Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
File:                     vNgzeodIrlhibqk9my9YmNAY3fE.mft (raw, json)
Hash identifier:          yIOmz/MDAto1IlWqpCdowBGi7TleZQcmt6pZu7V16YM=
Subject key identifier:   83:25:51:BF:9C:80:96:A9:5B:EA:53:C8:37:44:4A:4C:A7:A8:F0:30
Authority key identifier: BC:D8:33:7A:87:48:AE:58:62:6E:A9:3D:9B:2F:58:98:D0:18:DD:F1
Certificate issuer:       /CN=bcd8337a8748ae58626ea93d9b2f5898d018ddf1
Certificate serial:       019D99D00AD93B8DBBE67BF00D57E43D54D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
Manifest number:          184F
Signing time:             Fri 17 Apr 2026 05:00:41 +0000
Manifest this update:     Fri 17 Apr 2026 05:00:41 +0000
Manifest next update:     Sat 18 Apr 2026 05:00:41 +0000
Files and hashes:         1: vNgzeodIrlhibqk9my9YmNAY3fE.crl (hash: aL0VSvWa65D21bqjeAwPvAOCvMor9wXqGotfK4PmIUc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 05:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:d0:0a:d9:3b:8d:bb:e6:7b:f0:0d:57:e4:3d:54:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bcd8337a8748ae58626ea93d9b2f5898d018ddf1
        Validity
            Not Before: Apr 17 05:00:41 2026 GMT
            Not After : Apr 18 05:00:41 2026 GMT
        Subject: CN=832551bf9c8096a95bea53c837444a4ca7a8f030
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:41:71:63:74:06:9f:28:6e:28:68:e1:11:f5:
                    b1:6d:02:e7:ad:c5:fb:ad:e1:7a:01:82:de:dd:aa:
                    fb:20:0a:4f:54:2b:e3:9d:20:c0:bb:b2:cc:a2:86:
                    4e:2d:30:47:c7:a2:a2:7f:d2:f5:ac:b9:0d:fb:63:
                    53:ce:a8:11:66:94:f5:52:27:be:da:ae:bf:6c:45:
                    6e:1b:ce:01:4b:d2:d5:02:80:37:5f:38:fd:82:dd:
                    5c:cf:7d:8c:3e:27:74:89:1b:dd:94:00:1c:01:80:
                    b9:32:9a:c1:12:78:4c:52:25:85:1c:c1:8c:dc:43:
                    20:8d:ae:30:4d:7f:a3:d3:2a:ca:a4:69:89:6f:66:
                    a8:ff:8e:8d:d9:f9:ba:4f:88:a0:e0:29:00:ed:e3:
                    f6:55:ba:42:c7:79:38:69:d9:c2:35:1a:b5:aa:c7:
                    13:42:e2:8c:88:bb:9f:fe:9a:8a:71:e2:f2:ca:7a:
                    f5:54:68:28:84:1e:40:f4:c2:68:cf:f2:a6:f8:fa:
                    d4:0d:e5:05:27:c4:2c:39:71:bc:f7:15:ac:de:a4:
                    93:45:76:d2:84:b7:f7:89:33:d2:1f:1f:0d:c3:f5:
                    d6:54:f2:d1:ca:74:e3:b3:9b:db:d5:60:c5:49:84:
                    cd:6b:40:d8:8b:94:f7:7e:ef:1e:33:13:27:b0:3b:
                    af:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:25:51:BF:9C:80:96:A9:5B:EA:53:C8:37:44:4A:4C:A7:A8:F0:30
            X509v3 Authority Key Identifier:
                keyid:BC:D8:33:7A:87:48:AE:58:62:6E:A9:3D:9B:2F:58:98:D0:18:DD:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:2b:53:67:b9:a5:92:79:6c:c4:2e:0c:ae:18:a0:ae:f0:f8:
         29:e8:5b:36:5e:8d:56:ec:af:d1:26:fe:b1:22:ff:ef:e3:b9:
         88:58:0a:c5:30:69:e4:4d:b1:6c:84:a3:fb:6d:be:8b:7c:7a:
         3b:96:6b:48:e5:91:17:f1:08:cd:f1:0b:3d:a6:4b:76:c7:7c:
         ea:fc:97:75:7a:7f:05:81:52:3c:2c:97:ad:9e:c0:c6:b5:26:
         62:14:7f:5f:17:2f:d9:b8:43:80:76:00:27:29:5f:b5:43:02:
         fd:23:d9:9a:fa:ba:85:a4:e1:79:d9:24:90:94:4a:8b:12:42:
         05:3c:7b:dd:7a:db:9f:c6:a9:43:88:1c:22:c3:ee:a9:89:b3:
         f0:50:28:08:15:b2:31:4e:c8:65:9b:ee:fc:28:74:e5:cb:4f:
         28:58:91:62:9e:37:1d:c7:4f:96:fa:dd:4b:07:16:1c:b3:24:
         62:4f:a1:7b:e8:e2:9c:fb:3a:22:45:a5:f4:21:0f:2f:04:0b:
         2b:6f:f4:b7:c3:66:83:61:1c:c1:6d:12:d1:9c:74:c9:89:dc:
         8d:b7:5f:46:dd:f4:c1:23:f5:39:88:57:0e:ae:d8:e1:e9:fb:
         9b:03:8d:ba:95:38:06:6c:97:41:fd:fb:94:33:c8:1e:8b:04:
         15:27:b6:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----