Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
File:                     vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft (raw, json)
Hash identifier:          Acf2oOuA64au3Azwap3sXdX7DvHBYUIetN1eCqjno+M=
Subject key identifier:   46:9F:2C:2A:19:D9:B7:73:93:3A:EF:C7:43:A1:52:6C:15:00:53:60
Authority key identifier: BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4
Certificate issuer:       /CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
Certificate serial:       019CAD5A3F4ABA4AE66B16071C6F11B3F279
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
Manifest number:          1847
Signing time:             Mon 02 Mar 2026 07:01:38 +0000
Manifest this update:     Mon 02 Mar 2026 07:01:38 +0000
Manifest next update:     Tue 03 Mar 2026 07:01:38 +0000
Files and hashes:         1: vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl (hash: 8hL8xPUo74g5j9m4ivrmELd/68uwNaRZVPuxeY+hz4s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:5a:3f:4a:ba:4a:e6:6b:16:07:1c:6f:11:b3:f2:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
        Validity
            Not Before: Mar  2 07:01:38 2026 GMT
            Not After : Mar  3 07:01:38 2026 GMT
        Subject: CN=469f2c2a19d9b773933aefc743a1526c15005360
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:e0:c7:e7:94:71:e3:6b:4f:40:69:dc:2a:7a:
                    13:ce:20:77:b0:ea:76:61:f2:f0:89:b6:f1:4b:50:
                    89:f6:89:1f:1f:6e:24:57:18:50:f4:50:ea:98:83:
                    80:48:8d:28:21:87:40:78:75:25:3b:df:04:73:0f:
                    c1:f0:26:55:2c:91:7f:d3:79:07:57:93:25:bf:db:
                    83:bd:94:33:21:f2:92:f3:a5:9f:c0:81:f8:cc:2c:
                    02:80:da:be:f8:82:46:b3:43:dd:e6:62:10:f1:12:
                    94:ed:2e:0f:ed:33:b6:fb:53:46:7b:45:53:90:4c:
                    aa:fa:aa:27:47:a9:da:f9:f1:64:af:9c:ff:ce:83:
                    5a:f4:af:ee:7b:aa:e3:18:f0:b6:e6:75:71:b6:c5:
                    01:cc:9e:26:6b:94:b9:d9:7a:26:5a:59:60:7b:23:
                    a1:69:30:59:20:d6:9d:85:be:c4:55:74:b3:c6:95:
                    c8:08:7a:57:a0:f7:3b:2f:31:8f:57:b2:3d:91:43:
                    5f:7d:5c:09:a4:2b:5a:6d:36:97:7e:7b:dc:46:e8:
                    c3:fb:4f:34:44:93:80:6c:0a:86:9b:4e:2e:3d:02:
                    d9:61:e0:c9:ce:9b:6d:b1:75:97:55:2e:5d:34:52:
                    86:f5:37:89:3b:23:ae:b4:32:64:f4:41:be:07:34:
                    13:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:9F:2C:2A:19:D9:B7:73:93:3A:EF:C7:43:A1:52:6C:15:00:53:60
            X509v3 Authority Key Identifier:
                keyid:BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:41:3e:76:79:43:d3:ea:b4:32:ec:b6:50:82:ac:49:70:59:
         76:db:54:cd:4f:1f:5a:58:2c:ee:6b:d0:af:1b:4e:b5:6a:d4:
         a0:45:9c:bb:25:fe:2e:1f:65:e6:dd:8c:ec:3b:5c:ea:8d:a2:
         87:0f:f8:fe:83:77:cf:12:e1:e9:6f:cf:38:88:bc:9b:87:f4:
         e2:62:e0:c3:e9:27:1a:ff:27:02:7c:d6:c8:de:f2:45:4d:ef:
         51:75:98:e3:6f:7e:5f:52:3c:8e:b6:a5:e3:50:46:19:5b:28:
         74:8c:30:04:1c:e8:81:0d:96:07:f6:d5:9f:43:06:48:c3:3b:
         b1:57:1e:19:e5:19:ac:e7:49:8e:d6:a2:34:93:4b:1f:7f:ef:
         28:d0:0f:74:1f:01:7c:01:f1:a7:6a:ee:54:33:00:9c:23:27:
         89:00:ff:e2:c5:59:a3:b7:98:ca:d1:4e:68:d4:8e:af:fb:dc:
         94:57:a5:63:15:e3:15:ed:06:d8:98:cf:a0:6c:f1:83:b6:6e:
         53:24:74:90:66:c4:66:f7:e4:b4:5a:b5:01:61:f0:a6:40:31:
         9f:d0:a4:aa:f8:f3:86:bb:3d:19:b7:a7:72:4b:ba:30:2d:b8:
         a6:f4:0f:74:54:39:1b:2a:d4:ce:30:a3:14:41:0d:72:22:a8:
         b3:86:9e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----