Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
File:                     BvPXAJgq-awbr-TyqnGEStAHWR0.mft (raw, json)
Hash identifier:          ROD7cRQ4F46LoGR/4OdGquRLjoOKP2tFvm6n0MjU0M4=
Subject key identifier:   4A:DD:E1:35:15:F6:CE:A5:D0:74:85:E1:62:6F:40:4B:C0:98:87:57
Authority key identifier: 06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D
Certificate issuer:       /CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
Certificate serial:       019EC25C105A7CECCBA39815E9A10CABA87D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
Manifest number:          0C8D
Signing time:             Sat 13 Jun 2026 19:01:13 +0000
Manifest this update:     Sat 13 Jun 2026 19:01:13 +0000
Manifest next update:     Sun 14 Jun 2026 19:01:13 +0000
Files and hashes:         1: BvPXAJgq-awbr-TyqnGEStAHWR0.crl (hash: fCZ7fGOLD79uZXBAQs9CP8SS5in3QOryY3B83hJDzCQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 17:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c2:5c:10:5a:7c:ec:cb:a3:98:15:e9:a1:0c:ab:a8:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
        Validity
            Not Before: Jun 13 19:01:13 2026 GMT
            Not After : Jun 14 19:01:13 2026 GMT
        Subject: CN=4adde13515f6cea5d07485e1626f404bc0988757
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:3b:56:4c:b6:c6:87:b8:b4:18:e2:2a:5c:06:
                    b3:86:51:3f:56:12:c0:cb:d7:39:3f:a8:02:34:d5:
                    0d:7f:dc:0e:24:20:12:26:7c:02:87:85:c6:61:e3:
                    a0:00:5f:c6:6a:81:11:a0:9a:9e:98:34:1f:60:88:
                    a2:d7:97:63:ac:06:6b:69:42:48:a8:bc:e8:67:ab:
                    cb:3d:79:de:f9:53:09:93:20:c6:10:a0:2f:fe:b0:
                    69:01:d1:90:d6:8d:ff:85:a4:a6:97:d4:b3:6c:47:
                    a0:c5:e8:44:ff:cf:46:73:1d:15:a0:f4:22:e1:94:
                    89:05:89:13:e2:06:42:47:7e:78:67:b4:e8:67:65:
                    7a:da:4b:f2:16:62:2b:19:46:e3:eb:db:64:e8:2f:
                    3e:92:f2:10:a3:8a:45:b5:b9:ce:a0:d2:cc:c9:ca:
                    a8:29:23:e2:dd:a2:56:4b:72:da:09:da:86:7c:a6:
                    e6:43:78:ee:59:ac:88:89:4b:a5:f9:58:81:1f:4a:
                    a0:c8:e9:40:b1:11:74:0c:f6:7f:93:1c:59:f5:f9:
                    bf:c9:41:f8:60:a1:89:11:d6:7a:d1:fb:ab:93:77:
                    c2:c3:af:a0:95:ea:0d:0b:83:17:7e:5a:26:51:69:
                    a4:96:be:63:12:a5:47:3e:04:b0:7a:da:a6:e4:20:
                    a1:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:DD:E1:35:15:F6:CE:A5:D0:74:85:E1:62:6F:40:4B:C0:98:87:57
            X509v3 Authority Key Identifier:
                keyid:06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:17:d9:b1:c7:38:7a:6d:63:da:fb:4b:e9:79:3b:9c:80:d6:
         cd:56:c4:b3:63:e4:98:70:40:d6:bb:cf:4a:d5:fa:81:33:b9:
         7b:38:be:4d:dd:bb:17:84:16:39:dc:c4:35:43:56:71:da:a9:
         b3:e9:a8:fb:5e:3e:ba:be:71:52:81:df:cf:54:3b:fb:e1:3c:
         4a:a7:f2:77:be:f0:7b:24:22:b4:88:29:30:e5:23:4e:ef:a9:
         0f:03:82:58:d7:26:43:cb:5d:cd:73:5f:c0:1b:84:80:0d:a6:
         5d:23:98:1e:11:45:42:4f:e2:81:68:fc:50:36:f5:73:c9:8e:
         fb:38:70:a2:02:b7:e5:0a:de:56:21:2e:60:58:40:fc:af:83:
         9c:fd:92:f1:00:66:26:08:f5:cf:e3:b7:10:d0:af:c6:ad:80:
         17:ae:cb:0a:5e:96:b5:20:25:a4:a3:62:07:f4:3c:b6:59:18:
         1e:be:e1:d3:5b:2d:39:26:55:4c:e6:dd:5a:8b:6a:3c:35:0b:
         37:f9:86:c4:5e:e1:5e:14:61:e1:4a:42:44:7f:bd:d3:ff:b6:
         0d:f2:8f:df:e5:ae:b6:b4:8e:51:6a:c4:0f:ae:4c:48:bb:46:
         ec:ca:39:42:b2:6c:f2:22:b9:26:a0:40:e0:71:66:00:45:cb:
         fc:4d:95:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----