Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
File:                     5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json)
Hash identifier:          JyTvjRqJHZe7gtvRn+2tN4TuYGzs3dwa2sKJHcowMGc=
Subject key identifier:   6A:18:F2:5B:C3:61:79:B2:6E:89:EE:16:54:7E:E9:91:20:48:D4:A2
Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
Certificate issuer:       /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Certificate serial:       019EC2C90E9224460E3BD5A935C37B711A6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
Manifest number:          189C
Signing time:             Sat 13 Jun 2026 21:00:16 +0000
Manifest this update:     Sat 13 Jun 2026 21:00:16 +0000
Manifest next update:     Sun 14 Jun 2026 21:00:16 +0000
Files and hashes:         1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: xGQ8FkzQmk4bOsrf4diNX5DhP+XLejn/6xnGYUQPdko=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 19:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c2:c9:0e:92:24:46:0e:3b:d5:a9:35:c3:7b:71:1a:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
        Validity
            Not Before: Jun 13 21:00:16 2026 GMT
            Not After : Jun 14 21:00:16 2026 GMT
        Subject: CN=6a18f25bc36179b26e89ee16547ee9912048d4a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:91:99:60:e0:0c:98:cf:ba:75:ca:e0:f3:76:
                    41:15:e3:84:32:10:18:7c:f7:30:30:94:a2:86:fe:
                    cb:69:be:ca:77:3d:24:4a:74:c6:e6:bf:f4:6e:85:
                    b2:6f:6b:56:15:3c:c2:db:20:5a:47:c8:0d:01:bf:
                    e4:f1:f4:f6:4d:8a:e1:6d:3c:e2:75:b6:c1:22:40:
                    ec:fa:67:f6:71:94:6f:f2:f8:95:c7:12:1f:a6:45:
                    5e:d2:34:b9:27:ea:e7:3d:70:80:52:91:fc:7f:7e:
                    9f:d8:71:e0:b6:69:43:fa:92:f2:b9:cf:a4:3b:0e:
                    48:ca:24:07:9b:86:b4:9b:1e:05:a7:c0:9f:b8:3c:
                    97:22:aa:30:e5:2b:e5:49:66:5c:96:3b:e1:9a:30:
                    58:3d:a0:58:60:4b:bd:78:f1:a7:52:b5:e9:6c:fc:
                    ef:e6:11:89:26:07:68:67:8f:7d:56:c4:87:f6:8b:
                    33:f5:76:18:6d:b0:73:fd:e2:8a:95:83:73:9a:6a:
                    2c:47:e3:43:1f:02:6b:37:2f:e3:92:1d:b3:31:9e:
                    d5:d3:9c:a2:8e:96:75:9f:81:2f:3f:8c:0a:78:a3:
                    f3:24:7c:73:c8:4a:55:c1:8e:9f:0b:c6:34:62:54:
                    2c:da:7c:64:8e:ce:0f:f6:d8:11:fa:ff:30:10:98:
                    0b:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:18:F2:5B:C3:61:79:B2:6E:89:EE:16:54:7E:E9:91:20:48:D4:A2
            X509v3 Authority Key Identifier:
                keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:3a:ea:e2:72:f6:d4:34:19:bd:60:bb:61:5b:5c:8c:70:cc:
         e5:99:c0:07:85:4f:0e:8b:41:93:fc:bb:65:74:66:67:b4:e1:
         e3:2d:5b:fd:a8:35:54:11:b1:f2:1a:54:39:84:5f:16:46:b7:
         f3:fe:55:bf:6a:16:9a:cb:4e:37:2e:88:b3:ec:cf:65:b3:d8:
         61:9e:38:9c:69:1a:75:2a:d5:95:f4:26:6c:7a:d6:20:bd:56:
         bd:b3:12:81:ac:df:75:2a:d2:d7:79:72:9e:1e:48:fe:81:1e:
         31:cc:0b:92:cd:5b:59:60:4b:eb:bf:1f:c3:da:42:1b:69:7e:
         03:7c:eb:bc:c8:41:09:d3:68:be:cc:a2:6f:2c:b5:97:67:20:
         0c:c6:95:ae:d6:f2:2f:be:67:e4:89:ee:de:1c:48:4c:83:ec:
         03:b3:78:c7:de:ce:c8:4e:41:58:cd:11:d1:3a:89:5b:c4:f7:
         b4:a5:c2:92:0b:42:a0:d8:75:cb:09:9d:d3:8b:22:ac:af:4b:
         d0:1c:cf:eb:46:72:ea:87:b3:12:c4:35:48:1c:b0:51:86:f0:
         ac:f4:50:5e:62:42:ff:6d:20:38:e7:25:75:46:8e:97:c9:61:
         73:2b:42:75:e2:51:d0:5f:db:eb:bb:a4:f8:da:f0:a5:69:40:
         45:89:f3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----