Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft
File:                     76psy3hXNGAC5rvEmPiLnobfGAY.mft (raw, json)
Hash identifier:          LAZo7qJSpBqIOuZSBXZhmWAOly3+tYNHrn0QUOsYrsY=
Subject key identifier:   6C:93:4A:9B:6C:D7:F4:EE:A5:58:ED:8D:2B:14:FF:76:4A:25:A4:24
Authority key identifier: EF:AA:6C:CB:78:57:34:60:02:E6:BB:C4:98:F8:8B:9E:86:DF:18:06
Certificate issuer:       /CN=efaa6ccb7857346002e6bbc498f88b9e86df1806
Certificate serial:       019EBEB598AE98193E641E136FDBFEFC6410
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/76psy3hXNGAC5rvEmPiLnobfGAY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft
Manifest number:          071B
Signing time:             Sat 13 Jun 2026 02:00:32 +0000
Manifest this update:     Sat 13 Jun 2026 02:00:32 +0000
Manifest next update:     Sun 14 Jun 2026 02:00:32 +0000
Files and hashes:         1: 76psy3hXNGAC5rvEmPiLnobfGAY.crl (hash: aGXnmBvIpitPm7fLT9/nLtgZxqUaDQ4bZhvhFffICM8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/76psy3hXNGAC5rvEmPiLnobfGAY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:b5:98:ae:98:19:3e:64:1e:13:6f:db:fe:fc:64:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efaa6ccb7857346002e6bbc498f88b9e86df1806
        Validity
            Not Before: Jun 13 02:00:32 2026 GMT
            Not After : Jun 14 02:00:32 2026 GMT
        Subject: CN=6c934a9b6cd7f4eea558ed8d2b14ff764a25a424
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:7d:bc:7c:c1:cb:06:5a:2c:dc:89:34:5d:e5:
                    73:1a:db:75:f2:1e:be:4e:db:81:d5:97:64:da:20:
                    a8:69:5b:0e:ea:d0:47:24:85:c7:f6:13:e9:1e:c0:
                    5b:c9:2e:75:43:1c:b4:2f:73:01:34:9d:07:cd:41:
                    bf:5e:e3:38:8d:9b:5d:ad:90:db:bc:7c:21:24:2b:
                    09:ca:1a:63:73:29:14:41:18:d8:b7:df:ae:2a:81:
                    f5:73:b8:22:75:21:b6:a8:9b:0e:df:f2:b9:db:45:
                    c8:38:8d:5e:0f:d7:b4:74:7c:4b:3b:3b:32:cc:6c:
                    c5:13:b4:ba:22:d7:23:01:55:6f:53:86:9d:40:0c:
                    84:56:04:42:77:ba:3c:74:4f:ab:ef:38:14:56:72:
                    89:a0:23:92:95:f9:fe:05:4a:22:fe:67:83:c5:98:
                    d6:bd:4a:63:87:55:c2:d4:99:6e:b7:d9:91:27:3f:
                    fc:05:55:1c:61:a5:af:16:73:7e:44:7f:85:4d:52:
                    b8:78:78:9a:c4:bf:3c:45:9c:cd:69:3b:64:b6:b1:
                    16:6c:f9:6e:c3:09:7a:1a:75:cc:27:0a:43:ee:63:
                    3e:e3:f6:be:f0:c2:22:1d:3e:1d:99:f4:5a:2e:17:
                    87:01:03:7e:a0:67:78:a3:3f:ca:55:c5:02:55:02:
                    08:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:93:4A:9B:6C:D7:F4:EE:A5:58:ED:8D:2B:14:FF:76:4A:25:A4:24
            X509v3 Authority Key Identifier:
                keyid:EF:AA:6C:CB:78:57:34:60:02:E6:BB:C4:98:F8:8B:9E:86:DF:18:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76psy3hXNGAC5rvEmPiLnobfGAY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:73:28:28:60:ac:17:5f:2f:b2:84:75:3b:a8:0c:64:37:c9:
         d2:62:90:f3:ef:98:36:9a:0a:c7:4e:3c:b6:56:e6:50:73:72:
         f4:ca:bb:56:d8:57:72:c7:77:40:09:b3:fa:88:da:25:49:10:
         81:f4:df:b9:85:53:a0:4e:83:24:87:f1:aa:99:1a:bb:94:d1:
         ad:63:99:f2:33:c7:b3:83:ba:9b:b5:a8:b4:45:9c:2b:51:bf:
         19:b2:83:7b:10:b0:07:70:51:86:83:f0:90:47:3a:6b:32:5e:
         be:08:36:ec:37:99:a8:1e:ad:a7:e1:e0:73:66:f6:48:53:4c:
         7d:71:09:da:23:8c:34:e4:51:27:56:61:9c:3e:20:2c:f4:9e:
         9c:f7:b4:92:de:92:18:39:b7:f4:0a:99:27:68:a8:7f:c6:74:
         54:3c:03:76:cf:d5:ae:fa:99:e9:2a:37:17:34:5a:1f:01:05:
         a8:ae:f5:5b:2e:4d:63:52:3b:07:d5:10:31:ad:e1:d8:a1:f1:
         91:9c:a7:ca:4b:c8:a2:9b:f1:18:69:0e:cb:8a:c5:8b:77:52:
         e8:77:90:87:9c:de:52:b8:8b:b9:6e:7c:59:d7:56:0b:dc:7d:
         95:86:24:7a:31:7e:88:2e:3b:00:b2:e4:03:fa:76:dc:bf:9d:
         f9:fc:fd:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----