Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
File:                     GyN3Poe34e0LVeFQuncWsYJbPiY.mft (raw, json)
Hash identifier:          hJeNiobx3RGFR0UkRzh66Z7jHxOKFrBzQWQIsiGFVS0=
Subject key identifier:   45:D2:F1:27:F4:AA:89:7C:75:E0:F2:9F:70:21:E3:48:D4:60:63:20
Authority key identifier: 1B:23:77:3E:87:B7:E1:ED:0B:55:E1:50:BA:77:16:B1:82:5B:3E:26
Certificate issuer:       /CN=1b23773e87b7e1ed0b55e150ba7716b1825b3e26
Certificate serial:       019D98F4A25181ECCE654E76C01BD26AC779
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GyN3Poe34e0LVeFQuncWsYJbPiY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
Manifest number:          15FF
Signing time:             Fri 17 Apr 2026 01:01:02 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:02 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:02 +0000
Files and hashes:         1: GyN3Poe34e0LVeFQuncWsYJbPiY.crl (hash: c5zHiGcxJZqOxE+oqAEHIONxXtw7ktJNh2wpN69UHeM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GyN3Poe34e0LVeFQuncWsYJbPiY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:a2:51:81:ec:ce:65:4e:76:c0:1b:d2:6a:c7:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1b23773e87b7e1ed0b55e150ba7716b1825b3e26
        Validity
            Not Before: Apr 17 01:01:02 2026 GMT
            Not After : Apr 18 01:01:02 2026 GMT
        Subject: CN=45d2f127f4aa897c75e0f29f7021e348d4606320
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:46:d6:55:c0:9c:56:2d:02:73:ef:70:b7:9d:
                    aa:96:83:a8:00:a4:61:87:21:0e:26:e0:ec:bc:c6:
                    af:b0:13:f0:1d:bf:83:2b:e0:ab:02:c8:f1:d4:b4:
                    e0:1b:25:39:a8:4f:57:d1:bb:82:ea:33:f4:75:3f:
                    63:d1:3f:76:ee:7d:8e:01:52:ba:8b:57:78:f2:32:
                    e8:3a:80:5c:2e:81:0e:6e:f0:ce:8a:35:94:60:1b:
                    9e:4a:88:7d:36:77:70:49:37:eb:75:c5:67:6a:b7:
                    b7:7a:3a:1e:63:4d:65:38:08:f6:48:37:a5:c7:50:
                    94:23:08:e2:cb:24:35:5f:43:55:38:99:24:c3:4a:
                    b4:6e:e6:d5:1f:bb:66:be:b1:38:40:1c:25:8f:70:
                    8c:00:f3:84:8f:82:d1:98:4a:9e:4f:8a:88:1b:0d:
                    e3:f0:d2:17:0a:f5:a1:ba:21:82:49:64:34:7c:11:
                    a4:9e:f3:a1:cd:0d:60:9f:0e:49:ee:07:9f:d8:e1:
                    f0:73:b0:d4:df:c2:52:ec:61:0e:28:3a:e4:91:70:
                    97:15:05:39:d4:81:69:19:cf:ba:e8:33:f4:a1:98:
                    17:83:6d:91:95:ed:43:7a:a6:e8:cd:d4:c9:25:f2:
                    a7:ed:50:5c:69:2b:39:9a:cc:33:3f:83:28:ac:9a:
                    b5:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:D2:F1:27:F4:AA:89:7C:75:E0:F2:9F:70:21:E3:48:D4:60:63:20
            X509v3 Authority Key Identifier:
                keyid:1B:23:77:3E:87:B7:E1:ED:0B:55:E1:50:BA:77:16:B1:82:5B:3E:26

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyN3Poe34e0LVeFQuncWsYJbPiY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:42:f5:c0:b0:26:6c:94:45:d8:f4:5a:e8:ae:e8:31:df:dd:
         54:92:18:40:02:4c:a4:1d:52:0f:6c:b0:8c:2e:07:d9:c1:f6:
         a9:b1:33:be:f5:7a:23:9d:30:f6:5d:e6:7a:22:0f:78:63:41:
         07:7c:a7:e4:5a:5a:ac:28:8e:24:8a:65:d6:60:6f:7a:ab:60:
         f7:1f:ad:1a:36:3d:f4:29:ce:48:b8:53:da:ce:a9:34:dd:fb:
         97:6b:a5:b7:3b:17:8c:26:55:7d:ce:9d:4c:a7:bb:62:6f:c3:
         8f:8b:64:66:3b:bb:ef:44:ac:37:ab:90:5c:19:a0:6c:2c:91:
         ab:69:25:39:e2:fa:b3:9d:24:d3:5a:95:31:2a:1b:a4:b4:63:
         5f:18:b7:19:2f:1d:b7:ab:74:85:cd:42:3c:ce:70:2c:a6:fe:
         41:9f:68:e6:10:16:7e:b6:9b:47:98:43:7c:32:7e:49:09:da:
         ea:30:3e:60:75:40:ce:fa:56:00:bf:90:3d:68:49:1d:c9:2e:
         f7:ce:7c:5d:3d:47:f1:9e:e9:44:d0:53:57:8c:17:44:86:87:
         84:56:2a:22:39:96:2d:3c:80:e9:b3:00:86:c4:f7:94:5f:bd:
         70:77:45:bc:8c:84:bd:44:fe:f9:2e:2c:b8:a0:ee:c6:07:5f:
         e4:a8:17:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----