Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft
File:                     4VW0MN7doRMQ9shzieMgj8ZSnps.mft (raw, json)
Hash identifier:          9L0vI2pXehM2zVXGByxnwxzx3ScrHQtyeDNXzTELGY0=
Subject key identifier:   0E:AE:A1:A7:EE:9C:4A:FA:92:9E:E2:E4:12:70:B3:72:07:E4:0C:19
Authority key identifier: E1:55:B4:30:DE:DD:A1:13:10:F6:C8:73:89:E3:20:8F:C6:52:9E:9B
Certificate issuer:       /CN=e155b430dedda11310f6c87389e3208fc6529e9b
Certificate serial:       019CABD96E23A5D9D61BE2CE19D7A270CBB0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft
Manifest number:          116F
Signing time:             Mon 02 Mar 2026 00:01:19 +0000
Manifest this update:     Mon 02 Mar 2026 00:01:19 +0000
Manifest next update:     Tue 03 Mar 2026 00:01:19 +0000
Files and hashes:         1: 4VW0MN7doRMQ9shzieMgj8ZSnps.crl (hash: iqN9j6joCHFyfis7Mo64pFJQst5W8qlzJLWe1UwXLA4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:d9:6e:23:a5:d9:d6:1b:e2:ce:19:d7:a2:70:cb:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e155b430dedda11310f6c87389e3208fc6529e9b
        Validity
            Not Before: Mar  2 00:01:19 2026 GMT
            Not After : Mar  3 00:01:19 2026 GMT
        Subject: CN=0eaea1a7ee9c4afa929ee2e41270b37207e40c19
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:72:d9:9e:78:e2:f1:ca:3b:55:c2:bd:35:59:
                    b8:03:54:39:f4:0e:37:f7:e7:70:48:0b:b8:08:e4:
                    6f:6f:b0:a8:b9:d3:0f:63:fd:9b:2b:2f:fe:7d:67:
                    97:0a:14:d3:81:d4:24:6a:4b:17:14:02:70:b5:09:
                    1a:bb:89:b6:fe:33:3e:0c:e5:27:74:fe:47:57:86:
                    d5:9d:da:07:ab:89:f8:7d:7f:30:96:8b:20:5b:6f:
                    0d:89:e7:bb:e4:b0:d1:aa:f9:a7:6d:d0:57:76:23:
                    28:8b:3c:f7:d4:d0:e3:2c:52:d6:27:81:ad:e8:03:
                    1d:69:51:08:dc:23:52:df:54:47:ee:f7:d0:07:37:
                    a6:5a:ad:88:80:04:98:ab:a7:a6:db:4d:b5:07:86:
                    ec:aa:4a:e6:fa:d1:87:43:81:e2:ea:82:8f:f1:8c:
                    60:d1:ac:fc:a1:ce:9c:68:91:20:23:2e:7b:32:8f:
                    0b:3f:2f:5e:ff:f5:5e:a0:50:39:2e:0c:9f:54:67:
                    46:68:1a:01:e6:7d:d0:24:31:30:db:b8:0b:0f:6a:
                    7f:f9:00:ab:5d:72:62:de:e5:4c:8d:e9:04:ef:85:
                    c3:0e:6b:a6:ff:77:50:bf:7c:4c:ca:eb:a3:7f:93:
                    1f:97:67:91:9b:3d:9e:83:58:bd:e7:f3:92:87:9a:
                    4b:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:AE:A1:A7:EE:9C:4A:FA:92:9E:E2:E4:12:70:B3:72:07:E4:0C:19
            X509v3 Authority Key Identifier:
                keyid:E1:55:B4:30:DE:DD:A1:13:10:F6:C8:73:89:E3:20:8F:C6:52:9E:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:bd:8c:75:5f:cc:07:fe:bd:0d:a1:65:32:98:7d:a4:30:0b:
         f3:32:37:e7:b0:9e:43:1a:e4:9d:25:a1:2e:db:96:88:fa:bb:
         2e:60:9a:b9:e0:e0:c7:b3:97:8a:f5:f1:ee:33:54:8e:af:5f:
         18:de:2f:0f:4d:68:01:b0:27:c4:0f:6d:e1:da:eb:b0:29:df:
         f3:f7:dd:77:58:93:d9:e1:79:6e:c5:a1:6f:14:5d:3b:ba:86:
         93:17:a1:cf:be:12:3a:5f:76:c6:5c:d7:c2:46:ba:75:f6:6c:
         ce:ba:8b:a5:cd:87:40:98:98:80:a0:41:92:05:56:55:cd:1f:
         5b:bd:1a:d9:1c:c0:e0:01:ec:f6:13:bc:6d:e4:2b:2c:6c:9f:
         70:52:d2:6c:c9:68:38:67:7b:4c:ac:83:4f:10:c9:d7:ad:05:
         01:5a:8f:e8:6a:b8:18:10:a6:44:7b:c6:53:12:0a:67:dc:a0:
         3a:28:a3:09:ec:f0:9c:66:24:a4:3d:e6:38:56:01:cf:14:ac:
         81:22:49:50:18:52:59:f8:e2:68:92:ca:5b:3e:3f:85:56:f0:
         0e:0b:8d:66:ed:19:0b:da:9a:42:19:1a:76:8f:90:fb:27:55:
         c3:04:80:07:81:e4:a4:33:8e:87:aa:b8:96:79:6d:5b:20:e1:
         97:2c:e4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----