Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
File:                     JGJNNpZGiPmJxkSsIBH0Fl086wc.mft (raw, json)
Hash identifier:          BMyKgPfcg2sr9IqqDT2NzEmOvy49ezPUitkFe9vjfzQ=
Subject key identifier:   86:1E:56:51:49:F2:00:65:6C:1A:FC:AA:23:F3:FA:81:E9:88:09:B4
Authority key identifier: 24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
Certificate issuer:       /CN=24624d36964688f989c644ac2011f4165d3ceb07
Certificate serial:       019D98F4C72F6E0BC73CD04055B08F4A1077
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
Manifest number:          0C19
Signing time:             Fri 17 Apr 2026 01:01:11 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:11 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:11 +0000
Files and hashes:         1: JGJNNpZGiPmJxkSsIBH0Fl086wc.crl (hash: kBUZPp9COJl0QC41xsnL7ORM6LmGn7v0oc9+V/y+04g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:c7:2f:6e:0b:c7:3c:d0:40:55:b0:8f:4a:10:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24624d36964688f989c644ac2011f4165d3ceb07
        Validity
            Not Before: Apr 17 01:01:11 2026 GMT
            Not After : Apr 18 01:01:11 2026 GMT
        Subject: CN=861e565149f200656c1afcaa23f3fa81e98809b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:39:2c:2f:82:c7:2d:0e:5c:51:22:f6:1b:db:
                    9b:c3:ce:40:09:65:68:8c:35:e4:2d:d0:83:7f:d8:
                    a1:6e:41:b9:8c:6a:46:a1:9e:0b:bd:a0:d9:56:5b:
                    22:e1:9a:ae:c6:77:0f:f3:0c:33:08:91:76:a3:b9:
                    46:98:a9:58:e3:16:19:c9:52:ea:60:23:cc:31:62:
                    5d:3b:49:d5:75:5c:ca:ad:a1:e9:11:df:d8:05:2e:
                    aa:be:c8:87:c1:36:9c:67:d4:09:2e:34:b6:85:49:
                    4e:5f:3c:44:a8:9c:4d:e4:74:60:05:0d:3a:36:0b:
                    ed:8d:1e:d9:bf:56:52:51:17:68:2d:00:29:c1:4f:
                    44:e4:9a:dc:46:8c:06:fe:be:2e:43:7e:0d:e0:34:
                    7f:1b:e8:37:ea:c4:63:3c:07:24:cf:fa:a5:d5:6e:
                    31:74:7e:2b:8f:b2:53:3a:15:1d:83:05:00:cf:71:
                    92:67:8c:e2:de:8e:99:8a:76:0d:1d:30:08:ec:36:
                    e5:1e:f4:a3:cc:9d:38:cd:ee:31:f8:cd:9d:30:f4:
                    e4:34:7c:8d:bb:85:c5:23:df:98:a2:91:ac:75:e1:
                    34:d7:8a:87:b9:d8:06:d3:77:30:48:72:13:72:bf:
                    78:54:3f:76:4e:ef:d1:b0:03:b5:90:48:45:14:a8:
                    9f:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:1E:56:51:49:F2:00:65:6C:1A:FC:AA:23:F3:FA:81:E9:88:09:B4
            X509v3 Authority Key Identifier:
