Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
File:                     DUlCfYpEd823aAhhqexQ3HMhaYI.mft (raw, json)
Hash identifier:          HAtKTmsvxQocCkyoaCSC+BqdYCu2DxeCz0Z3ivilfKM=
Subject key identifier:   26:A4:B4:EF:D8:74:F6:60:63:B2:54:3B:56:A5:E8:36:B1:7E:46:1B
Authority key identifier: 0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
Certificate issuer:       /CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Certificate serial:       019EC06D6341ACCA46EE7B35561DF178CA20
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
Manifest number:          09E6
Signing time:             Sat 13 Jun 2026 10:00:54 +0000
Manifest this update:     Sat 13 Jun 2026 10:00:54 +0000
Manifest next update:     Sun 14 Jun 2026 10:00:54 +0000
Files and hashes:         1: DUlCfYpEd823aAhhqexQ3HMhaYI.crl (hash: fGExgxl0MHZ9qQMgXbNpEufHfhlD56HXbRYEZtVIQJ0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:6d:63:41:ac:ca:46:ee:7b:35:56:1d:f1:78:ca:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d49427d8a4477cdb7680861a9ec50dc73216982
        Validity
            Not Before: Jun 13 10:00:54 2026 GMT
            Not After : Jun 14 10:00:54 2026 GMT
        Subject: CN=26a4b4efd874f66063b2543b56a5e836b17e461b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:d7:76:3a:25:3f:fd:b0:79:fe:57:cf:8b:05:
                    ab:93:4e:49:0f:24:dc:ee:bf:a0:96:51:ce:2e:64:
                    7c:f0:80:73:41:cf:53:7a:0c:ed:cb:07:7a:4e:9f:
                    e8:9c:88:a8:1e:1e:a1:e7:a9:b6:1e:54:78:b0:f2:
                    35:7c:cd:eb:47:3a:ed:da:1d:9a:85:95:c3:b9:0a:
                    40:67:db:6a:b0:2e:9f:5f:9c:a5:ab:e7:5f:c7:2f:
                    be:e6:70:65:53:6f:0b:47:76:df:56:30:db:3d:c6:
                    30:6c:03:dc:03:9b:69:b9:5f:7e:13:ed:20:7d:a6:
                    72:06:64:42:b8:49:94:85:4b:c7:84:6f:f5:e2:ee:
                    e6:f0:2e:f3:b2:b5:a3:73:cd:bf:1b:a2:3b:9c:7e:
                    56:1d:40:90:1b:d4:0b:04:24:f7:24:4c:52:80:0b:
                    b6:d8:e8:0d:0d:c9:a3:b1:ec:26:aa:55:4a:1d:70:
                    26:fe:8a:48:53:81:d5:02:81:a4:39:96:56:d1:9e:
                    93:b1:5a:1e:b3:46:4b:80:45:84:2f:02:9a:d1:c2:
                    62:86:60:64:33:c3:83:9d:df:2e:af:f8:19:fc:75:
                    72:e0:fb:ae:4d:1c:49:6c:56:bd:34:dd:57:d0:a3:
                    84:fd:5f:92:d7:96:cb:83:3c:cc:2a:f2:a8:c5:62:
                    20:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:A4:B4:EF:D8:74:F6:60:63:B2:54:3B:56:A5:E8:36:B1:7E:46:1B
            X509v3 Authority Key Identifier:
                keyid:0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:6c:9f:b7:8e:75:6e:42:94:4e:cc:4d:33:7a:0a:b5:6d:c4:
         f2:11:c4:af:2d:c4:d9:e3:df:4f:79:34:27:91:75:02:ac:f5:
         d1:4a:ee:76:c1:3e:b5:1e:46:b4:dd:11:8a:3f:7c:af:42:cf:
         41:de:b3:25:69:ca:0e:53:9c:40:cf:7b:e7:3e:92:13:23:ce:
         95:f2:52:5f:74:60:4c:42:bc:c8:f5:1b:9c:4b:40:85:9f:c2:
         0d:68:e8:60:83:81:60:de:39:70:28:0f:b4:a7:54:fb:08:29:
         7e:27:c4:2d:84:fd:67:96:97:b9:88:84:fe:da:04:fa:b2:13:
         19:3d:5b:35:d0:04:52:6c:4f:b9:89:75:53:f4:48:aa:11:de:
         7b:68:6f:5b:87:f7:00:1f:a5:7a:55:b4:81:4e:71:b5:2b:b3:
         ee:76:95:94:d1:e4:9a:6e:3c:23:7d:22:06:c8:3e:5f:1e:47:
         6e:cd:3e:01:fa:25:57:13:37:a4:cf:68:9c:2c:b3:41:4e:bc:
         b6:2c:21:e1:30:54:a5:78:19:da:bb:ee:d8:8a:6e:60:32:07:
         b6:ad:8c:ca:13:e2:d0:fb:f3:38:da:cd:be:1b:e3:bd:47:69:
         30:ab:97:c5:6f:1e:d5:cb:7a:84:24:56:4c:20:96:6a:01:4c:
         fb:28:02:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----