Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft
File:                     xq11SrfApAHA_x08Ensn1T_cyYE.mft (raw, json)
Hash identifier:          yXSXIdMuZOitupDLjmEPDT5M2vgAT2mQ2w4giPWSw4U=
Subject key identifier:   F3:DA:AD:5E:1E:00:FD:8F:AA:22:F5:48:AD:76:8D:2F:D9:93:DA:FE
Authority key identifier: C6:AD:75:4A:B7:C0:A4:01:C0:FF:1D:3C:12:7B:27:D5:3F:DC:C9:81
Certificate issuer:       /CN=c6ad754ab7c0a401c0ff1d3c127b27d53fdcc981
Certificate serial:       019D98509E8102C1AA22E9DE0EBC627F41A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft
Manifest number:          18BE
Signing time:             Thu 16 Apr 2026 22:01:53 +0000
Manifest this update:     Thu 16 Apr 2026 22:01:53 +0000
Manifest next update:     Fri 17 Apr 2026 22:01:53 +0000
Files and hashes:         1: xq11SrfApAHA_x08Ensn1T_cyYE.crl (hash: qwQVgm1yyLVG3I/k7r1NF80ElDyeEZrFjkaScFxBaq4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:50:9e:81:02:c1:aa:22:e9:de:0e:bc:62:7f:41:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6ad754ab7c0a401c0ff1d3c127b27d53fdcc981
        Validity
            Not Before: Apr 16 22:01:53 2026 GMT
            Not After : Apr 17 22:01:53 2026 GMT
        Subject: CN=f3daad5e1e00fd8faa22f548ad768d2fd993dafe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:b1:b1:b7:db:d5:87:5c:5b:be:5c:df:b7:35:
                    07:4c:3c:81:c2:9f:b5:f4:0d:12:40:34:9c:f2:a0:
                    ae:79:8f:e2:bc:1a:c0:a2:b8:3b:ec:42:fe:c3:ee:
                    f5:ba:40:80:90:ec:f2:9c:2c:36:bf:60:0f:1c:3c:
                    84:3d:08:96:d5:f0:b4:85:76:37:95:c8:09:0e:b3:
                    30:4f:d0:52:65:ed:b9:8e:a1:2b:5d:7b:0c:16:a2:
                    cb:f2:2d:9f:cd:bc:b5:b7:97:57:3b:82:db:00:c8:
                    01:4c:58:11:10:10:75:6d:30:39:f8:92:51:7b:f1:
                    49:92:a9:a2:d2:2e:2c:3b:28:6c:94:4c:da:68:a6:
                    f4:c4:fe:d0:1e:8e:9a:e8:4c:5d:f1:b2:7a:59:98:
                    53:8e:6d:20:12:21:ba:91:07:67:60:99:1b:4e:28:
                    11:e4:23:39:27:4c:e6:2d:c3:73:54:d7:9a:5f:5e:
                    8b:99:48:38:40:13:b7:0a:be:89:45:6e:8f:b1:1d:
                    18:fe:e7:94:7f:06:c2:63:09:67:02:b3:f2:8d:a8:
                    79:8f:22:e4:2f:d6:7a:79:6e:da:fb:08:78:a7:fa:
                    0d:fc:63:9e:16:80:c8:5c:a0:2d:1b:67:ea:e5:7a:
                    c8:42:f9:d2:86:29:f5:b0:37:01:d7:0d:05:75:6f:
                    89:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:DA:AD:5E:1E:00:FD:8F:AA:22:F5:48:AD:76:8D:2F:D9:93:DA:FE
            X509v3 Authority Key Identifier:
                keyid:C6:AD:75:4A:B7:C0:A4:01:C0:FF:1D:3C:12:7B:27:D5:3F:DC:C9:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:e7:c2:23:57:cf:2f:5b:23:6b:81:6f:7a:09:03:b7:7f:4c:
         76:d7:16:33:a1:3c:82:be:e2:22:df:81:8c:bd:8e:0b:d1:cb:
         f4:26:5a:c6:7f:55:73:fe:66:bb:14:03:8b:d7:01:16:d5:e5:
         25:67:6d:9e:14:05:f3:44:bc:8c:0c:c7:65:ec:a5:b9:cb:20:
         6b:40:04:d9:57:a2:8e:5d:70:79:d6:9e:ca:3b:eb:03:1b:58:
         82:0e:b7:05:70:9a:02:74:86:45:d0:a5:e0:06:b5:cb:90:23:
         23:c8:8a:8c:f7:a6:84:02:1f:7b:15:16:0a:7e:a7:72:f2:8a:
         7e:88:f8:b8:16:6f:d7:35:1f:3a:f7:5b:3b:35:0f:d1:9d:a8:
         47:c8:00:07:72:76:d4:6f:59:ea:82:de:80:c4:ca:4a:82:0a:
         30:e6:21:6b:9e:6c:56:61:2d:73:be:5f:fb:96:dd:01:0a:72:
         f7:a1:08:ef:67:22:55:84:14:36:42:08:70:35:08:30:76:4a:
         c3:02:36:71:af:15:15:f0:45:18:ae:64:07:7f:44:1d:7b:43:
         5b:b4:81:d5:87:94:a6:f8:15:55:d2:54:f7:99:1a:3d:e1:d4:
         29:df:33:08:a6:d5:68:15:3b:fe:2f:7a:b3:44:a9:3c:3e:6a:
         d1:aa:0a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----