                keyid:24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:5c:76:ac:ab:c3:a2:69:e9:65:29:33:fd:98:45:5d:d9:a9:
         a3:5e:c6:6f:64:a7:a5:9d:dc:92:5c:3c:c7:16:ef:a0:f8:5c:
         d8:e3:7e:e2:a9:5d:6a:0d:c9:5c:13:be:df:80:73:29:13:3d:
         85:91:ff:9f:01:a7:c1:b7:86:fc:ad:5f:59:a7:8f:17:be:54:
         e8:6c:a0:10:b9:1c:f2:f7:84:df:7b:90:e7:9e:8e:7b:68:94:
         06:e5:e1:e2:7b:bb:cf:7f:5f:be:9d:54:aa:7b:b1:90:ba:01:
         e9:ed:4a:f4:39:dc:3b:70:5a:cf:da:2f:63:62:65:9e:2d:60:
         86:ff:cd:ae:f9:ff:09:05:68:fd:37:6d:97:68:05:db:9b:d7:
         7d:87:ab:c4:dd:23:c7:8a:c6:11:9f:0f:7f:07:13:3d:4c:90:
         37:f9:99:aa:75:53:6a:95:0d:e5:a8:5f:0a:cc:be:d9:30:d0:
         28:a4:ec:1f:f4:a7:b1:fb:4c:b9:7c:a3:60:c4:3e:9e:24:1e:
         53:35:d8:2e:87:a2:96:27:b6:f6:32:70:aa:1f:01:c9:84:a8:
         40:b9:08:8b:bb:66:e7:34:af:84:5b:b6:d6:89:d6:e6:f0:00:
         c9:69:23:df:31:0a:4e:9f:57:b9:23:bd:f2:02:32:ef:f9:59:
         2e:34:2d:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9McvbgvHPNBAVbCPShB3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0NjI0ZDM2OTY0Njg4Zjk4OWM2NDRhYzIwMTFmNDE2NWQz
Y2ViMDcwHhcNMjYwNDE3MDEwMTExWhcNMjYwNDE4MDEwMTExWjAzMTEwLwYDVQQD
Eyg4NjFlNTY1MTQ5ZjIwMDY1NmMxYWZjYWEyM2YzZmE4MWU5ODgwOWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTksL4LHLQ5cUSL2G9ubw85ACWVo
jDXkLdCDf9ihbkG5jGpGoZ4LvaDZVlsi4ZquxncP8wwzCJF2o7lGmKlY4xYZyVLq
YCPMMWJdO0nVdVzKraHpEd/YBS6qvsiHwTacZ9QJLjS2hUlOXzxEqJxN5HRgBQ06
NgvtjR7Zv1ZSURdoLQApwU9E5JrcRowG/r4uQ34N4DR/G+g36sRjPAckz/ql1W4x
dH4rj7JTOhUdgwUAz3GSZ4zi3o6ZinYNHTAI7DblHvSjzJ04ze4x+M2dMPTkNHyN
u4XFI9+YopGsdeE014qHudgG03cwSHITcr94VD92Tu/RsAO1kEhFFKifbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYeVlFJ8gBlbBr8qiPz+oHpiAm0MB8GA1UdIwQY
MBaAFCRiTTaWRoj5icZErCAR9BZdPOsHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkdKTk5wWkdpUG1KeGtTc0lCSDBGbDA4NndjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi83MzkyOTEtMmQ1Yy00YzFkLTkwNzkt
MDI3ZThjMDkxNDZiLzEvSkdKTk5wWkdpUG1KeGtTc0lCSDBGbDA4NndjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi83MzkyOTEtMmQ1Yy00YzFkLTkwNzktMDI3ZThjMDkxNDZi
LzEvSkdKTk5wWkdpUG1KeGtTc0lCSDBGbDA4NndjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuFx2rKvD
omnpZSkz/ZhFXdmpo17Gb2SnpZ3cklw8xxbvoPhc2ON+4qldag3JXBO+34BzKRM9
hZH/nwGnwbeG/K1fWaePF75U6GygELkc8veE33uQ556Oe2iUBuXh4nu7z39fvp1U
qnuxkLoB6e1K9DncO3Baz9ovY2Jlni1ghv/Nrvn/CQVo/Tdtl2gF25vXfYerxN0j
x4rGEZ8PfwcTPUyQN/mZqnVTapUN5ahfCsy+2TDQKKTsH/SnsftMuXyjYMQ+niQe
UzXYLoeilie29jJwqh8ByYSoQLkIi7tm5zSvhFu21onW5vAAyWkj3zEKTp9XuSO9
8gIy7/lZLjQteA==
-----END CERTIFICATE-----