Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File:                     A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier:          6SsLhu33yHe1NwA3WoikXCgZz/EXLk0Er5JVeC3SVOE=
Subject key identifier:   3F:7F:86:2D:47:81:7F:F4:EB:C2:1E:7A:08:84:56:93:38:80:D2:26
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer:       /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial:       019D98F507053E935F6B6BACDEB2C4F9902F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number:          1551
Signing time:             Fri 17 Apr 2026 01:01:28 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:28 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:28 +0000
Files and hashes:         1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: AKDclgb80IssxuD/MaawD0g75g3+LnLn78o0JUlbHEE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f5:07:05:3e:93:5f:6b:6b:ac:de:b2:c4:f9:90:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=036847b297235faf071686fed2c1e910bf600486
        Validity
            Not Before: Apr 17 01:01:28 2026 GMT
            Not After : Apr 18 01:01:28 2026 GMT
        Subject: CN=3f7f862d47817ff4ebc21e7a088456933880d226
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:6b:ea:dd:dc:41:72:ce:d4:48:42:60:1f:75:
                    79:11:50:1e:3e:b3:81:a6:03:38:a5:cd:bd:65:cb:
                    82:77:d8:d4:3f:b4:35:33:b6:2b:70:f9:07:69:f1:
                    36:a7:35:d1:9f:5f:bf:35:95:18:d4:ea:ba:a0:9a:
                    ff:24:01:22:6e:c4:05:f3:4f:16:26:d5:76:77:aa:
                    79:c3:98:4f:3b:cb:94:7c:39:ca:c0:7d:17:f0:18:
                    10:1b:28:ed:95:94:f6:2e:31:34:65:61:3a:7b:96:
                    7f:1d:59:ac:22:62:6a:4c:78:e8:d8:88:09:29:a0:
                    9b:30:8b:ef:49:2a:44:a9:d4:fb:98:e2:6c:2d:e3:
                    7c:17:c1:a4:50:57:b5:87:20:1b:31:74:1a:ce:82:
                    df:6e:8d:81:a1:2f:3a:72:90:99:41:8d:ca:c6:65:
                    9f:6e:e9:9f:2e:9d:29:5e:7d:e8:31:01:35:d0:94:
                    d9:d1:e8:05:91:3b:9d:8a:77:3f:7c:09:48:49:60:
                    e8:0c:fe:af:fd:ed:77:c9:2f:52:26:9e:46:da:26:
                    2f:8a:97:52:8b:7d:90:81:79:94:2a:b8:f8:8c:af:
                    ff:d4:c3:dc:3e:3e:dc:b4:25:fb:01:76:1e:83:5d:
                    8d:12:2a:8f:c0:cc:2a:2f:d5:a3:00:1b:d1:49:a1:
                    a0:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:7F:86:2D:47:81:7F:F4:EB:C2:1E:7A:08:84:56:93:38:80:D2:26
            X509v3 Authority Key Identifier:
                keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:45:9f:79:b1:2e:8a:77:d0:3d:4f:12:96:f7:d0:96:92:66:
         33:e6:6b:88:4a:11:c2:00:a1:c2:fe:92:9b:07:a5:01:0d:1a:
         ff:c8:5a:68:5d:4e:31:95:50:f4:c2:71:2c:24:68:d4:6b:5d:
         0d:c7:9c:b9:8b:42:d6:89:5e:ad:b0:2f:f5:1c:12:3d:1b:37:
         84:68:39:73:1c:d4:c1:6b:33:cc:7f:65:e1:f4:ca:a1:52:eb:
         40:97:2b:bd:08:c9:70:9b:e9:81:54:86:5c:9a:7f:6b:47:23:
         08:3f:7c:c5:b9:1b:91:8a:29:4f:a4:3f:f1:93:9b:8b:20:d5:
         e2:86:c9:28:a0:f1:0f:04:19:30:f2:73:49:03:96:1b:b9:f9:
         89:92:e0:f4:b6:ae:f7:a8:2e:07:5b:af:ae:a3:2c:4a:f0:52:
         3b:c6:58:58:73:2c:4e:7b:f9:75:81:57:0b:0a:ea:e3:78:a1:
         6d:bc:64:89:d3:19:80:89:60:ce:08:79:e5:ed:ac:a2:f4:58:
         08:54:58:50:2e:ab:61:7c:18:dc:c9:7a:9b:4e:a3:18:4a:34:
         95:1d:5b:c4:3c:ad:27:61:eb:b4:7f:0e:8a:2e:28:fc:d0:ea:
         ac:ac:75:58:50:b4:99:82:77:a4:ca:6c:72:41:88:0d:1f:42:
         76:3f:be:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----