Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File:                     1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier:          Rvz1leS0WzJZjOAVeaGCd12QGf/mVVN2oq2387NX5HI=
Subject key identifier:   AC:4A:71:B6:98:1A:51:2E:80:E7:20:BC:23:84:1F:0D:D9:20:95:61
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer:       /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial:       019EBEECCEEDDF3891C9950741F15B2B0C9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number:          0671
Signing time:             Sat 13 Jun 2026 03:00:50 +0000
Manifest this update:     Sat 13 Jun 2026 03:00:50 +0000
Manifest next update:     Sun 14 Jun 2026 03:00:50 +0000
Files and hashes:         1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: 1QA1DyRjG4U6FpD+1kF7SuCpMUxS5kzZcwwkFRfXLm4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:ec:ce:ed:df:38:91:c9:95:07:41:f1:5b:2b:0c:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
        Validity
            Not Before: Jun 13 03:00:50 2026 GMT
            Not After : Jun 14 03:00:50 2026 GMT
        Subject: CN=ac4a71b6981a512e80e720bc23841f0dd9209561
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:c5:87:b3:14:2e:57:f8:0b:eb:18:50:57:56:
                    6a:45:7b:48:33:58:22:88:1c:de:19:91:78:0d:16:
                    ec:e8:c1:df:b8:48:2e:27:1a:70:d0:12:d7:b8:4a:
                    65:07:9e:4b:21:2a:4b:05:18:f3:70:ef:c7:f1:d3:
                    42:4c:54:5c:1b:5c:dc:36:82:d7:e5:8f:e2:a2:ae:
                    53:09:20:11:db:45:28:8c:65:c5:a2:59:29:51:c1:
                    19:bb:8f:a8:a4:1b:7d:96:8f:c1:cb:e4:25:a9:8e:
                    6c:5e:c2:a6:f7:55:77:fb:4f:e7:6f:11:99:ff:65:
                    b5:b8:42:21:b7:b6:81:96:c4:18:b2:8f:a6:74:59:
                    ed:01:20:c2:ec:35:25:d2:f0:fd:f2:46:4c:3f:ae:
                    2e:35:22:88:b1:95:ed:f6:74:ea:c7:2f:17:9f:4d:
                    1f:d5:de:a1:03:a8:0b:16:e8:9b:0e:92:22:72:5a:
                    14:7b:6f:eb:1a:49:1e:f2:f9:be:26:42:41:69:89:
                    4f:0a:39:6d:2a:d9:f7:f0:b2:90:de:49:19:32:b2:
                    96:9c:15:70:b8:fb:57:4c:b2:a5:d5:07:c7:b0:61:
                    bc:56:97:07:de:42:ea:97:8c:bb:50:b2:83:50:7a:
                    7b:da:63:5d:d4:77:57:2e:0e:87:b1:1c:ae:a5:48:
                    14:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:4A:71:B6:98:1A:51:2E:80:E7:20:BC:23:84:1F:0D:D9:20:95:61
            X509v3 Authority Key Identifier:
                keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ee:92:c5:fd:53:37:83:0d:76:62:82:09:cf:23:b8:bc:4c:55:
         0c:bb:93:79:93:d4:73:d2:9c:67:92:9f:3f:13:4d:be:43:28:
         ca:98:08:b4:0c:0c:92:b0:84:ad:d2:ee:01:bb:57:5e:74:1f:
         1d:70:43:9d:90:be:23:7f:58:ba:fa:f8:58:59:fe:ba:45:13:
         cb:d4:25:58:bc:bf:09:56:a4:a6:53:97:c7:ba:27:10:04:9a:
         92:e7:94:93:04:c7:65:c4:68:00:64:c0:a1:e3:be:8b:de:53:
         af:b1:44:ce:e3:09:26:bb:35:13:3c:02:9a:ef:c3:b9:a4:a5:
         2b:da:fd:37:4b:dd:dc:24:30:d9:8c:78:08:ad:3d:e2:3f:5b:
         43:e6:ab:4b:49:00:66:4a:b7:2b:22:1e:36:e7:18:e7:cd:3d:
         ab:0f:2c:55:d3:9f:b5:bc:af:43:5b:ac:06:21:53:44:bf:82:
         06:65:fb:ee:9a:47:35:c0:d9:8f:ec:2c:c3:e3:87:48:b9:16:
         9b:32:a5:d5:39:d9:33:b7:60:9a:d7:1e:33:2f:2d:0b:bd:22:
         c8:ee:c0:e9:da:77:79:4d:7a:3e:73:a3:85:72:d1:85:61:b8:
         c9:0c:88:53:25:57:c7:f6:82:b9:d7:3b:6b:ad:f9:59:69:4a:
         57:6e:18:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----