Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File:                     MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier:          oXbiUCPYxyl02EcQhAlbZblN8GgLAK0fg/NX2CtJfKI=
Subject key identifier:   41:6B:E7:82:74:E9:86:3C:5E:34:C7:7F:E9:F2:53:4D:E4:B9:A3:D6
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer:       /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial:       019CAD5A23B726FA8AD77EB3F0A1AEE4D0A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number:          1797
Signing time:             Mon 02 Mar 2026 07:01:31 +0000
Manifest this update:     Mon 02 Mar 2026 07:01:31 +0000
Manifest next update:     Tue 03 Mar 2026 07:01:31 +0000
Files and hashes:         1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: xtbZaaHRx4I7jGevFv1L+ubSPX4ygzksJUHEFsAfDe0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:5a:23:b7:26:fa:8a:d7:7e:b3:f0:a1:ae:e4:d0:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
        Validity
            Not Before: Mar  2 07:01:31 2026 GMT
            Not After : Mar  3 07:01:31 2026 GMT
        Subject: CN=416be78274e9863c5e34c77fe9f2534de4b9a3d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:44:e5:f2:01:51:0a:1b:26:99:bc:e4:cf:fa:
                    02:52:48:f6:61:41:ef:be:4b:b2:af:80:16:fe:94:
                    a2:30:74:cd:3d:2d:b8:a7:ce:60:c1:df:ee:d0:91:
                    64:5e:7a:9b:52:43:b4:88:a0:61:da:0b:3b:b0:95:
                    3f:18:ea:4d:33:aa:34:82:88:54:6a:00:9f:a6:4e:
                    87:46:58:99:ad:72:37:da:f8:9d:c6:47:77:6b:ca:
                    43:2e:08:2c:c1:30:cc:e2:56:54:0f:96:c8:cd:de:
                    d6:f1:4b:41:64:1c:1a:18:24:31:1c:23:d8:e2:be:
                    10:bf:21:2a:fa:0f:08:ba:27:37:d3:4e:c1:54:bf:
                    6d:38:8f:5a:37:a6:fa:ed:84:3c:d7:ab:e0:e1:5f:
                    ce:ab:ab:d2:6d:14:18:3e:03:68:bd:6a:65:c9:cc:
                    8a:69:4c:3d:af:71:65:1b:aa:7f:f0:81:11:f6:44:
                    9a:56:d9:13:0d:58:40:e3:f6:5d:25:e2:e0:d5:44:
                    73:6b:15:cb:09:e0:93:05:8e:c4:9b:7d:ad:30:ac:
                    e4:cf:31:d6:ec:2e:ed:cc:c4:09:66:4a:3f:cc:41:
                    91:81:c4:18:56:ed:13:c1:7d:b6:7b:34:3a:0e:51:
                    4c:77:d1:fb:e7:ec:73:ac:54:0e:b2:19:60:92:bf:
                    01:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:6B:E7:82:74:E9:86:3C:5E:34:C7:7F:E9:F2:53:4D:E4:B9:A3:D6
            X509v3 Authority Key Identifier:
                keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:bb:f4:7f:5a:4a:74:99:55:d6:73:30:40:75:fc:4b:b9:8d:
         2f:1e:40:bd:4f:03:d1:c9:8b:45:a2:68:3d:cd:28:99:23:0c:
         d8:22:23:4b:ae:09:7c:c4:e8:79:b8:e9:14:b7:20:b6:79:57:
         b1:2d:f9:5a:e9:ee:f0:20:f7:19:47:f3:ce:ea:1c:61:12:2c:
         b4:8d:ee:29:34:8f:6c:49:59:71:81:bf:00:a9:7e:bc:70:65:
         08:b1:3b:d4:ee:c3:50:54:1d:b5:ce:dd:24:23:47:93:4d:44:
         97:39:41:e3:da:81:13:bc:67:ee:4e:66:cd:ff:cd:b0:15:d1:
         ac:36:e9:32:4b:af:60:50:c2:4c:f9:a0:e8:48:6d:43:93:0b:
         53:b7:42:2d:45:27:61:7a:f8:e3:d4:8b:91:3a:7c:4d:40:ce:
         fd:81:b6:a7:55:64:04:d3:3d:f4:08:c3:e3:13:6b:4c:55:5b:
         c0:ed:29:b0:1b:2b:9d:cf:a1:28:a2:d5:ae:38:26:ed:6b:81:
         6f:95:e2:22:74:c6:a3:ec:f3:4a:69:c2:68:56:86:18:5c:7f:
         92:65:1a:6e:45:90:a9:57:26:85:9f:d8:b4:94:2b:d0:2e:12:
         57:be:03:9c:90:af:60:5f:19:27:5c:07:25:4d:7d:21:4d:10:
         dd:d5:ff:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----