Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          pAJBayFeTrqoSoQrOOWXXvzyCZ/yNlidV2V2amrANjU=
Subject key identifier:   9F:63:0A:67:18:1F:9C:D5:B3:02:E3:E0:12:E5:CE:29:FD:4F:B4:FB
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       019CAB6B93D20CDC8B957977E534B5C07D09
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          062A
Signing time:             Sun 01 Mar 2026 22:01:19 +0000
Manifest this update:     Sun 01 Mar 2026 22:01:19 +0000
Manifest next update:     Mon 02 Mar 2026 22:01:19 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: InXlXpLpjWZv0t6CLgp2J8w8aOxhtm2VhlrEMRTaOqU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 22:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:93:d2:0c:dc:8b:95:79:77:e5:34:b5:c0:7d:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: Mar  1 22:01:19 2026 GMT
            Not After : Mar  2 22:01:19 2026 GMT
        Subject: CN=9f630a67181f9cd5b302e3e012e5ce29fd4fb4fb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:f0:05:d4:eb:8d:44:52:6a:32:da:ef:36:ac:
                    de:fa:cf:d8:de:e1:36:ec:54:98:40:5a:2d:d7:df:
                    ec:ae:4b:47:5a:7a:42:ef:97:4d:5a:4f:27:f6:95:
                    97:d7:62:ac:bd:d3:a1:48:cb:3a:e2:46:ab:fd:d6:
                    ac:8e:f3:be:58:9a:d2:f4:9f:05:b8:24:7d:ab:3f:
                    91:9c:8a:c4:9b:da:9a:ae:ad:50:04:1d:7a:34:96:
                    e5:cb:d3:75:e2:a4:d0:7d:d4:6a:8a:0a:7a:98:99:
                    50:66:73:3d:79:e6:48:a5:80:52:6e:25:55:bc:a3:
                    a4:d1:cb:7d:e2:1e:d6:17:15:8e:9b:f5:5e:7e:10:
                    85:0a:5e:e1:41:8a:96:cf:d2:14:8d:a8:39:a7:01:
                    6e:8e:ac:e8:90:11:8c:8f:46:e2:8a:91:a0:97:71:
                    17:79:5c:77:24:cd:e1:88:08:44:b7:70:40:4f:0d:
                    48:06:6f:2b:5d:2d:42:1a:c4:39:4d:32:17:b7:67:
                    3d:3e:20:34:ea:3a:ca:ff:34:4a:a8:c9:bb:11:54:
                    ec:f9:01:1e:12:c6:b6:1c:3d:2d:e3:89:58:d4:40:
                    ee:f3:e5:0f:2a:c4:1d:e9:ee:6f:ff:c7:3a:da:c3:
                    48:44:99:b7:12:83:d4:08:5e:4f:2b:04:19:3f:ea:
                    28:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:63:0A:67:18:1F:9C:D5:B3:02:E3:E0:12:E5:CE:29:FD:4F:B4:FB
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:26:4e:f1:0e:d6:84:a1:6f:c1:51:7a:47:74:c3:73:0d:0e:
         d4:f9:8b:d0:ec:fe:76:cc:86:20:76:ec:77:78:11:ad:bd:29:
         7c:15:6f:01:ae:a0:c8:ae:50:e7:79:c3:de:d1:ce:79:66:ed:
         45:61:45:f5:47:cb:aa:30:a8:46:86:8b:e2:3b:32:08:51:0a:
         d5:ce:15:79:3a:df:94:ac:93:62:20:2a:b9:75:f4:6f:ae:f2:
         83:63:60:01:ca:04:da:0b:a4:e5:9c:79:c6:e2:1c:67:f9:0c:
         5e:0b:a7:5c:05:5a:bd:fe:9e:4a:b4:65:ab:c8:a3:03:06:65:
         e2:5f:a7:44:79:d8:b1:2d:74:e0:f7:35:a0:6e:4b:2c:26:d5:
         c9:70:bb:d7:bc:44:32:2c:32:1d:0e:ad:e5:bb:54:45:da:98:
         be:89:e7:2c:94:e7:4e:ad:9d:44:ca:ef:0f:dc:c2:50:54:6c:
         48:20:1f:2f:fe:6a:62:5d:cc:79:6f:2b:0c:e6:0f:94:17:bb:
         6c:fe:65:98:66:69:60:ae:e2:96:f7:6d:98:75:66:fd:51:f8:
         9f:c4:4e:87:e9:9f:e7:dd:cd:c2:80:e2:fe:91:93:b2:4f:93:
         60:e1:c3:0f:1b:3f:e4:d2:1a:60:12:bc:1a:ed:53:3b:59:c6:
         d3:05:c6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----