Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft
File:                     hUYNJS18tlxJNM6stG-pbctrVws.mft (raw, json)
Hash identifier:          3iXXAgHHSlumVTQId/jV2BMlHBKpVyntvNIzUq62WxM=
Subject key identifier:   B5:54:D7:4F:2E:B6:8A:D3:52:4A:F2:48:FD:44:4F:F6:7B:83:29:3E
Authority key identifier: 85:46:0D:25:2D:7C:B6:5C:49:34:CE:AC:B4:6F:A9:6D:CB:6B:57:0B
Certificate issuer:       /CN=85460d252d7cb65c4934ceacb46fa96dcb6b570b
Certificate serial:       019CAA8F9816F394BE6F4EE0CBF856C7D9B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hUYNJS18tlxJNM6stG-pbctrVws.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft
Manifest number:          0974
Signing time:             Sun 01 Mar 2026 18:01:03 +0000
Manifest this update:     Sun 01 Mar 2026 18:01:03 +0000
Manifest next update:     Mon 02 Mar 2026 18:01:03 +0000
Files and hashes:         1: hUYNJS18tlxJNM6stG-pbctrVws.crl (hash: I+lKh6nMIC0Ne432NdahcB2DGx7TEW91tDOdUxUVoCo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hUYNJS18tlxJNM6stG-pbctrVws.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:8f:98:16:f3:94:be:6f:4e:e0:cb:f8:56:c7:d9:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85460d252d7cb65c4934ceacb46fa96dcb6b570b
        Validity
            Not Before: Mar  1 18:01:03 2026 GMT
            Not After : Mar  2 18:01:03 2026 GMT
        Subject: CN=b554d74f2eb68ad3524af248fd444ff67b83293e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:5b:72:34:a6:fa:d9:06:81:ca:7a:65:5f:a1:
                    81:0e:22:05:6c:de:ea:c1:9f:9a:0a:e7:b4:8d:ba:
                    04:37:62:80:3b:68:4e:67:99:04:e1:a5:27:02:6b:
                    ab:82:44:eb:64:84:cf:2a:04:ee:cb:04:6b:38:ca:
                    81:3d:3f:8b:f0:ee:87:8b:09:60:fb:49:13:05:5d:
                    e5:28:2b:14:1f:62:a8:ec:b2:32:c0:72:d2:0a:d1:
                    74:c7:fc:3c:80:fa:33:ee:36:71:ef:99:6d:1c:85:
                    21:2b:07:ff:80:b8:7b:11:be:03:41:24:23:54:00:
                    2e:84:21:28:8b:93:90:d9:80:3e:3e:0a:8d:d0:09:
                    e4:b8:34:ca:11:02:ba:41:a5:38:39:de:25:fb:f2:
                    b4:5b:f4:16:45:a1:63:d5:e4:3f:1a:72:a3:15:76:
                    54:5a:e8:72:b1:6e:69:26:13:7c:bd:1c:64:08:2f:
                    de:b3:d2:6d:df:27:1a:15:81:d7:6a:38:21:6c:eb:
                    00:97:c8:47:32:02:7c:22:71:2c:b7:36:50:3c:27:
                    8d:72:e4:c9:c5:d0:e8:32:4d:a3:ce:c9:64:bf:07:
                    8d:e7:58:36:b2:c3:46:4f:1e:94:e8:f2:2b:d5:d1:
                    17:15:8c:e0:1e:98:61:90:68:c2:9c:46:d6:06:40:
                    a2:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:54:D7:4F:2E:B6:8A:D3:52:4A:F2:48:FD:44:4F:F6:7B:83:29:3E
            X509v3 Authority Key Identifier:
                keyid:85:46:0D:25:2D:7C:B6:5C:49:34:CE:AC:B4:6F:A9:6D:CB:6B:57:0B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUYNJS18tlxJNM6stG-pbctrVws.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:82:82:66:e2:fa:93:5f:cc:d1:34:d0:c0:fd:a0:89:44:72:
         66:cc:34:ad:76:e5:4a:9c:cc:c5:9e:9b:1c:ea:3d:63:73:6f:
         24:f0:58:b4:b4:61:e3:6a:ce:d0:af:9c:d7:c6:91:64:3b:b1:
         38:43:fd:50:cb:28:7f:ab:b3:cd:c1:98:54:60:be:65:0f:59:
         41:c0:af:5a:e5:36:d9:9b:94:89:ae:73:0a:c3:45:83:f3:cc:
         c3:b3:a7:e6:d6:b0:62:ad:db:7d:01:55:40:dd:fa:f4:cb:62:
         7f:cc:9d:c7:13:16:c1:8b:8b:e8:d2:09:09:d6:e1:78:49:db:
         63:e1:b3:1a:1e:4a:17:f7:ae:5c:5f:af:3d:35:13:9f:d7:c4:
         13:72:e0:7f:c4:e3:2c:8b:5a:0d:ee:3d:cb:0a:d2:90:46:4c:
         16:8f:56:51:5f:78:06:9a:01:9c:3c:17:a5:43:6f:b8:82:b2:
         ff:71:78:0a:de:67:ed:98:18:14:94:f4:83:ec:b1:31:b1:c1:
         c2:52:b7:38:98:77:c2:97:10:5f:2e:04:a4:a2:b0:e7:7a:73:
         b9:14:45:27:88:6c:9c:80:17:0d:56:5d:8a:ba:26:bb:65:b3:
         38:6d:ce:46:af:de:00:2e:ec:4b:b6:5b:17:64:7f:e6:04:4b:
         51:65:ed:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----