Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft
File:                     4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft (raw, json)
Hash identifier:          FMSWP1RafPbf0JhVKaqcPZYDYlEoE1+Lv6J4/JWa9TM=
Subject key identifier:   C1:04:39:BB:63:55:12:C1:34:AA:BA:D5:30:DF:43:68:5A:BF:49:15
Authority key identifier: E1:F4:3F:3E:61:99:0F:D3:E5:76:7D:EB:E9:8E:51:CC:19:CA:C7:08
Certificate issuer:       /CN=e1f43f3e61990fd3e5767debe98e51cc19cac708
Certificate serial:       019D99998D7D6CBB772AECC9C0E13D47D2E6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft
Manifest number:          077B
Signing time:             Fri 17 Apr 2026 04:01:10 +0000
Manifest this update:     Fri 17 Apr 2026 04:01:10 +0000
Manifest next update:     Sat 18 Apr 2026 04:01:10 +0000
Files and hashes:         1: 4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.crl (hash: pFtYCP1gHFO1xLUoPPox0/P8yDp2m7S021O/CBhFfzY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 04:01:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:99:8d:7d:6c:bb:77:2a:ec:c9:c0:e1:3d:47:d2:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1f43f3e61990fd3e5767debe98e51cc19cac708
        Validity
            Not Before: Apr 17 04:01:10 2026 GMT
            Not After : Apr 18 04:01:10 2026 GMT
        Subject: CN=c10439bb635512c134aabad530df43685abf4915
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f7:07:b0:6d:28:2b:a6:8a:30:a9:7c:39:30:8b:
                    d6:a3:46:da:98:4a:19:f2:4a:49:d0:7a:83:e4:c1:
                    6f:c6:2b:ed:32:33:0d:fa:35:16:ac:75:d8:d7:a9:
                    3f:8e:e8:82:b7:69:4e:d3:8e:1e:40:69:35:40:64:
                    f6:a1:55:86:23:45:a0:87:ce:af:6f:7e:2a:5a:d4:
                    f2:11:c5:a3:55:7c:e5:88:df:3c:25:34:8a:e5:c6:
                    b7:9e:b5:fa:3a:e5:87:c5:d8:88:be:4f:25:fb:da:
                    36:0d:54:f4:b3:2e:b3:41:60:a3:35:e7:94:fc:f3:
                    0e:4f:3b:6e:ea:f3:fd:51:57:28:8e:80:50:d0:5b:
                    21:ac:0d:ef:d0:7f:a7:11:42:15:89:28:f6:74:97:
                    2d:9d:62:09:5f:b8:26:0e:cf:25:5c:4c:5f:48:ed:
                    90:a1:6a:4a:32:28:cf:19:81:30:f4:12:0a:f8:dc:
                    fc:48:b2:66:14:ec:8c:c7:d4:a3:09:3c:3e:62:0f:
                    13:ef:5f:69:7c:bf:bb:ab:c6:c7:c7:3d:91:6a:3c:
                    08:12:b5:cd:ab:ad:ae:25:ef:91:93:c1:74:00:40:
                    23:f6:7c:0b:8b:3b:b6:64:61:32:73:74:9d:55:ee:
                    d5:ae:34:98:89:7b:c2:24:93:a6:e8:a8:65:e8:e1:
                    ee:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:04:39:BB:63:55:12:C1:34:AA:BA:D5:30:DF:43:68:5A:BF:49:15
            X509v3 Authority Key Identifier:
                keyid:E1:F4:3F:3E:61:99:0F:D3:E5:76:7D:EB:E9:8E:51:CC:19:CA:C7:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:c1:e1:54:5d:1d:34:7a:10:0c:15:1c:54:f6:fa:53:dc:a0:
         2e:f2:c7:a6:fe:c4:9e:a6:6c:f4:bd:7c:3a:69:b3:b1:86:98:
         59:3a:5d:82:27:78:24:f4:61:b1:69:ea:3f:a6:72:f1:03:fb:
         86:8b:1d:aa:b6:66:d6:16:96:1e:f5:0e:f5:6f:61:b5:15:e7:
         33:3a:5e:0c:d6:28:23:ab:f4:02:d9:4a:13:59:83:ed:63:7b:
         45:e3:df:c7:75:81:4b:ba:7f:a1:7a:dc:5e:ac:e3:04:2e:1a:
         18:b8:ae:68:a1:a9:21:84:08:e9:56:bc:1d:97:f3:03:51:7d:
         e9:dd:91:ad:fe:e4:20:27:85:ab:c3:b0:99:10:e4:12:bc:68:
         7a:5c:ae:24:ff:0d:18:71:6d:d2:ea:c1:bb:26:ea:ab:b0:62:
         b6:af:e8:ff:74:be:d9:03:1e:38:5f:e6:bc:5e:41:d9:56:d8:
         b0:ab:ec:81:04:4a:41:d8:02:10:d5:f6:9b:1d:50:38:2a:6b:
         36:8c:bb:41:6a:60:e3:85:a7:1b:d4:26:ff:8c:6e:a0:be:a3:
         3e:2d:fc:4c:74:6c:18:d6:e8:ac:a1:8f:ef:55:e7:ed:da:63:
         8a:9f:8d:e8:29:fa:ef:76:58:31:b4:03:c3:34:69:a8:96:3b:
         b8:2e:cc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----