Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
File:                     Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft (raw, json)
Hash identifier:          sIh2Z3JYDJcYwxcLxf0Ud3DIs9lah9OwB84B3h2DX3M=
Subject key identifier:   B2:3E:D2:04:DC:D7:9B:ED:B3:07:3C:DF:B8:7E:59:28:7D:01:76:BB
Authority key identifier: 46:7F:0D:67:62:FE:96:F0:49:E6:EC:33:2D:04:2E:8B:9D:5C:DE:E4
Certificate issuer:       /CN=467f0d6762fe96f049e6ec332d042e8b9d5cdee4
Certificate serial:       019CAD59C1FAE4E295242C93D3175A323960
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
Manifest number:          07A1
Signing time:             Mon 02 Mar 2026 07:01:06 +0000
Manifest this update:     Mon 02 Mar 2026 07:01:06 +0000
Manifest next update:     Tue 03 Mar 2026 07:01:06 +0000
Files and hashes:         1: Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl (hash: yV5aXu+2UrEfxTDTOsDcCgt6nDZNhAPJsUZYfHl/Y+E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 07:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:c1:fa:e4:e2:95:24:2c:93:d3:17:5a:32:39:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=467f0d6762fe96f049e6ec332d042e8b9d5cdee4
        Validity
            Not Before: Mar  2 07:01:06 2026 GMT
            Not After : Mar  3 07:01:06 2026 GMT
        Subject: CN=b23ed204dcd79bedb3073cdfb87e59287d0176bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:6e:ba:80:ef:e9:f0:f8:cc:22:c9:8f:f0:5e:
                    4e:df:fb:65:a2:fd:c5:5c:fd:0b:f6:88:37:e8:3a:
                    d5:69:c7:f3:67:35:0f:b2:3f:41:82:d0:7c:94:fa:
                    ea:6c:93:a0:57:7c:57:ac:83:8a:46:1f:e8:aa:dd:
                    e6:3c:6e:b5:db:9d:5a:6c:30:82:d9:d1:21:08:47:
                    93:d9:08:06:82:ae:7c:cd:ac:09:c8:d3:4c:0b:02:
                    48:64:7c:ef:c0:64:3d:ce:f7:f2:e2:8a:ff:11:6c:
                    bd:34:d5:d4:19:94:68:25:af:0c:bf:b1:e5:bb:16:
                    19:a1:0b:8e:02:52:61:ef:b3:ae:37:dc:00:5f:10:
                    e3:05:bb:fb:38:99:99:92:ee:03:1a:81:64:a5:36:
                    ec:d1:98:c3:72:20:22:bc:f0:ce:27:ee:4d:81:fe:
                    94:16:1c:00:da:e8:e0:95:3b:c0:c0:74:3f:14:a0:
                    00:d7:07:e6:70:28:88:01:76:02:dd:aa:52:48:b7:
                    a2:47:15:a6:a8:c3:5a:74:89:dc:13:7d:3e:82:e3:
                    3b:1d:5d:e1:19:2b:9d:e7:80:44:5c:49:29:41:3a:
                    ce:4b:38:16:38:8e:24:a7:95:d7:da:cb:4f:e4:f7:
                    ac:86:d3:0e:06:e7:26:52:f8:0f:a6:44:3a:a5:02:
                    70:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:3E:D2:04:DC:D7:9B:ED:B3:07:3C:DF:B8:7E:59:28:7D:01:76:BB
            X509v3 Authority Key Identifier:
                keyid:46:7F:0D:67:62:FE:96:F0:49:E6:EC:33:2D:04:2E:8B:9D:5C:DE:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:7d:61:87:0d:bf:6c:f3:22:19:7c:09:b6:b3:66:f6:11:d4:
         98:23:7a:65:0e:bc:c9:88:ea:9b:ba:6c:c2:26:00:e2:a8:9b:
         1c:05:eb:30:81:d5:a8:d1:9a:f6:93:e7:09:a8:aa:8d:00:26:
         54:b0:33:45:4f:f3:cd:93:2c:ce:e5:13:17:87:fa:ee:77:73:
         2c:7f:8a:f3:fb:99:a5:79:a7:22:70:8b:70:c7:61:09:a2:ed:
         21:74:c7:27:69:13:e0:3b:a2:0f:65:69:52:22:63:c8:cb:1d:
         83:6f:ed:0f:f1:09:33:6d:12:89:e7:a6:d9:07:bf:7b:13:1a:
         cb:c8:9c:7f:6d:20:f4:a2:ad:4b:36:1b:3d:62:0a:53:5c:79:
         1a:cf:69:5d:51:6c:de:18:2c:25:04:65:5f:3c:5b:b8:7c:75:
         16:e5:de:8e:54:21:bf:7a:54:56:34:9b:b8:c3:43:28:ed:ee:
         c1:f9:1c:db:e5:02:df:ad:a4:5b:db:0d:c0:fe:f6:d3:ec:d8:
         85:fa:2d:1b:27:1e:54:f5:da:a4:eb:d9:81:ca:10:a5:f2:45:
         0d:68:3b:54:ac:9d:3a:65:a7:51:f3:6b:a6:5f:9a:03:96:d4:
         28:ca:16:fd:ba:1f:90:15:b6:81:fe:f6:c5:52:1c:cf:ae:34:
         a7:d7:1a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----