Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
File:                     Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft (raw, json)
Hash identifier:          aiGFrpeXejrkl6wtbisa0Y1haBm+Xe0oKqnBeNNvhwc=
Subject key identifier:   2F:25:4D:32:9E:74:C8:19:AD:95:38:A9:02:44:A6:CD:8B:29:3A:8F
Authority key identifier: 49:BA:74:C8:CB:E1:E2:7F:AC:A5:C6:7E:89:D3:F6:23:C1:F0:9A:5E
Certificate issuer:       /CN=49ba74c8cbe1e27faca5c67e89d3f623c1f09a5e
Certificate serial:       019D984FC618489E2A29F5AA39534EDBEF54
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
Manifest number:          1356
Signing time:             Thu 16 Apr 2026 22:00:58 +0000
Manifest this update:     Thu 16 Apr 2026 22:00:58 +0000
Manifest next update:     Fri 17 Apr 2026 22:00:58 +0000
Files and hashes:         1: Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl (hash: R+lnPCXcWJ/g3LFz5pPrsuf0FugwxR1RZDDYSjpa5gY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:4f:c6:18:48:9e:2a:29:f5:aa:39:53:4e:db:ef:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49ba74c8cbe1e27faca5c67e89d3f623c1f09a5e
        Validity
            Not Before: Apr 16 22:00:58 2026 GMT
            Not After : Apr 17 22:00:58 2026 GMT
        Subject: CN=2f254d329e74c819ad9538a90244a6cd8b293a8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:06:7f:f5:fa:8e:98:ce:bb:97:0d:f1:ac:11:
                    f8:5c:de:7d:08:08:1e:35:05:d4:bc:ee:8c:8e:18:
                    9a:71:42:04:14:ac:de:e3:ee:97:1a:b3:6e:e5:c0:
                    ab:77:82:a9:9e:a9:e9:89:f0:13:73:ad:6d:9b:9d:
                    7a:5f:ee:f9:58:52:14:99:6e:e3:42:ae:1e:fe:3c:
                    72:64:92:fa:c7:25:10:48:c6:09:db:09:f1:e9:33:
                    fb:83:b7:14:96:61:61:35:56:4d:c8:8b:58:48:e3:
                    8e:50:4d:30:96:ce:98:36:31:37:de:5d:2a:97:d3:
                    9d:c1:3e:af:b1:a7:d0:6d:82:5a:49:5f:10:c6:9f:
                    af:58:50:2a:d2:37:95:50:96:bd:63:16:d2:0c:b8:
                    de:a1:8e:c0:9d:3f:f1:f4:33:dd:16:ca:12:a3:29:
                    70:61:6f:92:4c:1c:54:f3:70:45:13:f7:77:d0:ad:
                    d9:39:e1:fc:48:08:6f:28:0f:81:0a:a9:48:5e:90:
                    5b:04:5a:f9:24:88:da:ef:bc:13:b9:72:54:17:99:
                    f5:e2:77:9d:2b:67:83:fc:e2:fe:2b:b3:11:c0:03:
                    1e:c8:5e:ef:2f:06:80:ef:18:4a:6a:bb:57:10:a2:
                    83:34:1c:bd:45:96:00:46:1a:cb:ce:de:70:e8:94:
                    fb:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:25:4D:32:9E:74:C8:19:AD:95:38:A9:02:44:A6:CD:8B:29:3A:8F
            X509v3 Authority Key Identifier:
                keyid:49:BA:74:C8:CB:E1:E2:7F:AC:A5:C6:7E:89:D3:F6:23:C1:F0:9A:5E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:f3:68:da:24:f5:9d:ce:b1:a0:14:9a:6e:3a:67:36:e4:fd:
         e3:23:db:75:5e:43:e6:07:0d:fd:d7:c3:32:71:7d:7f:01:ed:
         29:cf:9d:e5:1a:81:f9:ec:40:f7:b5:14:3e:5c:de:42:7e:cb:
         51:f8:12:68:23:4d:16:c0:75:6d:fe:12:a4:3f:77:ca:8e:90:
         43:43:80:b0:5f:0e:83:c2:9d:cd:27:7d:d8:05:e2:a5:e9:a6:
         d0:72:44:3b:48:bf:85:9d:83:ae:7c:26:6c:a1:53:4a:e3:6a:
         90:f2:26:e2:2c:e9:a5:13:48:d8:91:82:95:29:9c:8b:d5:7a:
         47:18:0c:60:c2:1b:9b:2d:74:03:35:10:29:30:47:36:a4:84:
         dc:1b:e3:5e:80:98:2c:76:44:6b:be:ca:58:a1:25:f2:78:c3:
         5d:5e:3c:86:93:19:0c:57:06:4f:8a:82:5a:ee:47:7d:61:88:
         47:fc:82:ae:a1:ed:4c:7a:2a:ce:5b:5b:9d:86:a9:0f:42:36:
         3c:44:15:09:ef:b8:0f:42:1b:66:97:01:01:d1:0e:33:30:2b:
         18:32:d7:f5:a9:28:af:6f:74:ca:f3:83:05:04:ae:82:ac:3b:
         91:6e:fc:b8:65:3e:5e:d9:99:29:6f:be:6a:3c:da:2c:9e:2b:
         0a:ce:9d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----