Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
File:                     Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft (raw, json)
Hash identifier:          wly8tfFeyZEizqXqmE8ZL93bvbPl03Hj08Wv02quh8k=
Subject key identifier:   7F:93:F9:1F:9F:F3:DC:39:57:3E:D1:96:96:AA:D1:D1:17:A8:EA:D3
Authority key identifier: 3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77
Certificate issuer:       /CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
Certificate serial:       019CAA2164B2A451362D578101E2979821BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
Manifest number:          06C4
Signing time:             Sun 01 Mar 2026 16:00:41 +0000
Manifest this update:     Sun 01 Mar 2026 16:00:41 +0000
Manifest next update:     Mon 02 Mar 2026 16:00:41 +0000
Files and hashes:         1: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl (hash: 6SOFhhbxiWZBLtJpKHHavq3KQtic4vOkuAVYPW/hZDU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 16:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:21:64:b2:a4:51:36:2d:57:81:01:e2:97:98:21:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
        Validity
            Not Before: Mar  1 16:00:41 2026 GMT
            Not After : Mar  2 16:00:41 2026 GMT
        Subject: CN=7f93f91f9ff3dc39573ed19696aad1d117a8ead3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:95:8f:c4:94:75:93:80:51:a5:3d:41:ed:da:
                    0b:a1:be:b1:fa:12:e1:ab:44:e1:49:41:69:01:42:
                    57:64:57:8f:88:1a:99:d9:39:22:0e:90:1b:88:1d:
                    0a:b1:42:47:64:c4:2d:0d:e2:ad:6b:7c:f9:d5:42:
                    01:2d:4d:97:3b:16:1a:82:94:9c:40:ca:b1:e6:d4:
                    d7:43:6c:55:15:94:b6:7f:9a:96:6e:50:66:52:12:
                    07:45:60:f9:10:2e:2c:4b:cc:cc:90:91:80:a8:5f:
                    8c:d5:5f:8a:41:08:30:f5:dc:4f:1e:56:88:d8:0f:
                    7f:14:4e:39:e9:b9:d3:53:7a:03:6b:69:47:31:7c:
                    95:eb:2b:52:df:fe:50:f7:c1:30:2c:93:8f:b0:03:
                    43:5e:27:e3:28:ba:df:24:34:ef:a8:61:5d:79:eb:
                    b9:2b:a3:26:82:f7:76:3c:56:d8:2a:0e:86:3a:14:
                    df:eb:b6:45:c7:b3:ac:fc:c8:0b:15:14:e2:b1:70:
                    5f:e7:02:42:35:bd:c4:22:d0:0f:75:be:e6:59:24:
                    ba:a2:a9:0e:5b:0b:00:7d:bd:c5:b1:2b:9b:96:4f:
                    a7:89:ba:66:74:77:d7:09:68:ae:67:45:c0:73:22:
                    9c:9e:b8:1b:be:cd:bd:8d:1f:57:b1:33:12:48:77:
                    5e:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:93:F9:1F:9F:F3:DC:39:57:3E:D1:96:96:AA:D1:D1:17:A8:EA:D3
            X509v3 Authority Key Identifier:
                keyid:3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:f5:d3:35:25:de:45:66:fc:64:b7:77:85:c8:3a:fb:42:6d:
         72:ec:f4:5e:66:37:32:16:6e:c5:8c:b7:b1:88:db:c4:b8:0c:
         c8:2d:d0:d9:fd:70:d6:55:e9:38:49:47:15:02:3c:0e:ff:bf:
         b6:a6:e3:3c:fb:e9:e7:78:93:77:28:2b:d1:85:cb:30:f7:30:
         81:b3:36:e9:e4:82:81:d1:5f:5f:35:ad:6d:9b:5b:dd:e6:aa:
         20:c7:78:70:a8:14:7d:6d:43:de:cf:72:bd:67:31:7c:bc:f5:
         7e:c1:4a:26:3b:d5:4a:22:5c:cb:f4:78:cf:a7:80:48:67:68:
         7b:cb:58:1e:e3:ec:bd:d6:ad:8e:62:df:ec:42:77:45:2e:0a:
         94:d7:7d:b3:64:b1:51:3b:73:27:61:5d:56:e4:73:e8:24:6a:
         8e:50:1e:03:ae:ab:3f:29:d1:f2:2e:1a:c3:76:d2:8c:93:44:
         74:11:43:90:4c:b6:62:13:68:7b:cc:da:71:c2:1d:17:bd:73:
         54:cd:0f:7b:57:4f:be:03:3b:53:45:50:8d:cf:25:36:4f:ef:
         28:84:da:b4:44:60:a6:95:97:fa:0e:4d:fb:84:bc:94:ac:06:
         01:36:02:34:bc:d7:95:bc:45:3c:ff:f1:9b:f8:93:68:93:78:
         ce:7c:76:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----