Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
File:                     2nVBcltyi1qJ87-vIPh2VWPC8_s.mft (raw, json)
Hash identifier:          RO3Jg+WBBWX660XQNumQrmlNeHvPDVyICnnxuF4rfCI=
Subject key identifier:   F4:AA:D5:0E:B8:DD:22:0C:74:49:EC:24:C6:CA:9C:26:2A:8D:1E:BD
Authority key identifier: DA:75:41:72:5B:72:8B:5A:89:F3:BF:AF:20:F8:76:55:63:C2:F3:FB
Certificate issuer:       /CN=da7541725b728b5a89f3bfaf20f8765563c2f3fb
Certificate serial:       019EC06D58332C20AF9611DA0E864F2ABA00
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
Manifest number:          1956
Signing time:             Sat 13 Jun 2026 10:00:51 +0000
Manifest this update:     Sat 13 Jun 2026 10:00:51 +0000
Manifest next update:     Sun 14 Jun 2026 10:00:51 +0000
Files and hashes:         1: 2nVBcltyi1qJ87-vIPh2VWPC8_s.crl (hash: j9JfJsfiuHn/rAzrpwNYB4LpzMwwSsDEV8DowEh1K2o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:6d:58:33:2c:20:af:96:11:da:0e:86:4f:2a:ba:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da7541725b728b5a89f3bfaf20f8765563c2f3fb
        Validity
            Not Before: Jun 13 10:00:51 2026 GMT
            Not After : Jun 14 10:00:51 2026 GMT
        Subject: CN=f4aad50eb8dd220c7449ec24c6ca9c262a8d1ebd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:a9:71:0b:e6:d8:10:09:8a:93:8c:e2:cb:60:
                    08:dc:87:92:21:19:64:02:56:f0:3b:52:91:eb:1b:
                    8b:8c:a5:72:0f:8b:85:e7:f8:36:98:e1:05:3b:3d:
                    47:5c:8e:ba:96:88:13:8f:34:33:85:ea:91:1a:ab:
                    63:29:fd:bd:68:e1:9d:fc:11:f9:fc:27:b5:d6:5c:
                    b3:b3:52:fa:34:2f:31:14:55:0b:91:b8:1f:66:84:
                    40:88:ca:64:f6:af:68:d7:9e:6f:ce:dc:8d:9b:dc:
                    72:81:fc:29:f8:1c:28:1a:38:6e:fd:1b:0d:2f:f0:
                    e5:d6:44:17:51:8b:0e:c4:c7:11:5a:60:bc:b8:34:
                    85:0a:aa:c6:4e:17:34:c4:2e:eb:c8:dc:c4:e6:96:
                    36:de:89:ba:d7:dd:09:26:69:23:e2:ca:64:2d:5c:
                    17:4c:24:b9:ab:b8:27:eb:7c:2e:3d:96:49:be:e9:
                    f4:15:b4:6e:65:af:0d:8a:c5:7e:af:c6:3f:f2:b0:
                    87:a2:4a:08:a9:10:04:23:7b:b5:56:44:38:b6:b4:
                    97:97:21:aa:bf:27:7e:31:b0:d4:b5:96:05:83:8a:
                    a2:19:2a:7e:30:06:28:fd:7c:a0:07:b8:25:e1:26:
                    d3:c6:19:0e:52:23:49:45:8d:c7:25:42:eb:52:4a:
                    7e:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:AA:D5:0E:B8:DD:22:0C:74:49:EC:24:C6:CA:9C:26:2A:8D:1E:BD
            X509v3 Authority Key Identifier:
                keyid:DA:75:41:72:5B:72:8B:5A:89:F3:BF:AF:20:F8:76:55:63:C2:F3:FB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:d2:01:a5:f4:e5:ca:09:36:ae:25:a7:32:d1:67:b8:ef:78:
         df:29:e8:3e:36:5b:06:2e:51:b6:4f:df:5a:fc:cd:8e:df:46:
         84:a8:cc:5e:b4:94:f5:f3:18:d4:d5:0b:ca:9b:17:f9:66:45:
         19:2a:91:26:db:ec:6e:2e:e5:7d:93:5a:37:82:87:e5:7d:c2:
         f8:21:65:48:ed:65:3d:46:79:a3:f1:67:e4:4b:55:1d:d7:43:
         81:d2:ac:a7:8c:8d:a0:64:17:77:59:73:30:3f:be:28:f4:ef:
         3b:cf:bb:ac:e7:37:23:26:b1:9b:24:ce:9c:0b:15:a8:b9:eb:
         33:8c:92:73:84:14:29:4a:91:96:2f:55:0a:f3:a4:c9:00:8d:
         9b:e9:10:e9:03:1c:0f:a7:3b:21:e5:b0:77:c0:af:b9:e6:ea:
         d6:13:7a:45:62:e7:c6:50:97:c0:50:eb:20:5d:c9:0c:dc:f2:
         38:52:34:04:c7:b0:2b:f7:36:fe:5c:1b:4e:e0:70:3b:9e:2c:
         f5:c7:ca:cf:c9:4f:3e:b4:c0:80:e6:0a:1e:86:b2:14:e5:d4:
         cc:62:a4:c2:6c:e2:c3:8a:47:d9:5c:e4:f8:0d:49:12:f8:c3:
         56:63:36:ae:4c:3e:5e:1f:8a:97:36:f0:3d:cd:26:b7:28:f4:
         af:77:74:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----