Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
File:                     F80TGMkZxu8W0kynhGKgt94UugU.mft (raw, json)
Hash identifier:          B9oRY2NRF/BTAcfWrWPpqpOC5QsVuz889lTN1zkUhcc=
Subject key identifier:   9F:74:01:6F:90:2B:F9:00:BB:01:0D:B1:1B:BC:E1:1C:3E:15:09:5B
Authority key identifier: 17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
Certificate issuer:       /CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Certificate serial:       019D9E1B9240D50A3EE6820ECB69EF8C0FF7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
Manifest number:          024E
Signing time:             Sat 18 Apr 2026 01:01:40 +0000
Manifest this update:     Sat 18 Apr 2026 01:01:40 +0000
Manifest next update:     Sun 19 Apr 2026 01:01:40 +0000
Files and hashes:         1: F80TGMkZxu8W0kynhGKgt94UugU.crl (hash: ttx8zYV7RB/LGdZvKHO0FiCPgyl+a5sWptc3DDFDdVM=)
                          2: pf5Zf2vmMKwv3V7bxVEW72mA5Ro.roa (hash: 25kq67NwiLZpvtq/lLKi0cW1juljgXPpgbg4/hkoeJk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 16:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9e:1b:92:40:d5:0a:3e:e6:82:0e:cb:69:ef:8c:0f:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
        Validity
            Not Before: Apr 18 01:01:40 2026 GMT
            Not After : Apr 19 01:01:40 2026 GMT
        Subject: CN=9f74016f902bf900bb010db11bbce11c3e15095b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:60:76:36:17:d6:47:ef:25:b3:72:16:69:5f:
                    f3:fd:77:00:a8:c8:17:f2:ba:db:a0:39:5d:8b:8c:
                    55:92:95:cb:2f:20:22:74:df:96:bd:f0:8c:1f:e8:
                    51:7c:ec:1a:88:f6:76:8d:f8:9b:3d:a8:ab:97:04:
                    d3:5d:e1:30:6c:d5:3c:8e:37:d8:6a:78:f4:c1:6f:
                    c6:db:ed:2b:79:b4:0f:0d:65:c3:4b:9f:90:6d:37:
                    65:ee:72:81:b2:51:71:9e:8c:9c:3a:ab:12:72:5c:
                    d4:f9:46:b6:df:22:62:2f:ae:ca:6b:c7:7e:60:bd:
                    cf:2c:09:e8:c0:4b:a0:d8:e8:86:aa:71:3f:94:86:
                    61:8f:7c:9c:6c:12:f4:93:9f:fc:c5:58:aa:8d:bf:
                    7d:9a:37:1d:ea:7f:67:97:8c:5d:6e:a0:c3:3e:b0:
                    c1:56:de:4f:89:af:cc:f4:f4:94:39:55:f1:f0:02:
                    71:0b:da:78:dc:4f:66:52:d8:bf:85:57:7d:ac:92:
                    73:d6:3f:64:a5:e5:5f:8f:2d:0f:28:81:7c:0b:0c:
                    20:48:60:4b:e4:02:c6:bf:6d:f6:1f:17:ff:d9:73:
                    b8:a9:34:22:0d:35:04:70:0d:5b:4a:01:97:dd:2d:
                    04:a1:e0:51:62:97:49:77:5f:ac:1e:b8:8e:da:af:
                    31:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:74:01:6F:90:2B:F9:00:BB:01:0D:B1:1B:BC:E1:1C:3E:15:09:5B
            X509v3 Authority Key Identifier:
                keyid:17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:0d:c5:0d:cb:90:58:93:c7:f9:49:91:d6:ad:e7:c2:ac:ab:
         99:84:da:ab:3c:7f:61:7f:72:82:02:48:37:01:f7:2c:36:4a:
         73:1d:32:0e:de:00:11:73:82:c3:19:d5:68:06:4f:fd:8d:8f:
         da:ad:5a:3d:46:31:9e:73:6a:83:9e:cd:f0:5c:8c:97:a4:29:
         4f:e5:e8:b8:50:77:8d:e2:ef:aa:a8:76:03:2f:a7:54:08:9e:
         66:3e:3d:76:45:aa:09:ea:c6:3c:3c:92:21:e0:ac:6d:25:99:
         bf:08:06:1d:8f:42:1d:66:88:44:f4:78:7f:dc:f3:e6:13:a2:
         41:40:2b:4e:bb:13:c3:bd:92:a2:7d:1f:c9:bc:f7:66:1f:e6:
         1b:eb:dc:33:96:a4:32:5d:f2:21:20:01:21:c4:97:45:85:ce:
         01:f9:bf:39:6a:42:05:b8:76:ca:9b:a2:1c:4e:e7:ff:94:fd:
         a0:87:6c:78:7c:99:78:41:ac:b9:a2:18:f3:72:90:98:7c:fe:
         28:66:ba:ae:17:f2:8e:49:63:10:e3:d7:93:fd:6f:20:3c:f4:
         86:64:18:91:59:17:27:15:ee:3f:4b:8a:8f:18:ce:30:9d:0f:
         a1:d1:9c:1a:5a:69:6b:28:c6:d8:ce:aa:f4:fc:bf:d1:89:19:
         0b:21:f9:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:01:45 2026 by rpki-client