Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File:                     0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier:          KJfdJPf1SOY7w8U7pb1OfukR1W8XIwGaLAaBPJaUJSs=
Subject key identifier:   C4:4A:9A:E9:F6:1F:5D:12:5E:FA:67:34:EE:68:28:4C:8A:47:F9:98
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer:       /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial:       019DA566E2A1C3B7E7C7BFC99C7E68CFAF97
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number:          18C2
Signing time:             Sun 19 Apr 2026 11:01:16 +0000
Manifest this update:     Sun 19 Apr 2026 11:01:16 +0000
Manifest next update:     Mon 20 Apr 2026 11:01:16 +0000
Files and hashes:         1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: 1Q/XiDK9dtIRgXV6CulC5PIKJkDlw8l948AYjf5LhHo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Apr 2026 04:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:a5:66:e2:a1:c3:b7:e7:c7:bf:c9:9c:7e:68:cf:af:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
        Validity
            Not Before: Apr 19 11:01:16 2026 GMT
            Not After : Apr 20 11:01:16 2026 GMT
        Subject: CN=c44a9ae9f61f5d125efa6734ee68284c8a47f998
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:21:89:c4:2c:a9:77:13:16:ae:ee:a2:85:06:
                    e1:b4:5e:d6:3e:92:d0:42:cb:36:ff:22:9e:32:62:
                    38:2e:0c:4b:cc:77:4e:7a:b5:87:4a:82:f9:77:7d:
                    0b:20:b8:f4:cf:54:58:0c:7d:f6:cf:df:bd:13:eb:
                    71:ca:f5:13:5a:dd:25:2c:57:26:43:08:85:5d:eb:
                    ec:80:5c:51:b4:e1:6f:1c:56:fe:3b:3f:83:9f:19:
                    94:e2:87:2e:08:f1:5c:26:ad:80:b7:6c:28:c8:bb:
                    40:0a:65:e6:fb:b2:6d:5a:d3:0e:c1:d1:28:fc:d6:
                    04:9b:1e:22:46:c3:06:f1:6f:5b:1c:cf:0b:ff:9f:
                    76:7a:0f:15:2d:22:35:ad:cd:48:10:98:72:b5:75:
                    a1:64:34:9c:54:43:6f:c0:c2:06:8a:d2:1a:9e:33:
                    3e:15:99:12:43:e7:68:43:49:ca:e0:8e:c4:6b:10:
                    a1:e9:c8:60:cd:25:d0:52:47:9f:b7:d8:24:3c:d4:
                    b4:40:72:cd:59:5d:ea:87:a8:31:58:cb:d2:13:0a:
                    ce:8d:7f:52:38:fd:2a:39:cd:22:17:1c:dd:78:82:
                    71:b0:96:fc:db:fe:03:ef:c6:63:96:82:87:ff:35:
                    d1:db:95:f2:b2:7f:92:d9:83:48:7b:d7:a8:e8:05:
                    ed:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:4A:9A:E9:F6:1F:5D:12:5E:FA:67:34:EE:68:28:4C:8A:47:F9:98
            X509v3 Authority Key Identifier:
                keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:aa:94:b7:3c:e7:2b:c8:ab:f7:db:f1:eb:9e:18:81:9b:c5:
         40:96:27:ff:07:74:2d:df:b9:59:88:3f:b3:2c:58:d9:f6:9a:
         cb:fa:99:33:c3:12:ca:6b:fa:e1:20:4c:60:8e:c9:dc:b7:64:
         d6:42:fd:0b:3d:93:34:b9:a3:57:91:d1:a6:b4:47:69:3c:ad:
         e9:2f:c5:c6:dc:6e:2b:ba:1a:e5:7a:1d:62:3b:4b:12:5b:fc:
         17:61:94:c2:ec:43:29:b1:7b:65:2b:8a:bd:9f:ba:77:96:65:
         6e:f6:7c:7a:5b:c5:1c:4c:6e:0d:1f:84:17:49:88:8e:e7:eb:
         26:02:0e:36:a0:a5:75:66:c9:33:69:de:21:b8:a1:ee:32:9e:
         1e:8b:6a:9b:33:03:94:05:2d:d0:43:1a:08:12:96:1d:e6:a3:
         1e:3a:eb:b3:d7:43:af:d5:10:ee:c9:cc:90:46:a5:00:9e:12:
         59:f6:08:d5:cc:11:d4:ff:b3:38:89:10:c7:6a:41:86:0a:59:
         84:81:41:96:7a:16:05:3a:24:15:36:5e:2b:29:1d:72:70:6e:
         22:0d:2f:d8:8f:56:70:0d:eb:bf:2d:21:7f:14:2f:1e:06:f0:
         f2:3a:bc:50:e7:5e:c4:94:7c:71:20:cc:2e:56:76:d3:02:5c:
         e3:0c:56:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2lZuKhw7fnx7/JnH5oz6+XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxNjJkNGNkMGMxYTlmZmUyNGFkNTE1M2QxOWNlOWMzMWRj
YjRjN2QwHhcNMjYwNDE5MTEwMTE2WhcNMjYwNDIwMTEwMTE2WjAzMTEwLwYDVQQD
EyhjNDRhOWFlOWY2MWY1ZDEyNWVmYTY3MzRlZTY4Mjg0YzhhNDdmOTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyGJxCypdxMWru6ihQbhtF7WPpLQ
Qss2/yKeMmI4LgxLzHdOerWHSoL5d30LILj0z1RYDH32z9+9E+txyvUTWt0lLFcm
QwiFXevsgFxRtOFvHFb+Oz+DnxmU4ocuCPFcJq2At2woyLtACmXm+7JtWtMOwdEo
/NYEmx4iRsMG8W9bHM8L/592eg8VLSI1rc1IEJhytXWhZDScVENvwMIGitIanjM+
FZkSQ+doQ0nK4I7EaxCh6chgzSXQUkeft9gkPNS0QHLNWV3qh6gxWMvSEwrOjX9S
OP0qOc0iFxzdeIJxsJb82/4D78ZjloKH/zXR25Xysn+S2YNIe9eo6AXteQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRKmun2H10SXvpnNO5oKEyKR/mYMB8GA1UdIwQY
MBaAFNFi1M0MGp/+JK1RU9Gc6cMdy0x9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUt
ZTgxNzIwYTM5NzhkLzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUtZTgxNzIwYTM5Nzhk
LzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6qUtzzn
K8ir99vx654YgZvFQJYn/wd0Ld+5WYg/syxY2faay/qZM8MSymv64SBMYI7J3Ldk
1kL9Cz2TNLmjV5HRprRHaTyt6S/FxtxuK7oa5XodYjtLElv8F2GUwuxDKbF7ZSuK
vZ+6d5ZlbvZ8elvFHExuDR+EF0mIjufrJgIONqCldWbJM2neIbih7jKeHotqmzMD
lAUt0EMaCBKWHeajHjrrs9dDr9UQ7snMkEalAJ4SWfYI1cwR1P+zOIkQx2pBhgpZ
hIFBlnoWBTokFTZeKykdcnBuIg0v2I9WcA3rvy0hfxQvHgbw8jq8UOdexJR8cSDM
LlZ20wJc4wxWkw==
-----END CERTIFICATE-----