Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
File:                     fPxZzhNuPpOobeVfBdSaWeFcu78.mft (raw, json)
Hash identifier:          mJyw0f7JipDfBt8t03Y5raP04L1S33Y/Ri2tkqCBegY=
Subject key identifier:   C9:B5:A9:F5:A7:04:13:F7:A2:4D:2E:D8:6C:CC:C4:35:C3:E3:B1:77
Authority key identifier: 7C:FC:59:CE:13:6E:3E:93:A8:6D:E5:5F:05:D4:9A:59:E1:5C:BB:BF
Certificate issuer:       /CN=7cfc59ce136e3e93a86de55f05d49a59e15cbbbf
Certificate serial:       019D985057C9CEA1A3E181CA6B167D183A10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fPxZzhNuPpOobeVfBdSaWeFcu78.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
Manifest number:          0C5D
Signing time:             Thu 16 Apr 2026 22:01:35 +0000
Manifest this update:     Thu 16 Apr 2026 22:01:35 +0000
Manifest next update:     Fri 17 Apr 2026 22:01:35 +0000
Files and hashes:         1: fPxZzhNuPpOobeVfBdSaWeFcu78.crl (hash: zUTbNPKrcltM0JHKCZIoq6p6N7Q5H2Q5MKvVk2VEgRY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fPxZzhNuPpOobeVfBdSaWeFcu78.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:50:57:c9:ce:a1:a3:e1:81:ca:6b:16:7d:18:3a:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7cfc59ce136e3e93a86de55f05d49a59e15cbbbf
        Validity
            Not Before: Apr 16 22:01:35 2026 GMT
            Not After : Apr 17 22:01:35 2026 GMT
        Subject: CN=c9b5a9f5a70413f7a24d2ed86cccc435c3e3b177
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:93:f5:3b:64:57:d6:ef:d3:c9:61:4e:95:70:
                    da:ac:f4:e6:b1:17:95:d4:3e:2f:0a:2b:5e:42:b0:
                    8d:35:11:e8:3d:18:ee:3f:c7:79:11:02:79:88:38:
                    02:1a:40:0a:f6:10:49:7d:ee:4b:1c:05:22:81:a8:
                    91:be:3f:0d:ef:ff:db:48:0e:6f:1d:21:4d:74:de:
                    f4:f2:76:c0:b4:9d:6d:96:63:0a:d5:96:bd:f2:28:
                    46:6e:b7:69:33:74:2e:8b:7f:6e:6b:83:bb:14:21:
                    8d:a2:b3:2f:f8:45:e8:af:c2:b3:a9:34:4e:cf:75:
                    ee:75:7a:9b:4c:2b:60:37:2d:82:a5:8a:10:4a:23:
                    7e:48:19:13:53:cc:f0:8c:4d:a4:22:a2:db:c6:a0:
                    c9:89:db:d5:6a:15:6b:a7:9d:af:ef:8c:1a:03:98:
                    7f:43:7c:5f:8a:1c:52:9f:e4:43:73:1f:aa:6a:c5:
                    1b:62:c9:2d:46:cb:49:58:46:2b:5c:06:12:b0:aa:
                    ba:bf:f3:af:a5:d4:73:58:3f:0e:f3:ce:87:3a:fc:
                    9e:71:5c:06:25:fe:b4:7c:92:13:09:d5:1c:88:e2:
                    bc:89:bf:58:f7:16:b4:a5:f7:75:f3:a8:84:15:77:
                    63:49:a7:57:5c:cc:f2:df:74:b2:32:10:64:ad:ed:
                    32:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:B5:A9:F5:A7:04:13:F7:A2:4D:2E:D8:6C:CC:C4:35:C3:E3:B1:77
            X509v3 Authority Key Identifier:
                keyid:7C:FC:59:CE:13:6E:3E:93:A8:6D:E5:5F:05:D4:9A:59:E1:5C:BB:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPxZzhNuPpOobeVfBdSaWeFcu78.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:2d:41:d3:79:64:55:c4:cc:e1:f0:7e:34:4c:ba:28:d3:a3:
         4c:09:9e:b5:fe:24:3b:86:df:fd:cb:5f:aa:72:aa:9a:fb:69:
         df:ff:69:39:bc:55:e9:02:23:76:72:72:e0:d2:0e:27:e6:1c:
         b5:fe:c2:33:d2:06:15:f6:9f:3c:42:bf:af:f5:09:53:66:c6:
         2f:9f:82:8e:35:36:20:40:ba:ec:bb:6e:66:50:d7:37:ed:a2:
         27:78:76:e5:97:d1:80:14:cf:03:bc:d1:33:bc:30:aa:6e:eb:
         7b:2e:38:9a:8f:19:f5:ed:7e:26:13:cc:1f:2d:01:bb:64:4b:
         17:f1:01:87:fc:2f:8a:d2:18:90:cf:e2:4e:3b:dc:f6:5e:b0:
         ad:d7:21:c6:58:36:fa:3e:3a:76:a8:6f:e7:37:47:9a:a8:ca:
         a0:38:c4:20:b9:c6:63:4e:e1:16:71:f8:ae:4c:45:b2:e6:db:
         79:7a:48:70:dc:55:c1:fa:ad:b5:ff:57:06:f1:1d:38:b6:a6:
         69:6d:c4:5b:5a:34:26:7f:3e:34:cc:6a:78:bd:4c:47:d4:e4:
         56:5e:a1:3f:f2:61:0b:d4:0f:23:d5:1c:34:ce:9b:b2:42:d1:
         7e:12:79:84:c2:96:0e:62:13:a7:66:2a:d0:50:67:2d:17:dc:
         73:f4:da:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----