Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
File:                     nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft (raw, json)
Hash identifier:          FzoK0P7N0U2bCxLJJat9mZu3x0W4vGQE+n7qX2IT3sY=
Subject key identifier:   50:F4:7A:5D:1E:91:56:66:FD:12:E2:7C:7F:9F:FE:53:50:52:EE:FD
Authority key identifier: 9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF
Certificate issuer:       /CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf
Certificate serial:       019D9998DA45CB2402C80E79E9C2421D3367
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
Manifest number:          184F
Signing time:             Fri 17 Apr 2026 04:00:24 +0000
Manifest this update:     Fri 17 Apr 2026 04:00:24 +0000
Manifest next update:     Sat 18 Apr 2026 04:00:24 +0000
Files and hashes:         1: nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl (hash: fizpeT37zQ9+j8zvW2ouRLzrNHfMKEqgJmn4pZt5bn8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 04:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:98:da:45:cb:24:02:c8:0e:79:e9:c2:42:1d:33:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf
        Validity
            Not Before: Apr 17 04:00:24 2026 GMT
            Not After : Apr 18 04:00:24 2026 GMT
        Subject: CN=50f47a5d1e915666fd12e27c7f9ffe535052eefd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:95:63:d3:ad:bd:d1:65:88:43:41:34:5c:06:
                    11:f0:a7:a4:a2:0e:d6:b2:e8:29:ad:81:2d:c8:81:
                    31:83:e3:b0:b3:a2:04:e6:7e:06:5c:2b:3f:06:21:
                    83:d5:46:fb:82:69:aa:eb:46:12:2b:c6:4a:d1:b4:
                    05:d1:62:02:ca:fa:31:bb:1d:2e:60:dc:9a:b4:28:
                    50:ed:7e:4c:d8:59:09:2d:a5:c3:d2:a6:55:7d:82:
                    67:69:c9:db:cb:64:51:57:4c:d5:67:a5:19:a8:49:
                    00:18:53:7b:90:78:0c:f1:f7:ff:8e:c6:3a:d9:e9:
                    21:75:5e:14:28:40:46:a4:d3:9b:26:51:8f:e4:6b:
                    56:3f:e0:97:ba:c8:04:bb:40:91:92:76:71:c8:a7:
                    07:04:1f:7f:9b:0b:9a:4b:31:97:87:ca:d0:e7:cc:
                    f8:97:0f:49:db:1e:b6:b9:eb:9c:fa:cd:18:92:9c:
                    4d:14:15:b5:02:71:d3:48:cc:31:b1:9f:d4:d6:52:
                    d6:c9:11:0e:45:3b:3b:b8:b2:4a:d2:ab:b5:5e:04:
                    b2:a8:08:95:68:a4:93:c7:9d:0e:0e:6a:77:ec:75:
                    3a:b6:a6:87:42:a8:d9:da:13:73:07:be:cb:30:23:
                    7f:b5:d7:0c:c9:9c:71:b1:25:85:82:9c:a5:b2:8a:
                    83:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:F4:7A:5D:1E:91:56:66:FD:12:E2:7C:7F:9F:FE:53:50:52:EE:FD
            X509v3 Authority Key Identifier:
                keyid:9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:70:38:a6:1e:43:04:29:7d:ff:1c:b8:6c:8d:95:14:9b:cf:
         57:17:79:f2:92:f9:ca:20:55:a7:e7:83:95:7e:18:93:e8:5a:
         d6:c9:d4:70:7f:cd:4d:de:5a:3f:bd:c7:d5:5d:2d:7f:36:05:
         cd:3d:e1:c8:77:4b:b9:33:c2:74:40:37:10:d8:30:41:b6:e8:
         0a:8c:df:de:fc:b7:63:67:00:d5:40:dc:9e:8e:e2:ba:da:6f:
         1f:24:ea:61:36:0c:c3:8a:13:14:08:4b:52:81:c6:3f:a6:bd:
         21:cb:ff:12:f2:8b:8d:f1:ca:ef:19:b0:fb:97:86:20:a3:55:
         5e:cd:97:75:11:7e:4e:85:25:cf:ad:44:01:d2:87:6b:1d:54:
         e8:b9:23:8c:bd:8e:a0:b5:ff:cc:7d:bf:73:68:2f:d5:92:75:
         a1:9c:67:41:3f:22:a1:fb:a1:a9:07:3c:ce:5e:4e:06:02:67:
         e8:27:de:28:59:67:f7:8b:b3:7c:f2:89:cd:ee:e8:77:a4:ce:
         71:6a:51:db:45:4c:32:93:a7:f9:bb:f4:ea:f9:46:3a:67:87:
         40:a7:3e:11:43:1d:d9:f1:9b:ba:d2:91:87:d2:9b:cb:00:f8:
         c3:26:b4:fa:ff:a1:94:22:f6:f9:e4:d5:b9:67:0a:7d:1c:62:
         5f:18:2c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----