Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
File:                     AonuzqJ5QTJX2JCMJVaKvrivhnc.mft (raw, json)
Hash identifier:          Bwcsc8uKjHxyct0kMGSJ22pZ6KDi0ZEXXShTN0dTGEo=
Subject key identifier:   12:96:4D:C2:1A:3D:B7:31:9E:0C:2C:7E:E6:07:B3:09:FA:36:A0:2A
Authority key identifier: 02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
Certificate issuer:       /CN=0289eecea279413257d8908c25568abeb8af8677
Certificate serial:       019EC0DAB7CD26F007581DA962B772B140DE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
Manifest number:          0ED1
Signing time:             Sat 13 Jun 2026 12:00:19 +0000
Manifest this update:     Sat 13 Jun 2026 12:00:19 +0000
Manifest next update:     Sun 14 Jun 2026 12:00:19 +0000
Files and hashes:         1: AonuzqJ5QTJX2JCMJVaKvrivhnc.crl (hash: Gsi4Ksky492S3FsLpn4k4+h96/syZgjDXPqqB967QKY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:da:b7:cd:26:f0:07:58:1d:a9:62:b7:72:b1:40:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0289eecea279413257d8908c25568abeb8af8677
        Validity
            Not Before: Jun 13 12:00:19 2026 GMT
            Not After : Jun 14 12:00:19 2026 GMT
        Subject: CN=12964dc21a3db7319e0c2c7ee607b309fa36a02a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:d0:e1:d7:fe:c5:00:b3:fa:02:2a:d4:05:0b:
                    59:40:0e:6e:12:63:e2:96:01:d5:8a:09:d8:59:87:
                    91:91:b4:38:dc:c5:b1:90:d8:6a:0d:cf:c4:a5:4d:
                    41:8e:62:dc:a6:01:27:dc:1b:0d:da:57:48:c1:67:
                    7d:ad:3e:ac:c5:92:d1:82:f0:0d:6f:28:aa:2c:41:
                    6e:07:a4:67:92:4a:80:d6:4f:e4:3a:18:a5:78:8c:
                    18:6e:87:ff:51:51:7d:c4:ab:f6:8a:48:d0:f0:77:
                    e4:0d:67:12:f1:b5:05:ca:67:a8:4e:55:df:9b:cf:
                    d5:80:dd:b6:f1:4f:d6:14:22:dd:b3:d8:a4:40:6b:
                    b6:69:09:b8:0d:6b:36:15:18:65:70:0a:fd:18:7f:
                    d6:94:a9:d6:f2:f5:0f:b1:06:26:ca:ca:61:20:39:
                    72:a4:69:33:72:38:31:7f:f7:fd:65:ea:a5:44:9c:
                    1f:0c:e9:0d:f5:ea:79:ef:18:53:d7:96:ed:dc:40:
                    81:96:1a:8f:eb:9f:2d:ed:52:5b:8d:86:51:e8:e5:
                    91:e8:3f:78:13:36:23:e0:b8:49:c1:c0:b3:58:20:
                    b9:2b:c8:b9:49:be:9a:76:56:d7:d9:bc:c2:f7:e8:
                    64:15:78:87:5f:e0:54:c6:67:20:73:9c:70:a3:79:
                    c9:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:96:4D:C2:1A:3D:B7:31:9E:0C:2C:7E:E6:07:B3:09:FA:36:A0:2A
            X509v3 Authority Key Identifier:
                keyid:02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:e2:a9:a4:96:85:02:76:18:31:b7:21:88:ca:e7:59:37:2e:
         1f:09:32:a4:0f:a9:f2:22:d1:d4:97:64:3e:14:4d:f3:80:ac:
         d8:1d:64:34:b7:95:e3:10:23:b1:ac:91:87:e5:62:9d:eb:ad:
         ee:d6:f6:ec:01:19:41:05:c6:10:2e:24:7d:e2:78:f8:8e:27:
         ac:0c:a2:80:a1:4d:d9:29:e3:74:1a:d6:e3:9b:0b:ad:d8:b8:
         b3:70:1c:66:54:94:5e:56:94:f4:0c:f4:99:1f:37:d8:1d:5c:
         25:eb:38:0a:28:4f:79:7a:e1:88:31:fb:51:26:f0:b2:50:b5:
         92:22:17:0e:2c:90:b5:8a:7b:c2:b1:a3:0d:64:68:76:ca:7b:
         6f:ba:cb:fd:50:a9:35:a5:8a:a5:cb:60:3a:4e:46:67:6a:e8:
         29:41:85:b4:f4:90:7d:88:9c:ba:17:f2:e8:d2:47:83:06:ee:
         17:bd:76:65:48:a4:d8:b2:fb:e0:b0:4a:4a:22:4e:ce:12:eb:
         6d:b8:3c:f6:d8:ad:14:0f:9c:2e:f0:e5:d5:21:da:3b:c5:09:
         29:a0:6e:2e:0b:d8:f4:14:15:c3:b6:2e:df:0a:01:e6:f9:9b:
         f4:63:8c:68:c8:24:cc:b3:2d:9f:7a:85:d7:6a:d3:99:c4:53:
         b7:03:d9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----