Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/168096-c887-476f-b335-118960ef62c6/1/4-d1gqvilic_V6RVSq2m-lwf6bA.mft
File:                     4-d1gqvilic_V6RVSq2m-lwf6bA.mft (raw, json)
Hash identifier:          tJYjl5QJwDEE2wqmRlZeUmdIN3tA78s2lAPZhpnH4Oo=
Subject key identifier:   6D:DD:1F:15:22:D5:29:1D:F0:86:79:EA:E4:78:82:A8:5E:83:B4:CC
Authority key identifier: E3:E7:75:82:AB:E2:96:27:3F:57:A4:55:4A:AD:A6:FA:5C:1F:E9:B0
Certificate issuer:       /CN=e3e77582abe296273f57a4554aada6fa5c1fe9b0
Certificate serial:       019D9BF55C8ABC2B402B3BA0B63677688980
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4-d1gqvilic_V6RVSq2m-lwf6bA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/47/168096-c887-476f-b335-118960ef62c6/1/4-d1gqvilic_V6RVSq2m-lwf6bA.mft
Manifest number:          0789
Signing time:             Fri 17 Apr 2026 15:00:41 +0000
Manifest this update:     Fri 17 Apr 2026 15:00:41 +0000
Manifest next update:     Sat 18 Apr 2026 15:00:41 +0000
Files and hashes:         1: 4-d1gqvilic_V6RVSq2m-lwf6bA.crl (hash: bBnh/2tsNwXP7qSuuq1ztvcMkKqd1biIjOpmGECDqCs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/47/168096-c887-476f-b335-118960ef62c6/1/4-d1gqvilic_V6RVSq2m-lwf6bA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/47/168096-c887-476f-b335-118960ef62c6/1/4-d1gqvilic_V6RVSq2m-lwf6bA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4-d1gqvilic_V6RVSq2m-lwf6bA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 14:47:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9b:f5:5c:8a:bc:2b:40:2b:3b:a0:b6:36:77:68:89:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e3e77582abe296273f57a4554aada6fa5c1fe9b0
        Validity
            Not Before: Apr 17 15:00:41 2026 GMT
            Not After : Apr 18 15:00:41 2026 GMT
        Subject: CN=6ddd1f1522d5291df08679eae47882a85e83b4cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:69:c1:91:ea:ae:a5:d9:b0:61:01:6c:c3:48:
                    98:dd:74:61:de:7b:3f:75:b0:1f:f0:26:8c:eb:02:
                    66:7e:5c:1a:6f:f6:23:ce:df:0a:fe:1f:b9:f6:c4:
                    df:2d:c7:16:36:31:00:62:46:da:0a:ae:f2:f6:33:
                    e6:fb:cc:fe:9d:8a:bc:3f:1d:c5:75:cf:87:fe:5b:
                    37:76:6e:34:66:0d:93:49:0c:05:12:24:b2:f1:8f:
                    22:b6:0b:dc:ec:d2:c7:7e:4d:fb:6b:b6:6b:53:2e:
                    6c:e7:c2:6b:60:9c:3a:f3:e5:9c:16:f0:51:ff:7b:
                    7a:6a:44:1b:9a:c8:fb:b7:b7:e7:ff:4a:82:ac:12:
                    ec:da:19:d1:cb:09:0f:bb:62:9d:ca:2a:01:dd:44:
                    f4:f2:2a:83:89:1e:af:fd:d6:d9:bb:a8:73:64:d1:
                    61:37:9f:4b:39:b7:29:44:f1:4d:33:de:00:91:e5:
                    00:ce:eb:22:d1:20:90:3c:3b:1b:98:3b:6b:57:bd:
                    d5:45:7e:0a:7c:2a:5c:25:a8:6d:17:1d:f8:40:f4:
                    c0:e0:10:df:fd:71:71:33:c7:b7:2b:c2:b1:18:b8:
                    8d:ac:da:bd:14:7c:c3:6c:94:04:a5:ef:ec:0c:23:
                    e1:c7:4a:a9:e5:dc:7b:8a:55:a1:2f:9f:6e:fe:9b:
                    53:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:DD:1F:15:22:D5:29:1D:F0:86:79:EA:E4:78:82:A8:5E:83:B4:CC
            X509v3 Authority Key Identifier:
                keyid:E3:E7:75:82:AB:E2:96:27:3F:57:A4:55:4A:AD:A6:FA:5C:1F:E9:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4-d1gqvilic_V6RVSq2m-lwf6bA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/168096-c887-476f-b335-118960ef62c6/1/4-d1gqvilic_V6RVSq2m-lwf6bA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/47/168096-c887-476f-b335-118960ef62c6/1/4-d1gqvilic_V6RVSq2m-lwf6bA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:d9:16:6d:a8:9a:8f:0e:ec:aa:3d:fa:cb:b5:2d:07:0d:a9:
         34:eb:dc:ce:07:eb:0a:05:c9:48:24:1d:d4:43:42:24:2b:26:
         d1:9b:4d:19:9e:3c:a3:fe:9a:79:2a:ba:d0:3e:e1:60:11:32:
         9d:8d:90:01:e5:0a:30:1b:41:82:2d:cf:db:87:22:13:79:8f:
         f9:89:e2:a6:70:6b:e3:c5:31:bb:f1:86:f2:68:b1:b0:04:1a:
         32:f0:5e:62:64:1d:b0:e9:ab:14:92:88:92:72:e1:12:7f:8b:
         c7:e1:b2:ad:82:19:56:aa:e8:06:29:39:47:81:6f:8d:33:28:
         a6:f8:f1:bb:a2:93:30:ee:95:03:8f:7c:55:db:55:14:ed:72:
         35:e2:1d:57:2f:86:9e:4b:ba:08:e5:a0:99:2e:b0:76:d4:53:
         2b:de:b8:2d:7e:0f:8f:3d:8a:a5:49:67:37:96:7e:6a:98:b5:
         11:71:38:02:c5:38:c2:46:40:79:7b:bd:7a:10:ab:94:c2:49:
         24:56:11:e2:e8:38:f9:27:b1:31:4b:b5:61:7e:1b:be:34:a0:
         ef:4f:94:0d:96:91:da:fb:ed:89:96:b0:84:e4:e4:c0:ab:26:
         4f:66:2a:8b:68:16:7d:17:1e:2a:f8:cd:5e:a1:e5:7f:c2:85:
         ea:c7:d1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----