Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
File:                     G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json)
Hash identifier:          vBBCjc28UfGjxac65JWn4X7sfVqJeF3qzDoe9j6Z29E=
Subject key identifier:   76:73:49:85:C9:91:35:D5:16:B4:45:72:D8:34:26:DA:63:A0:A5:CC
Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
Certificate issuer:       /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Certificate serial:       019CADC828B4055C430CE7A84E357D559FC6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
Manifest number:          1140
Signing time:             Mon 02 Mar 2026 09:01:41 +0000
Manifest this update:     Mon 02 Mar 2026 09:01:41 +0000
Manifest next update:     Tue 03 Mar 2026 09:01:41 +0000
Files and hashes:         1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: wCOrgWl6hg9Jyqu9qiOFFa2736lAmFO8z73QIz9qP6A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 09:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:c8:28:b4:05:5c:43:0c:e7:a8:4e:35:7d:55:9f:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
        Validity
            Not Before: Mar  2 09:01:41 2026 GMT
            Not After : Mar  3 09:01:41 2026 GMT
        Subject: CN=76734985c99135d516b44572d83426da63a0a5cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:7f:02:61:7b:cf:ba:1c:12:8f:87:5f:d5:15:
                    31:7c:6a:2f:95:c1:a4:90:c3:9d:3b:2b:31:b3:0b:
                    72:b6:0c:7d:41:66:1b:b8:e7:b4:d3:90:0d:a6:13:
                    c1:95:86:70:e1:4b:0e:b2:96:be:71:b4:d7:dd:b4:
                    14:93:80:19:48:3b:12:32:7a:3c:82:89:ec:a2:4c:
                    34:1c:93:e9:66:32:9b:e9:fa:a8:09:c1:c1:b3:54:
                    4f:cc:21:fd:51:2d:73:ee:66:4b:9a:47:48:60:4f:
                    8f:51:e5:a6:e0:12:0d:4f:38:9d:03:97:45:db:71:
                    5e:3b:65:b5:c8:f9:ae:04:47:cd:86:e7:5c:cf:30:
                    e8:d8:39:3d:1f:6a:0b:ac:36:22:94:2e:68:f1:51:
                    fc:9d:90:c6:32:ea:60:29:dc:39:3e:d7:17:d3:cb:
                    2a:14:86:07:f9:08:a7:32:87:89:8e:ab:70:be:e1:
                    c2:2a:c4:76:70:66:ca:6d:d9:34:0b:9c:3f:9f:ca:
                    eb:47:d3:2a:01:f2:54:27:51:5f:95:78:32:ef:38:
                    99:8e:11:87:bc:a5:7c:92:91:d8:9b:e3:19:98:6b:
                    90:61:6a:ea:66:97:59:81:7d:c1:3e:c1:bb:87:92:
                    10:21:59:33:72:63:e2:6f:e3:e1:c0:ab:f8:a3:28:
                    89:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:73:49:85:C9:91:35:D5:16:B4:45:72:D8:34:26:DA:63:A0:A5:CC
            X509v3 Authority Key Identifier:
                keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:1b:9e:ba:3c:c6:2b:a4:52:1f:d9:d4:42:e7:0d:f1:ee:53:
         13:04:5f:79:23:1f:d7:c1:21:59:69:38:dc:63:1c:cd:60:93:
         a0:6d:3a:15:48:75:63:ac:33:73:7e:5c:0c:fd:94:66:f0:e2:
         e4:f4:cd:c5:21:3a:2c:26:7f:66:ce:8d:43:77:c2:a3:34:5a:
         43:37:17:11:9c:f0:73:a6:59:b9:c8:63:74:d6:ca:62:02:69:
         fa:40:97:f6:8b:e3:3a:60:b3:ec:b3:0f:07:c3:a0:d8:26:08:
         6d:25:23:ef:ab:f2:77:ac:a1:01:86:37:84:24:ad:d1:55:54:
         06:fd:79:9d:17:98:5d:80:de:cd:d1:cf:57:75:4a:a8:f6:86:
         c8:b5:f9:0f:49:45:a4:2d:28:cb:db:6e:3f:4d:c4:93:0d:ea:
         a1:d3:99:f9:06:db:88:3c:0f:b9:ee:49:9f:5a:65:a5:45:4d:
         c9:45:4a:bc:55:e3:8b:b4:19:7b:ec:32:06:9f:78:ac:a9:2a:
         7b:50:54:6f:b8:56:33:a7:b9:41:13:0c:d7:a7:e6:90:2a:46:
         ff:22:28:3c:36:6d:6e:63:50:00:dd:96:e2:99:c6:43:e3:fe:
         72:03:df:3a:3a:5a:4f:bc:0b:7d:cf:e6:19:42:05:e5:23:57:
         03:bf:d2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----