Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
File:                     YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json)
Hash identifier:          9IsP/YjMPR8pnSnhZrkd+cwFiohz8LmwMuKpOqrY9Iw=
Subject key identifier:   E8:0A:06:B1:C8:78:BE:AB:24:1D:A7:30:1A:C4:C8:75:17:D7:01:09
Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
Certificate issuer:       /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Certificate serial:       019CAD22F609241393623FBFEDE125043805
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
Manifest number:          105F
Signing time:             Mon 02 Mar 2026 06:01:15 +0000
Manifest this update:     Mon 02 Mar 2026 06:01:15 +0000
Manifest next update:     Tue 03 Mar 2026 06:01:15 +0000
Files and hashes:         1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: 6R21odk4nkbzGFGm/5XZvLyehnSep8SxbAs+f7fWRs4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 06:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:22:f6:09:24:13:93:62:3f:bf:ed:e1:25:04:38:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
        Validity
            Not Before: Mar  2 06:01:15 2026 GMT
            Not After : Mar  3 06:01:15 2026 GMT
        Subject: CN=e80a06b1c878beab241da7301ac4c87517d70109
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:fa:fc:5e:d9:71:6d:c9:87:36:79:07:c5:95:
                    49:70:dc:95:28:7c:fc:2d:f6:46:ed:32:2e:30:48:
                    52:38:7b:bd:59:2d:7a:5b:29:0d:da:9c:2b:8c:5a:
                    72:5f:67:78:b1:10:1d:a8:89:96:d2:f3:69:72:94:
                    89:00:0c:45:dd:89:4a:11:c3:c8:97:42:0e:6a:bf:
                    4c:36:ea:ab:e1:ec:98:e3:04:0d:7b:03:f2:0f:b2:
                    d4:c6:da:09:ea:50:08:59:0d:d6:ea:c6:b0:59:20:
                    e1:f7:f2:83:6a:fc:7b:9c:5d:41:44:cf:27:84:84:
                    aa:9b:89:18:ac:51:9b:1c:22:90:74:18:73:33:4f:
                    24:d6:cf:ff:a7:9d:68:df:e4:93:d5:45:24:79:c2:
                    61:e6:4e:a0:52:af:1c:63:23:70:a8:a8:6a:14:80:
                    0d:37:02:3a:42:56:c0:63:03:b4:0b:22:e7:69:57:
                    5e:2e:cf:1a:a5:64:42:ec:8e:62:db:65:48:ba:6b:
                    09:29:06:03:16:79:1e:5b:ee:91:6f:38:8c:f9:d4:
                    e1:29:d6:c3:aa:63:22:c3:a2:4f:78:e9:54:00:21:
                    05:ad:df:d7:11:fc:08:87:61:f7:d3:a2:f5:c0:0e:
                    15:3c:9a:dd:0d:b6:46:0c:c6:ff:3c:5a:2b:10:e7:
                    e7:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:0A:06:B1:C8:78:BE:AB:24:1D:A7:30:1A:C4:C8:75:17:D7:01:09
            X509v3 Authority Key Identifier:
                keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:92:a7:2b:ee:4f:31:78:21:bf:e4:9a:22:3a:29:68:fe:af:
         85:9e:24:da:b0:4f:a3:c7:42:94:6b:33:29:e2:32:35:06:af:
         06:66:a0:40:dc:b5:4a:c5:9f:e0:dd:6d:5f:9f:08:03:53:3e:
         59:2f:74:f8:3b:b3:93:ff:26:e3:0b:94:1f:16:4c:e8:d6:ea:
         71:b6:59:d6:4e:ac:37:56:05:35:09:9c:69:d6:9e:9f:0a:ed:
         b2:2f:cb:5b:fc:d4:08:9b:ba:c9:03:46:b8:61:45:70:ac:df:
         15:75:88:27:41:ad:ea:41:04:f1:36:f1:25:60:85:21:80:b9:
         01:f2:b5:53:fd:d8:e1:a1:5d:69:15:e1:77:bf:ca:71:df:c1:
         83:9d:3b:44:4d:c4:ef:8c:41:77:1b:b6:b8:b8:50:d4:85:47:
         5e:b1:8f:a7:0d:dc:85:4b:59:fa:b8:43:bc:48:ed:2a:a9:93:
         2a:d6:de:88:74:4f:5b:c5:26:51:dc:32:31:69:ef:27:5b:06:
         8a:98:e4:c8:f0:93:1e:ad:e8:34:67:7f:05:7d:14:83:d4:ef:
         25:5e:59:f0:2b:48:bd:4a:03:e0:93:bf:64:6c:ba:68:bf:7c:
         32:cb:f3:7e:aa:65:af:aa:e2:54:03:d4:d1:d0:67:5f:8e:36:
         3f:db:71:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----