Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft
File:                     y_sCefzSOo5YPzRauQRyjm0OTGI.mft (raw, json)
Hash identifier:          duRu+wUjNMHmBdpwE+DvvjBbJLBlCsp9SDuPTeNznoM=
Subject key identifier:   69:A6:F6:6D:95:51:5C:54:C2:65:61:81:16:C8:8E:93:C6:4F:36:D9
Authority key identifier: CB:FB:02:79:FC:D2:3A:8E:58:3F:34:5A:B9:04:72:8E:6D:0E:4C:62
Certificate issuer:       /CN=cbfb0279fcd23a8e583f345ab904728e6d0e4c62
Certificate serial:       019D97E1BF441F2F42BC6FF15A61FFC0AE3C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/y_sCefzSOo5YPzRauQRyjm0OTGI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft
Manifest number:          08EA
Signing time:             Thu 16 Apr 2026 20:00:47 +0000
Manifest this update:     Thu 16 Apr 2026 20:00:47 +0000
Manifest next update:     Fri 17 Apr 2026 20:00:47 +0000
Files and hashes:         1: y_sCefzSOo5YPzRauQRyjm0OTGI.crl (hash: c38fiWgKLy2puRUtwajBBTiLy1i7QjInNmmsiH6zNy4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/y_sCefzSOo5YPzRauQRyjm0OTGI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 20:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:97:e1:bf:44:1f:2f:42:bc:6f:f1:5a:61:ff:c0:ae:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cbfb0279fcd23a8e583f345ab904728e6d0e4c62
        Validity
            Not Before: Apr 16 20:00:47 2026 GMT
            Not After : Apr 17 20:00:47 2026 GMT
        Subject: CN=69a6f66d95515c54c265618116c88e93c64f36d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c2:bf:0e:46:d6:99:1e:d1:cd:ee:98:fd:87:
                    f3:fe:77:f9:24:5e:c0:d1:e0:64:20:ab:5c:04:fa:
                    d0:57:04:22:a7:fe:70:8d:98:ed:3a:b1:86:f1:c4:
                    e8:aa:7f:7f:5c:d0:12:8c:f1:de:e3:99:12:d8:50:
                    1e:b7:8f:7f:d0:1c:dd:8c:ec:ae:6d:d6:a5:ba:e4:
                    28:85:71:af:f9:34:f5:35:3d:bf:be:d0:f4:f1:19:
                    8f:fe:77:f4:6b:b9:33:27:89:12:5d:86:ec:23:4f:
                    dd:17:e9:f3:68:88:48:3e:2d:f2:64:5f:4a:73:e7:
                    b7:2d:b3:bb:5b:3b:a6:47:ee:4b:25:ea:6e:5d:8c:
                    3e:23:f0:b1:77:e8:3c:bf:6c:34:99:e6:12:6b:b9:
                    43:0a:d8:35:32:1d:65:83:ba:98:0b:22:31:ff:69:
                    89:d0:94:26:f5:10:c7:24:88:d3:d1:f5:92:c6:77:
                    3b:1d:00:d5:d8:b1:b4:e4:d4:05:b1:02:be:0d:37:
                    26:ca:93:8a:3d:de:6b:fa:df:8b:a5:6c:b2:94:52:
                    51:d8:30:0b:36:dc:49:f8:f8:c7:ee:7a:87:35:6a:
                    6e:2d:38:08:38:ca:fe:1f:85:de:5d:fa:83:4a:95:
                    7b:ee:5d:be:6b:7d:d5:65:03:a5:0f:d0:06:19:44:
                    c8:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:A6:F6:6D:95:51:5C:54:C2:65:61:81:16:C8:8E:93:C6:4F:36:D9
            X509v3 Authority Key Identifier:
                keyid:CB:FB:02:79:FC:D2:3A:8E:58:3F:34:5A:B9:04:72:8E:6D:0E:4C:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_sCefzSOo5YPzRauQRyjm0OTGI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:fc:25:fe:72:e5:32:38:b4:6d:c8:5e:9f:4c:48:a8:74:69:
         98:5f:7d:3f:fa:a6:13:75:9e:08:42:4d:87:e4:93:df:43:cb:
         ff:f9:45:85:4c:95:5f:35:58:2d:3c:b2:b5:b8:7a:de:a7:40:
         c5:bb:1a:f4:72:8f:f5:d0:3a:1c:f6:18:b2:63:00:d1:a3:4d:
         b9:0f:d9:19:29:6c:6d:84:be:7a:bb:f5:db:01:b8:16:ff:08:
         47:15:3b:90:ac:da:f8:72:a5:46:17:36:4c:76:c0:ae:3c:bb:
         a4:65:22:8e:b8:86:49:12:97:6c:6a:44:1d:27:d5:7a:a6:05:
         61:ff:6c:fd:7d:83:60:e5:8e:ab:a1:dd:a1:78:aa:57:2f:86:
         26:ff:68:5b:87:c1:98:f9:fa:6f:fe:7e:29:a6:0a:63:c4:c1:
         e8:17:cd:38:78:26:e1:d7:04:e6:ea:6e:6f:0b:93:ca:b2:21:
         10:33:05:14:74:09:f1:e0:f7:9a:71:ef:27:3e:70:bd:3c:5f:
         f6:55:d5:2f:2b:a8:68:0c:0a:6b:30:f0:57:23:1a:bc:fa:4f:
         16:6f:93:4b:51:ac:e0:a1:72:f1:ca:63:bb:15:2b:f0:7b:ba:
         08:8b:6d:5c:bd:d7:2c:82:60:50:8e:dc:99:39:a2:ea:e4:74:
         37:fa:eb:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----