Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
File:                     Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft (raw, json)
Hash identifier:          VVCsRN9G4mFqKSP4FifyoodX3UzPQo39ACNaAqJld+I=
Subject key identifier:   E1:99:72:30:B7:D2:B4:58:FB:CA:51:23:6A:98:CD:F5:E2:B2:E1:9F
Authority key identifier: 3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77
Certificate issuer:       /CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
Certificate serial:       019D9998CFB8D8ED37BE114C77EB45BF9F72
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
Manifest number:          0740
Signing time:             Fri 17 Apr 2026 04:00:21 +0000
Manifest this update:     Fri 17 Apr 2026 04:00:21 +0000
Manifest next update:     Sat 18 Apr 2026 04:00:21 +0000
Files and hashes:         1: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl (hash: x36MVxsBlq8oIJOz+ExUo+krIPtx5/WUPs7nKRbd5tc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 04:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:98:cf:b8:d8:ed:37:be:11:4c:77:eb:45:bf:9f:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
        Validity
            Not Before: Apr 17 04:00:21 2026 GMT
            Not After : Apr 18 04:00:21 2026 GMT
        Subject: CN=e1997230b7d2b458fbca51236a98cdf5e2b2e19f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:05:29:67:67:f7:14:35:c7:85:d5:7a:67:23:
                    40:86:97:22:e8:68:c7:5e:65:11:db:f3:e6:8e:7c:
                    4a:cd:e3:fa:9b:a2:63:dc:7f:ad:7e:56:d9:71:12:
                    f9:5b:48:80:ad:9c:aa:0c:cd:e3:13:6c:54:c9:fe:
                    6e:2e:1e:99:91:1b:52:91:69:93:71:b9:17:00:94:
                    53:ec:d1:06:20:c3:f2:1e:39:ac:ea:5c:17:9b:02:
                    e7:fc:27:c0:ff:15:b8:c5:9c:81:52:5f:67:97:6d:
                    ee:f1:60:11:4a:28:2d:c0:d4:58:96:37:e4:59:78:
                    3b:09:37:0f:44:fc:83:fa:6e:38:20:ae:f8:3a:59:
                    d9:d0:ce:21:de:47:1d:3e:9b:49:d0:56:1b:a2:19:
                    a8:97:38:7a:f3:2a:f3:e0:69:f9:f2:cf:42:7f:e6:
                    1e:dc:c7:19:32:1d:cd:ff:1d:c5:c0:27:b7:88:6c:
                    09:cb:03:52:58:dd:1d:06:35:b8:e7:67:90:26:dd:
                    df:c0:ab:8c:b3:86:52:60:20:be:b3:4e:a9:7a:51:
                    f1:4c:7e:0b:82:86:d9:1c:68:6e:59:37:c2:4e:d3:
                    99:0f:f5:10:95:56:f6:be:42:33:58:81:dd:a0:35:
                    28:ef:f9:ec:00:b2:8f:4d:04:2d:b4:d5:24:1d:d6:
                    c7:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:99:72:30:B7:D2:B4:58:FB:CA:51:23:6A:98:CD:F5:E2:B2:E1:9F
            X509v3 Authority Key Identifier:
                keyid:3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:87:c1:24:7a:ba:cc:6b:26:bf:42:f5:d6:75:fe:22:6a:38:
         f3:b1:e9:44:07:5d:c0:bb:5e:e2:5e:b6:a0:77:32:66:a9:39:
         58:f0:eb:0a:f6:24:16:82:10:95:2d:1b:7a:b7:13:25:a1:21:
         7c:3a:e4:0a:99:e8:bb:86:d1:c7:63:64:71:e0:27:a6:d8:5a:
         d5:11:3f:2e:4d:d1:a4:aa:9b:66:8c:c6:4e:ed:f5:0f:ec:fd:
         c3:c1:d7:bc:16:87:8d:19:bd:41:df:7d:8d:32:35:e8:3f:a8:
         d9:b9:cb:be:b0:cb:ad:76:2e:ca:91:cc:e4:3c:15:34:8e:35:
         79:a3:e1:47:ed:cc:d3:03:a0:99:bd:4f:07:c5:78:9a:6c:bb:
         dc:02:ed:78:c2:d9:80:3b:37:48:c8:01:5f:4a:2c:62:00:57:
         b2:a6:f2:b6:b1:a7:f2:94:9e:d7:74:ea:df:7a:d0:75:bf:be:
         96:4d:37:99:94:4d:1a:84:9d:98:8d:6f:29:b0:b6:23:2c:10:
         9f:46:c5:86:35:92:6e:da:17:d6:bd:07:b5:c8:5e:28:8e:d8:
         4a:07:db:e2:69:5c:a6:66:c8:77:3b:57:68:c1:e1:0f:da:1a:
         03:d2:ba:60:5a:c9:48:a2:ae:44:cd:af:63:2d:3b:ff:c4:bc:
         7c:cb:a0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----