Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
File:                     goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json)
Hash identifier:          47fhEA9OqC/ZbgOM7JFYSrZPYGgpRCCA3wmWJGabQSw=
Subject key identifier:   6A:59:27:C9:5A:27:7F:DE:F7:0D:AC:EC:C3:D2:8E:AB:43:A7:CF:85
Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Certificate issuer:       /CN=82821e92cc2700761930398e2380c23aa4755f16
Certificate serial:       019CAD59A50FE8D5114D3BFCF38851A72540
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
Manifest number:          08FC
Signing time:             Mon 02 Mar 2026 07:00:59 +0000
Manifest this update:     Mon 02 Mar 2026 07:00:59 +0000
Manifest next update:     Tue 03 Mar 2026 07:00:59 +0000
Files and hashes:         1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: 6UPUd+jaq8ezlLksSlqEWEts80DwRakOA11VIwq+T+c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:a5:0f:e8:d5:11:4d:3b:fc:f3:88:51:a7:25:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16
        Validity
            Not Before: Mar  2 07:00:59 2026 GMT
            Not After : Mar  3 07:00:59 2026 GMT
        Subject: CN=6a5927c95a277fdef70dacecc3d28eab43a7cf85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:0e:61:d9:8c:52:3e:eb:e6:53:2b:df:69:17:
                    51:75:e8:c4:cc:8a:cc:1f:cc:ff:28:ec:e6:77:9b:
                    22:50:fd:ec:64:90:e5:f0:ba:a9:47:ac:25:19:7b:
                    08:42:de:72:13:25:66:8c:73:5e:d2:e1:e9:b9:bf:
                    44:89:d9:ee:27:35:68:64:ed:b0:a6:a8:dc:2f:ba:
                    4a:58:2b:4d:39:4d:f9:de:c5:a6:fe:e9:c0:1f:d3:
                    47:17:de:8d:a7:f9:24:5a:49:41:29:76:f0:4f:ae:
                    19:0b:90:eb:aa:d8:ea:57:20:5a:1e:30:d6:af:b0:
                    1c:9c:df:b3:bf:3b:1c:5f:ad:e5:05:1d:20:5c:05:
                    0e:9e:e4:6d:5f:5e:17:c6:41:a7:e2:1d:f5:16:96:
                    06:5b:c8:7d:3b:0d:a8:95:d8:f7:2c:b3:a4:2d:14:
                    95:98:02:32:e5:05:30:c2:ba:26:12:e4:da:79:0e:
                    4e:93:5c:6d:60:27:b4:80:b6:2e:53:fb:f4:05:59:
                    a2:c1:de:37:9b:f9:b8:87:d8:f8:78:40:cd:ef:65:
                    81:b8:1b:93:ae:e6:69:17:07:5f:ab:b5:14:47:99:
                    f7:61:c9:c4:b8:e1:2e:55:b2:ea:ff:f5:c0:33:b1:
                    56:5c:ce:cd:8c:c6:cd:2a:a5:b8:65:17:1d:08:1e:
                    41:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:59:27:C9:5A:27:7F:DE:F7:0D:AC:EC:C3:D2:8E:AB:43:A7:CF:85
            X509v3 Authority Key Identifier:
                keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:d8:b8:e9:6f:15:3d:dc:27:1e:88:fd:c0:00:a5:d3:c2:26:
         00:1c:26:83:ce:46:43:bf:8b:bf:7b:cd:a5:69:a0:4d:dd:76:
         b8:0f:72:03:ff:e2:15:28:19:c8:de:ab:79:c7:f4:ca:30:06:
         23:f6:45:5e:0a:fc:75:52:89:9e:68:c9:37:06:71:1c:b4:de:
         b3:31:0c:16:35:39:bd:56:d7:bf:fd:53:c5:88:55:9e:55:7e:
         31:f2:83:81:ed:33:2a:8a:b6:e5:5f:a9:97:75:98:c8:ae:b7:
         f5:68:04:3e:a0:b8:d6:ed:16:d2:a6:69:fb:27:93:06:88:4e:
         be:50:16:34:8b:48:7d:96:13:b3:63:10:ee:8a:0e:b6:cd:9f:
         a1:40:c0:9b:3a:67:92:91:b4:fb:f8:1f:b4:7e:64:e3:f4:f6:
         e8:68:5c:d7:f1:cc:b5:ab:0d:41:ad:02:d4:23:bd:08:3e:8a:
         db:f7:df:c3:93:d8:26:f5:33:fe:3b:76:69:d0:c4:58:e4:c6:
         d6:6c:9a:0e:58:28:73:ef:0b:83:9c:f3:6c:93:88:e1:df:ec:
         51:ab:63:67:60:83:c6:e0:99:da:73:73:96:4a:26:b8:d0:d3:
         40:9b:d1:f6:8a:a2:3d:4a:0b:eb:a9:ce:55:f2:6a:76:4b:93:
         eb:ac:af:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----