Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
File:                     HR3nlQkjqWQxniwzg0m9Emh75K4.mft (raw, json)
Hash identifier:          K4AbWcLl/ykaMGhW/2+c3kyD4DTTVk6INKuLr5bRyy8=
Subject key identifier:   F5:BC:F5:DB:C1:D3:6B:92:76:5C:9B:77:98:A0:16:41:CC:7E:3D:4D
Authority key identifier: 1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE
Certificate issuer:       /CN=1d1de7950923a964319e2c338349bd12687be4ae
Certificate serial:       019CAD59550BC5AD690F9E829024F8935358
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
Manifest number:          0CBD
Signing time:             Mon 02 Mar 2026 07:00:38 +0000
Manifest this update:     Mon 02 Mar 2026 07:00:38 +0000
Manifest next update:     Tue 03 Mar 2026 07:00:38 +0000
Files and hashes:         1: HR3nlQkjqWQxniwzg0m9Emh75K4.crl (hash: TehvfcmmylxRFn84t9lTX7Qcf4HrhGOqpmAZYf64tZM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 07:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:55:0b:c5:ad:69:0f:9e:82:90:24:f8:93:53:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d1de7950923a964319e2c338349bd12687be4ae
        Validity
            Not Before: Mar  2 07:00:38 2026 GMT
            Not After : Mar  3 07:00:38 2026 GMT
        Subject: CN=f5bcf5dbc1d36b92765c9b7798a01641cc7e3d4d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:2f:f5:5d:0a:c3:32:8b:fe:61:02:e9:c4:b5:
                    f4:d5:4b:e8:ff:e1:77:c0:13:5e:25:ec:3a:35:0c:
                    94:2f:41:a9:8d:44:44:a4:fb:6d:44:8a:2a:c7:fc:
                    43:42:7a:5d:1a:12:cc:e9:46:76:d6:2d:6f:11:f8:
                    97:89:78:cf:a6:dd:00:6b:54:30:57:b2:c0:75:51:
                    73:2f:f9:44:f3:41:70:5d:c8:40:10:da:91:01:01:
                    cc:0e:0b:d9:de:36:b2:f0:02:ed:24:6a:4e:23:25:
                    58:af:5b:4a:14:3d:5c:ad:28:e0:ec:b9:f6:aa:93:
                    80:58:62:58:da:8b:f8:d7:c5:4f:cd:14:82:ad:d5:
                    b8:db:60:91:ef:6a:37:f8:f7:e5:5a:49:bc:13:a3:
                    43:f2:5b:5d:53:10:d2:66:05:fa:15:26:86:ed:db:
                    16:83:62:b1:e0:3d:58:84:40:9a:cc:e6:a5:a1:44:
                    97:82:40:35:44:1b:12:df:5e:de:4f:ad:0c:09:c9:
                    2d:63:47:93:c2:d7:1e:c4:1c:96:ce:16:a4:df:13:
                    84:0d:a0:ff:d5:61:4e:01:94:e8:53:48:73:49:e7:
                    b2:2c:67:87:2d:fc:21:2b:f1:56:7f:da:f0:96:fc:
                    5d:ab:a1:ed:ae:09:9a:56:ff:de:96:35:29:20:99:
                    75:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:BC:F5:DB:C1:D3:6B:92:76:5C:9B:77:98:A0:16:41:CC:7E:3D:4D
            X509v3 Authority Key Identifier:
                keyid:1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:08:15:f9:83:3b:e4:6f:98:42:81:78:6b:23:b5:72:35:cf:
         bf:a8:a0:ab:1e:26:c2:cf:0a:b3:d1:26:19:de:3f:f1:cd:b1:
         cb:39:cb:2e:d8:31:20:e4:cc:e1:1e:9b:e2:58:b1:fe:22:86:
         59:60:01:25:41:13:f2:d1:47:5e:6d:75:53:f3:14:47:4e:bd:
         92:20:3a:ec:0e:c9:5b:69:a8:df:e1:3f:5a:48:95:f3:3d:e6:
         61:5d:c8:9b:ac:9f:78:f4:ab:f8:cf:cc:2e:6c:5a:fb:30:0a:
         ee:f4:94:77:fe:dc:2a:30:c1:37:f0:ff:75:5a:aa:a4:c1:33:
         43:ff:2e:3a:70:10:2d:57:54:14:c7:3c:b5:b3:29:a0:bb:1e:
         73:3d:e1:b7:59:78:9e:a2:a1:10:67:be:d7:7c:da:5e:20:c6:
         8b:b4:46:56:4d:e5:20:a4:a6:18:5b:5c:89:e9:2a:39:60:82:
         f1:d3:1b:0b:06:10:91:86:00:ed:6f:ca:23:ce:cc:22:c3:39:
         5e:f4:db:20:86:12:7a:5c:58:03:47:79:15:1d:aa:7b:e6:ac:
         6a:6c:54:32:63:be:4a:e2:36:b8:27:61:9f:fb:07:c4:ad:43:
         b5:cc:92:1c:6a:71:75:49:38:12:74:a1:06:ee:4c:6e:e2:ea:
         01:04:89:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----