Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
File:                     Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json)
Hash identifier:          kyAf3N1VVAVjiNc+Qzox31mCUQA2oCvOXXm4Cfr2ttY=
Subject key identifier:   3F:30:BE:07:78:89:81:F3:8A:8C:B8:FF:D3:03:95:68:13:03:C5:5D
Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE
Certificate issuer:       /CN=61e7efd19af275479426cc1925c5bc2eceee9ace
Certificate serial:       019CAAC630C452307C5C951A9D9B97C65713
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
Manifest number:          1757
Signing time:             Sun 01 Mar 2026 19:00:41 +0000
Manifest this update:     Sun 01 Mar 2026 19:00:41 +0000
Manifest next update:     Mon 02 Mar 2026 19:00:41 +0000
Files and hashes:         1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: oMEVz1Y0ieAI3iLDpeEye4y7zk+ZxRATzm+Mv/boROU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 19:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:c6:30:c4:52:30:7c:5c:95:1a:9d:9b:97:c6:57:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace
        Validity
            Not Before: Mar  1 19:00:41 2026 GMT
            Not After : Mar  2 19:00:41 2026 GMT
        Subject: CN=3f30be07788981f38a8cb8ffd30395681303c55d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:2a:8e:0b:b7:da:52:a7:9a:dd:93:f7:a8:d4:
                    44:5d:18:e9:bc:2f:a9:10:ce:fb:10:a1:27:b2:b3:
                    a4:ff:f5:c3:66:e7:b5:2f:17:75:fd:ee:c6:94:cf:
                    ec:43:f2:fa:10:d5:6e:4b:56:97:0d:4b:98:a4:08:
                    15:98:4b:e8:23:fc:43:74:2f:ab:d0:5f:1e:62:e3:
                    d6:67:be:a1:d6:5e:53:48:e0:7b:de:ff:51:71:00:
                    f4:b9:9d:7a:cc:fc:1d:d8:ae:48:c9:00:de:89:0c:
                    e7:8d:a2:23:77:82:cc:d8:f5:b6:48:42:13:bb:40:
                    be:1e:c2:1a:f0:14:09:70:02:24:69:2e:07:34:3f:
                    b3:57:38:ae:2b:06:9a:9d:1e:ab:47:41:7a:1e:18:
                    09:0d:45:54:1b:e5:88:96:c5:e1:f7:2e:1f:13:94:
                    70:3b:be:93:18:f3:5f:d1:5c:9c:22:47:bd:5e:0b:
                    59:91:9c:fc:60:aa:34:fb:52:26:c6:8c:63:c3:bd:
                    1c:90:42:e1:1e:6e:bc:5e:e8:79:86:05:34:75:41:
                    08:e4:c9:0f:cd:ee:5a:e4:f1:97:0b:1c:6e:47:b8:
                    27:e2:0f:93:be:31:56:16:0e:15:b0:d8:42:e2:0f:
                    54:b4:5c:7e:31:16:4c:22:68:16:70:be:e2:49:33:
                    8f:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:30:BE:07:78:89:81:F3:8A:8C:B8:FF:D3:03:95:68:13:03:C5:5D
            X509v3 Authority Key Identifier:
                keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:7a:4b:84:1f:7c:94:6e:e0:c4:ef:25:f5:68:5a:2e:80:d1:
         bd:08:7f:85:80:17:fd:20:8e:aa:f3:c8:b2:3f:d0:a9:d3:f6:
         1d:6a:e6:69:af:70:06:c5:37:6a:7c:1f:d8:a3:64:b8:cf:8b:
         3c:78:3d:ea:4f:66:3d:84:3e:be:93:68:a6:3c:2a:e5:80:60:
         5c:0f:97:92:5a:b3:4e:4b:87:ff:9d:97:f2:87:f2:0a:74:43:
         cb:b7:0d:b8:81:2c:00:e5:64:5d:7b:f3:9b:14:d5:ab:e8:49:
         9f:a8:f5:6a:15:b0:74:86:61:c1:52:d2:62:ed:da:67:1d:6b:
         84:07:eb:ae:c5:af:36:13:20:3a:18:aa:8a:03:a0:49:b6:db:
         17:11:90:ed:e7:c4:0f:44:78:ce:2b:48:56:e4:64:2c:2a:b1:
         5a:33:87:b7:c0:a6:d9:26:3b:08:8f:ec:56:93:4e:cc:1a:2f:
         38:c7:fe:40:aa:7d:c6:57:48:df:ea:73:35:27:93:15:c7:e7:
         f6:e2:8a:ab:d0:b9:21:c3:df:db:ff:c7:b1:4c:34:10:de:94:
         6d:49:ae:39:d4:4c:82:58:e0:21:09:02:66:7e:14:b5:7a:92:
         5c:5e:ed:cd:54:31:1c:41:7c:45:31:d3:dc:3f:db:75:5a:0c:
         71:1d:4c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----