Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
File:                     5i7oJCK3hJkSKWNhQEZJp__smOU.mft (raw, json)
Hash identifier:          PMtZ/9sQ4EUl3rF+B9ldjsLRAK14uiy7nHeQ1HCP2I0=
Subject key identifier:   19:F2:38:46:C5:90:69:BE:5B:9E:6D:33:81:07:A6:44:78:DF:F7:A1
Authority key identifier: E6:2E:E8:24:22:B7:84:99:12:29:63:61:40:46:49:A7:FF:EC:98:E5
Certificate issuer:       /CN=e62ee82422b7849912296361404649a7ffec98e5
Certificate serial:       019CAF47F335BA9B5DFD3E182C70A8B19987
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
Manifest number:          0F08
Signing time:             Mon 02 Mar 2026 16:00:53 +0000
Manifest this update:     Mon 02 Mar 2026 16:00:53 +0000
Manifest next update:     Tue 03 Mar 2026 16:00:53 +0000
Files and hashes:         1: 5i7oJCK3hJkSKWNhQEZJp__smOU.crl (hash: zDQISoAeMgrzAjCg568F7jftqayyeUiD4frPlCN31Rw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 15:05:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:af:47:f3:35:ba:9b:5d:fd:3e:18:2c:70:a8:b1:99:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e62ee82422b7849912296361404649a7ffec98e5
        Validity
            Not Before: Mar  2 16:00:53 2026 GMT
            Not After : Mar  3 16:00:53 2026 GMT
        Subject: CN=19f23846c59069be5b9e6d338107a64478dff7a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:f6:c8:17:8b:3f:c5:84:f3:3c:a9:d2:e4:37:
                    6c:f3:8b:58:0d:b0:50:14:50:3a:6a:30:51:64:86:
                    e2:bd:32:d0:bd:7b:ef:c7:aa:45:7a:8c:1e:1f:37:
                    19:44:12:30:21:3a:17:d3:90:a7:20:c1:be:2c:29:
                    6b:da:82:22:ae:27:0f:7b:03:38:2b:a4:64:d6:6f:
                    68:dd:ff:35:dd:db:c6:03:49:f6:39:20:bf:e9:cb:
                    e5:3c:d2:e0:5d:3c:f2:56:ed:ab:cb:b7:75:25:86:
                    35:c1:fc:b6:24:3c:2d:4c:cb:1e:0d:d6:33:67:f5:
                    b9:94:77:d6:16:10:48:6a:19:76:99:da:c2:f4:8c:
                    a1:fb:8a:2c:3e:76:c1:10:02:10:27:eb:82:f7:d3:
                    c7:b9:d3:7c:07:1e:24:1a:23:91:2a:0d:67:cf:87:
                    13:3e:ed:f0:f6:2d:b1:49:24:49:33:e2:4f:13:69:
                    50:be:b9:19:c7:52:05:37:66:1a:d8:8b:2b:7d:bf:
                    49:e0:a5:a9:5f:b1:7f:99:2d:b4:ca:5a:bf:52:0c:
                    4d:97:e7:0d:c2:1c:3f:fb:e3:9d:70:b0:56:24:3e:
                    0b:e9:a7:9b:63:d8:65:10:33:c5:e3:af:d8:3f:54:
                    78:74:bd:68:41:54:2f:78:9e:9f:a8:b4:56:7d:dc:
                    51:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:F2:38:46:C5:90:69:BE:5B:9E:6D:33:81:07:A6:44:78:DF:F7:A1
            X509v3 Authority Key Identifier:
                keyid:E6:2E:E8:24:22:B7:84:99:12:29:63:61:40:46:49:A7:FF:EC:98:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:0e:73:4d:7c:69:08:21:7e:24:ef:ee:92:fe:bd:ff:0c:b2:
         67:ad:70:21:d5:7b:13:c5:9e:b5:b6:de:ed:17:74:c1:3a:b2:
         11:49:50:a7:c4:08:a2:ea:55:eb:4d:fb:82:57:dc:24:68:8b:
         58:01:e4:25:0b:6e:1c:2a:48:67:89:87:32:b3:27:0a:9f:dd:
         90:14:66:4e:f8:b5:be:90:9c:72:b8:ca:39:35:5d:51:3d:19:
         9c:1d:c3:f6:a2:54:e7:2b:d9:44:bf:a6:3c:e0:cf:dc:99:cd:
         29:ba:c9:06:6c:7e:c4:b0:52:62:f1:de:ca:2e:24:2b:5b:c3:
         8e:cb:f7:93:6f:cb:fd:a4:0a:37:ee:15:10:c8:8d:95:46:0a:
         9c:6e:ba:e9:55:fb:b3:bd:25:8c:e6:3d:00:0f:cd:8b:a6:79:
         d5:58:83:b3:e4:c3:5e:a8:c4:7e:45:6e:13:77:ef:05:c9:e1:
         30:71:ab:45:e0:81:1c:bc:83:ed:17:d9:a8:02:0d:34:4b:82:
         b1:5f:49:f9:0b:ad:d4:65:92:4c:be:db:00:47:9e:2d:ad:a7:
         ee:ca:43:d6:5a:82:26:ff:51:ad:aa:97:60:35:4a:f7:10:3a:
         50:b2:39:7e:e0:7b:1d:81:2b:ab:37:af:5b:03:e7:04:23:08:
         cf:b6:ed:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----