:b6:92:
                    29:8e:49:04:73:cf:a2:74:b6:b4:8f:ab:e1:a7:7a:
                    89:56:f2:1d:a6:35:5b:60:b3:bf:15:73:8b:d4:5f:
                    63:23:36:9e:5a:09:ac:c3:24:4c:ca:54:04:09:42:
                    56:7c:fa:4f:c0:e5:cc:e8:ea:b9:25:d8:af:62:06:
                    98:7c:20:7a:0b:c5:98:46:11:f6:1e:00:ca:b6:5a:
                    51:78:0c:81:ed:02:cf:b4:ca:b1:50:98:b4:60:f6:
                    45:f7:fa:2a:96:3e:fb:1d:e2:ca:be:26:e2:4a:09:
                    5f:83:c1:19:19:58:38:61:fe:b5:f7:1e:f4:5e:f4:
                    73:fd:d8:e8:7b:b5:5a:98:06:aa:70:af:46:3f:c7:
                    68:13:9e:cd:ce:ee:89:d9:93:4a:ca:f3:4f:7b:1a:
                    0b:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:72:5E:B1:48:27:3C:FE:78:A7:AA:73:8D:3B:5B:89:31:DA:10:85
            X509v3 Authority Key Identifier:
                keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:51:ef:69:e6:f2:ed:3c:e7:95:8a:ef:42:27:73:4c:2a:99:
         60:be:87:4b:7b:68:84:46:2e:a1:05:96:36:01:d0:25:26:60:
         23:17:ee:e6:c6:8c:87:ee:dc:ec:56:6a:69:ba:1e:35:40:97:
         59:cd:13:c7:cd:5f:98:90:58:fb:cd:2c:04:55:6e:46:d6:b4:
         ff:f6:d1:91:b3:94:17:c0:4e:ee:97:42:9e:30:3c:6f:d4:8e:
         7f:19:fc:d0:07:29:4f:75:ee:82:83:74:23:6e:3c:08:dc:39:
         0d:6f:2b:a2:05:2a:bc:39:ad:d4:a8:d8:b5:74:1f:0a:f3:85:
         c5:d5:e6:e1:3b:04:91:de:65:c6:98:6f:a6:a1:46:ae:d5:f5:
         2f:f4:db:fa:04:17:cc:e4:d8:c6:ee:34:95:e6:97:b6:e5:b8:
         b7:22:35:e6:ab:b4:51:94:08:b9:3e:ed:3b:dd:00:d2:8e:73:
         84:84:4d:5d:26:76:ff:a2:d4:bd:83:9d:d7:f8:6e:ce:c6:ad:
         db:69:89:ab:15:08:dc:d0:69:50:4d:ec:0e:ae:8f:86:63:1f:
         3b:73:ed:aa:0f:e2:d1:fd:95:f8:da:2e:c3:08:5a:5b:93:2e:
         94:07:a0:54:4f:73:3d:eb:65:d9:d6:04:76:c8:a6:ae:95:f3:
         39:97:a3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----