Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
File:                     kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft (raw, json)
Hash identifier:          i8mWynFygebrbK/zg6PRICEviD9vrDcsON7WVpNx6NE=
Subject key identifier:   01:43:74:7A:CB:57:20:9B:87:A6:B3:2C:DE:C8:5D:CD:A8:FE:59:8D
Authority key identifier: 90:36:10:CF:2A:54:64:3A:0A:1B:6B:15:1F:A6:6E:32:50:04:CB:4A
Certificate issuer:       /CN=903610cf2a54643a0a1b6b151fa66e325004cb4a
Certificate serial:       019CABDA0DF417A0B1458DE2CE33E0A22CD6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
Manifest number:          0770
Signing time:             Mon 02 Mar 2026 00:02:00 +0000
Manifest this update:     Mon 02 Mar 2026 00:02:00 +0000
Manifest next update:     Tue 03 Mar 2026 00:02:00 +0000
Files and hashes:         1: kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl (hash: 2BPTGhRD0nBIx48Yos2VVw9F5fQkpiCQ8ruHMhB5M1w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:da:0d:f4:17:a0:b1:45:8d:e2:ce:33:e0:a2:2c:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=903610cf2a54643a0a1b6b151fa66e325004cb4a
        Validity
            Not Before: Mar  2 00:02:00 2026 GMT
            Not After : Mar  3 00:02:00 2026 GMT
        Subject: CN=0143747acb57209b87a6b32cdec85dcda8fe598d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:3f:5d:bd:17:8b:aa:fc:bb:f0:2f:86:93:e3:
                    16:b9:b0:e2:36:45:05:48:62:2c:4b:20:47:54:33:
                    35:3b:3d:60:7f:58:10:1e:6e:b2:40:8a:ab:42:9c:
                    b5:d2:b6:c8:56:4c:22:a5:11:f4:c1:bb:69:b0:df:
                    c4:90:bb:df:dc:f1:43:04:63:b6:bf:c6:e6:e3:66:
                    3d:d5:70:d3:27:bf:6a:d8:0e:c1:d2:95:ee:4d:17:
                    02:54:95:74:52:83:98:66:e8:81:86:79:a5:76:97:
                    7c:5e:c1:08:9b:cb:bf:ca:73:dc:13:16:ed:5e:6b:
                    31:19:95:77:d4:7b:63:43:bf:cb:a1:79:dc:80:52:
                    d9:4b:5e:d7:a8:5b:f1:91:d5:fc:55:12:0f:ef:99:
                    6d:24:90:eb:16:72:ea:8d:9b:32:19:77:9d:2a:6d:
                    7e:2b:1f:98:38:de:d4:eb:d0:e0:15:06:a7:fc:00:
                    99:ba:1a:23:57:25:d2:e6:7d:4f:b6:10:1b:f7:81:
                    23:18:43:14:79:2f:11:47:b4:51:9b:17:ad:e5:19:
                    4a:c6:8e:91:87:12:36:57:44:f4:af:a0:da:f3:9b:
                    e9:0c:9c:2c:53:6f:9b:42:7d:f8:ac:95:2e:5b:5a:
                    cf:3a:da:98:34:57:ec:b5:13:34:cf:27:3f:e8:8a:
                    ff:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:43:74:7A:CB:57:20:9B:87:A6:B3:2C:DE:C8:5D:CD:A8:FE:59:8D
            X509v3 Authority Key Identifier:
                keyid:90:36:10:CF:2A:54:64:3A:0A:1B:6B:15:1F:A6:6E:32:50:04:CB:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:d2:19:cd:e0:f8:e0:aa:1e:d7:38:9d:68:03:59:01:4a:77:
         7f:fb:bd:7c:68:96:23:bd:f8:5a:ae:4f:cd:93:b4:7f:08:88:
         ff:5d:d2:db:da:cb:0a:52:ef:4d:18:71:60:74:92:12:3c:bd:
         6d:ca:fa:e4:44:16:4c:68:c3:38:44:d4:41:4e:f8:06:0b:0b:
         3f:94:70:1d:8a:11:8a:a8:7d:63:09:29:f8:37:01:b2:3e:6f:
         8f:ee:f0:bc:6d:45:fe:1e:f8:c1:d6:c1:83:4c:81:42:92:21:
         e3:7b:73:55:d1:2e:e3:1d:ea:b2:e5:62:79:b2:19:02:4a:e1:
         62:44:39:3c:30:51:c0:b4:14:8e:1f:69:3f:24:53:c3:f0:56:
         db:9b:c9:e8:9c:de:9d:35:0b:ce:ef:c5:e5:af:6b:d8:55:66:
         b0:16:94:8b:1c:dc:e3:a8:bd:2c:74:9b:8c:bc:d6:8d:00:bb:
         d2:9f:fe:8f:48:d2:dd:05:cc:c8:84:0b:c6:eb:e5:43:4f:11:
         eb:d9:7d:9b:6d:bc:d6:54:18:d3:76:a6:5b:39:85:07:69:b7:
         95:c6:18:e4:23:09:3c:02:ab:a2:34:62:df:a8:26:9c:ec:87:
         7d:11:79:e5:c7:0a:bb:8e:6d:53:6d:cf:4d:b4:66:cf:93:58:
         b1:13:68:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----