Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
File:                     9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft (raw, json)
Hash identifier:          2hJ8JYOPTKL68Pi3RL4ni0AB4xQAeAVP2dvagA5q7gg=
Subject key identifier:   6D:70:4C:E9:32:B0:01:47:4F:E8:82:CA:39:9E:19:F1:D0:D5:0D:18
Authority key identifier: F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F
Certificate issuer:       /CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f
Certificate serial:       019EC06D30AC7F8C9622B0C03900AFA7B613
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
Manifest number:          0D66
Signing time:             Sat 13 Jun 2026 10:00:41 +0000
Manifest this update:     Sat 13 Jun 2026 10:00:41 +0000
Manifest next update:     Sun 14 Jun 2026 10:00:41 +0000
Files and hashes:         1: 9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl (hash: Xyc9350MHUwh+48vrw0TLBPC+65rCCrpAh6zeSN/UYQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:6d:30:ac:7f:8c:96:22:b0:c0:39:00:af:a7:b6:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f
        Validity
            Not Before: Jun 13 10:00:41 2026 GMT
            Not After : Jun 14 10:00:41 2026 GMT
        Subject: CN=6d704ce932b001474fe882ca399e19f1d0d50d18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:71:27:5a:27:3a:52:9f:01:2b:14:39:01:2d:
                    4c:4d:ba:e6:10:d4:8d:66:bf:6f:0d:0c:02:d7:6c:
                    ca:72:8d:cd:1e:85:81:00:a7:90:13:32:86:f8:71:
                    00:c4:a4:b2:57:14:b0:66:3b:c1:6e:82:76:e5:31:
                    89:11:a0:ac:e6:7c:b1:4d:33:47:33:e3:15:ff:6e:
                    98:86:16:8b:dd:61:95:88:21:e8:f6:5c:8e:c9:84:
                    85:6c:15:c4:02:01:94:32:af:f5:15:b7:73:bf:fe:
                    0d:63:a5:ce:e2:8b:15:d0:cf:6c:b4:bd:56:ff:1b:
                    c9:c1:1a:11:25:8b:a6:a9:63:a4:be:a8:86:35:7c:
                    49:43:81:82:81:06:cd:f6:da:d7:e6:85:cc:65:3e:
                    a5:39:9e:a7:ff:0b:b4:57:94:63:e9:e7:c3:19:75:
                    8b:e2:eb:bd:39:f9:4a:21:6b:0d:0a:fa:35:40:ec:
                    3c:a4:c6:20:ea:35:36:53:af:ad:34:d7:6c:d8:99:
                    f2:f7:54:b6:41:ba:7a:c9:89:9a:06:f4:25:c1:a7:
                    8a:25:83:21:17:61:df:fd:cd:0c:93:dd:31:77:a6:
                    ac:9e:69:2e:05:53:9c:45:1f:c3:4c:ae:cf:e0:ff:
                    1e:21:f8:ee:27:2d:58:67:32:97:64:6b:2c:c8:d3:
                    c2:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:70:4C:E9:32:B0:01:47:4F:E8:82:CA:39:9E:19:F1:D0:D5:0D:18
            X509v3 Authority Key Identifier:
                keyid:F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:9e:ac:28:95:79:fb:60:4c:0a:33:b3:51:70:3b:38:61:2e:
         e7:8d:c3:76:54:01:13:ce:11:07:c1:d5:5b:7f:62:8c:b4:36:
         d0:a0:34:ae:0e:ce:fb:f3:96:97:58:c4:2b:15:ea:a3:e5:68:
         8f:2c:9d:52:48:15:36:d2:b8:a1:7e:14:b3:13:66:c0:e8:d1:
         2e:34:25:85:6c:c3:f3:59:6c:c7:93:9a:69:de:9f:f7:57:a3:
         b8:50:df:bd:89:43:2f:34:f3:48:60:b1:bc:b8:97:05:ff:b0:
         2d:9b:5c:27:a8:fe:6c:a8:7e:0f:46:41:64:00:71:1d:d1:af:
         1b:0e:e2:0b:1e:fd:2b:03:51:d9:00:42:ac:aa:22:2b:d0:19:
         6c:99:88:fd:24:30:2e:cb:3f:22:4d:4b:99:ef:58:13:ce:9e:
         95:2c:f9:5a:88:c2:28:5f:38:cb:ae:cf:1c:83:75:04:e0:ef:
         a3:6b:9e:fb:8d:29:b6:8e:ef:3a:2a:d5:62:37:e9:7c:f4:7e:
         25:0b:77:61:2c:83:fa:66:0b:f3:20:b1:68:72:35:c0:0c:70:
         25:cc:4c:ce:7b:7f:3e:0a:04:0b:20:c4:42:dd:a8:96:94:d4:
         50:2a:f7:5f:d5:99:11:4c:25:01:9f:35:49:f2:56:eb:b7:23:
         65:5b:8d:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----