Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
File:                     IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json)
Hash identifier:          cc4tGDI9OWrXo+ToRKeedjv1+XrLCDIdwkaANjJ+nuE=
Subject key identifier:   1E:0C:FC:50:B4:89:A7:DB:02:20:E4:EE:32:C8:5D:00:A0:1D:61:06
Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
Certificate issuer:       /CN=2204f15cf30d73848b074dfcac26138006156ad4
Certificate serial:       019CAB6B893363F6EA71763BCD85C5760582
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
Manifest number:          0F53
Signing time:             Sun 01 Mar 2026 22:01:17 +0000
Manifest this update:     Sun 01 Mar 2026 22:01:17 +0000
Manifest next update:     Mon 02 Mar 2026 22:01:17 +0000
Files and hashes:         1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: Gk+5UfsZRxl5gjZeNXMH7xwRqfN1T9ZdHeVR5W1NwNA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 22:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:89:33:63:f6:ea:71:76:3b:cd:85:c5:76:05:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4
        Validity
            Not Before: Mar  1 22:01:17 2026 GMT
            Not After : Mar  2 22:01:17 2026 GMT
        Subject: CN=1e0cfc50b489a7db0220e4ee32c85d00a01d6106
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:2a:12:40:8c:4d:c5:73:d6:47:1d:29:4b:0c:
                    5a:67:3e:7d:91:bb:d3:87:b7:3c:a6:a7:f7:23:25:
                    cb:15:12:14:54:23:9c:62:6b:c8:0a:47:79:4e:76:
                    95:67:5d:dc:9a:e0:79:6a:9e:95:e9:56:69:da:cb:
                    41:86:d4:60:2d:a0:75:6d:5f:2a:59:71:3c:ea:3d:
                    2c:9f:1b:b1:27:3e:c3:b6:90:2f:6d:86:40:1b:50:
                    2e:d8:5d:3a:8c:35:7f:f6:23:f4:e1:db:ed:2a:10:
                    47:fd:15:be:16:cc:c5:44:f8:07:c1:92:70:61:c9:
                    94:98:37:a9:eb:63:62:34:28:1c:57:5e:93:54:d3:
                    d2:8e:9d:e8:b3:ce:53:79:26:0e:18:8d:0c:1a:3c:
                    cf:90:41:d9:2c:b3:da:6b:ef:66:18:7b:20:a4:33:
                    58:b7:95:cd:c2:1f:fc:a9:48:0a:58:67:58:be:65:
                    17:98:0e:07:a1:f4:34:38:f9:f5:e6:33:bc:8d:72:
                    4e:95:aa:1d:ba:53:3b:1b:00:ab:66:8c:84:ae:25:
                    54:d6:5d:20:8c:f1:39:89:9c:86:11:0b:d2:1d:d1:
                    70:de:e2:c2:ab:04:6c:56:ef:4d:f2:bf:79:75:3c:
                    7a:61:c9:a5:38:8d:c1:98:e0:83:5d:d6:82:7b:56:
                    21:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:0C:FC:50:B4:89:A7:DB:02:20:E4:EE:32:C8:5D:00:A0:1D:61:06
            X509v3 Authority Key Identifier:
                keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:88:f4:ac:9e:f7:9c:ce:2d:c8:ec:40:cf:eb:82:d2:ee:3e:
         84:8d:96:ed:51:18:43:9d:04:17:2c:1e:52:20:8f:3c:32:b5:
         47:82:de:00:fd:1a:81:5a:19:71:b1:e3:f3:ab:4d:f2:2e:51:
         3b:44:8f:6e:c8:79:10:3f:9a:39:5f:73:c7:0e:23:c0:d1:c4:
         52:37:44:a0:75:47:78:02:3a:2f:6e:20:f4:d0:4e:55:f8:00:
         0e:ce:fe:67:01:58:7d:e7:28:53:82:d3:bb:01:f4:9a:74:9e:
         39:9f:aa:e4:9d:ab:ea:be:2a:96:2e:5e:88:2a:e5:97:63:21:
         28:b3:9c:1e:8b:4c:67:6e:6a:b9:75:3a:d6:13:cd:60:d0:73:
         c7:47:47:c2:a0:93:6f:ca:82:2f:c0:54:01:eb:ef:63:c6:da:
         34:c3:48:30:11:cb:1b:fc:29:bf:89:15:9b:30:99:27:b8:40:
         2f:d9:84:22:b9:f2:b6:0d:ff:05:c0:8d:27:f1:d7:0f:8b:8f:
         08:78:18:88:af:f3:6b:74:51:99:93:ce:bc:b4:07:2d:e2:f9:
         b7:a5:7d:95:b9:55:c3:e4:7f:5f:88:12:f2:1b:05:c7:5c:4a:
         2e:98:49:59:92:8c:af:1b:75:ec:99:d8:cd:53:68:e1:d3:7e:
         12:a9:bc:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----