Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
File:                     BvPXAJgq-awbr-TyqnGEStAHWR0.mft (raw, json)
Hash identifier:          TI2LGekuVGc8OzH4Ck+1FH1GpnnrAvr9C9FBbxDwh1M=
Subject key identifier:   94:61:14:F2:24:59:0D:2E:AD:5A:0D:AE:71:E6:F8:78:D8:5A:BD:D3
Authority key identifier: 06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D
Certificate issuer:       /CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
Certificate serial:       019CAF47D6441919AD76F152D82387CF1B9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
Manifest number:          0B7A
Signing time:             Mon 02 Mar 2026 16:00:46 +0000
Manifest this update:     Mon 02 Mar 2026 16:00:46 +0000
Manifest next update:     Tue 03 Mar 2026 16:00:46 +0000
Files and hashes:         1: BvPXAJgq-awbr-TyqnGEStAHWR0.crl (hash: B4nIaX7pQF4LNR+GL+BtyGMpmTq1fXVEuUxdiFwIkf8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 15:05:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:af:47:d6:44:19:19:ad:76:f1:52:d8:23:87:cf:1b:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
        Validity
            Not Before: Mar  2 16:00:46 2026 GMT
            Not After : Mar  3 16:00:46 2026 GMT
        Subject: CN=946114f224590d2ead5a0dae71e6f878d85abdd3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:66:3f:07:68:a3:17:ee:8b:64:74:ab:62:12:
                    fb:cc:a3:59:8e:0c:4c:ea:fa:c8:7f:f7:d0:f2:a7:
                    47:eb:a8:29:37:91:c6:39:03:1f:aa:eb:76:9d:e8:
                    12:c1:1f:56:43:a0:b9:c6:be:a0:01:e8:8b:1d:e0:
                    83:21:d4:d3:48:e0:df:72:0f:c5:6d:d1:fa:1d:96:
                    bf:4c:dc:53:8d:c2:a9:15:34:b7:86:d8:6a:29:37:
                    89:51:04:cd:8f:c1:82:8a:a8:41:8e:5b:ee:eb:b1:
                    5c:4f:7c:dd:f8:ee:8d:cc:52:ff:27:5b:0e:9c:dc:
                    ca:e8:6d:3f:70:06:8a:71:8a:7a:2d:6a:f9:55:23:
                    8d:f6:d0:d7:6b:60:95:67:5b:49:ed:d2:aa:9a:c2:
                    17:18:ea:eb:62:d6:b0:62:ec:e0:bc:51:d6:ef:d3:
                    ed:ec:16:fb:b9:56:c7:8a:cb:b2:54:93:dd:58:20:
                    8c:f1:3a:62:f4:df:fe:3f:e4:89:59:5b:6d:bc:15:
                    d1:7b:90:d0:af:ab:aa:f2:76:04:1f:a3:12:11:d3:
                    db:47:a5:39:5f:5d:9c:4c:31:fd:3f:d6:87:a3:90:
                    b3:ce:1e:38:97:9c:32:2d:d4:97:d0:38:bb:2b:25:
                    bd:7a:99:6d:ac:2a:b9:21:ff:f2:42:af:f5:52:f8:
                    74:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:61:14:F2:24:59:0D:2E:AD:5A:0D:AE:71:E6:F8:78:D8:5A:BD:D3
            X509v3 Authority Key Identifier:
                keyid:06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:cc:df:c4:d9:d4:7a:ac:ae:04:28:f3:bc:62:09:bf:bc:a5:
         1f:2a:3b:a0:d5:10:5d:31:e3:39:6c:7f:1b:a8:7a:d0:dc:97:
         9d:91:bb:0a:22:d3:2b:7b:37:81:38:0c:2e:32:31:53:e0:ce:
         0c:eb:32:f5:e3:39:29:d3:01:e9:e9:bc:a7:f3:8e:b3:3d:d9:
         b6:e7:c6:02:0d:a8:24:08:9c:a0:6c:31:00:82:8c:5e:0b:65:
         62:7b:cb:ac:8e:ed:08:ef:90:4f:c9:f2:27:8e:0c:9f:78:51:
         d9:58:63:cd:b2:e9:ea:a0:6d:c2:22:1a:da:8e:95:23:9f:94:
         78:de:11:09:e2:0c:4c:6a:5e:0d:df:31:64:7b:6e:51:0d:05:
         fc:28:41:cc:f5:25:b3:5a:d9:c1:8e:8e:73:ad:aa:8c:c3:27:
         0d:ef:69:47:a0:65:e1:db:e4:c0:8a:ac:b2:eb:ee:bf:e8:c3:
         a8:89:fd:d1:63:59:b8:98:16:3e:b7:34:5a:63:d6:5a:0d:63:
         b2:88:15:00:1e:54:3a:a5:76:12:5c:94:1e:d3:0f:93:1a:b1:
         3b:7e:ba:87:7c:45:35:9c:c0:97:0a:2b:b3:25:e6:13:29:25:
         e1:49:27:12:dd:30:cd:73:fb:5c:b8:bb:60:f7:e4:de:b4:ab:
         5a:06:55:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----