Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
File:                     EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft (raw, json)
Hash identifier:          bcCwcXbmeyst8YmEfK3Gvt4RqfnhLrxWDaUM1FGvfx4=
Subject key identifier:   E2:63:57:A4:B6:77:1E:59:03:04:2B:27:74:56:86:9B:82:A4:5F:59
Authority key identifier: 10:93:0D:00:49:BA:87:00:4C:CC:9E:5B:E5:26:C3:50:CC:83:FA:8D
Certificate issuer:       /CN=10930d0049ba87004ccc9e5be526c350cc83fa8d
Certificate serial:       019CAC0FD63DBD5757B7E167E0850CA0DBE9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
Manifest number:          1842
Signing time:             Mon 02 Mar 2026 01:00:44 +0000
Manifest this update:     Mon 02 Mar 2026 01:00:44 +0000
Manifest next update:     Tue 03 Mar 2026 01:00:44 +0000
Files and hashes:         1: EJMNAEm6hwBMzJ5b5SbDUMyD-o0.crl (hash: JX39tBJ/zSREBooNPJ+oxJU8rZJRla6A2t+9JMPwy+M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:0f:d6:3d:bd:57:57:b7:e1:67:e0:85:0c:a0:db:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10930d0049ba87004ccc9e5be526c350cc83fa8d
        Validity
            Not Before: Mar  2 01:00:44 2026 GMT
            Not After : Mar  3 01:00:44 2026 GMT
        Subject: CN=e26357a4b6771e5903042b277456869b82a45f59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:da:38:ac:37:df:47:57:af:dd:80:dd:74:e9:
                    76:40:a8:29:16:5d:0f:4c:8d:78:82:d2:3d:06:f4:
                    2c:8e:f3:9c:69:88:a3:f5:c4:08:6c:6c:1c:83:0f:
                    f4:f4:98:0e:ce:fa:13:8c:62:57:0f:00:1c:51:1b:
                    f0:54:58:39:58:dd:cb:38:52:c1:27:1d:7a:6a:e2:
                    77:03:32:37:0a:cf:bd:18:1a:e9:56:1e:ff:7b:fd:
                    98:1c:1a:17:3c:dd:0c:6f:68:e5:f4:26:0e:dd:d3:
                    90:82:be:b3:47:2d:4f:71:05:45:7e:d8:04:05:70:
                    cb:f7:e5:d9:d3:c6:e1:c3:6a:c6:4f:ac:38:4f:6b:
                    f2:49:d7:7f:4c:37:8d:e2:7d:30:25:60:35:3b:bd:
                    fe:90:00:bd:a9:25:ff:71:78:7a:14:0c:73:09:93:
                    03:16:9e:e4:16:69:5c:5f:70:b9:49:fe:ad:97:97:
                    ca:c0:54:b0:16:56:ee:b1:7c:56:8c:8a:35:cf:1e:
                    06:64:3a:26:e3:00:ba:9d:42:39:41:ca:98:c1:24:
                    4c:21:a1:21:46:fe:56:a2:be:4b:0c:7a:d3:8b:7a:
                    6c:b4:7a:e8:8f:94:8d:f0:1b:ad:98:bd:81:46:d2:
                    c4:a1:0a:98:15:97:b0:eb:73:67:9e:d8:e4:9c:a4:
                    0a:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:63:57:A4:B6:77:1E:59:03:04:2B:27:74:56:86:9B:82:A4:5F:59
            X509v3 Authority Key Identifier:
                keyid:10:93:0D:00:49:BA:87:00:4C:CC:9E:5B:E5:26:C3:50:CC:83:FA:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:a4:73:8a:39:17:44:da:7c:3c:9f:ff:b1:cc:76:11:23:2f:
         c4:98:68:48:e5:a0:b0:c9:a4:7e:0c:09:16:4e:79:15:9b:34:
         f8:10:81:fe:e4:6b:d7:c1:ce:ff:b3:be:de:d2:51:4b:32:2b:
         ed:3c:77:9c:bd:31:7e:e8:3a:bd:b2:da:30:33:bd:b0:1b:96:
         0d:20:81:50:98:92:0e:f0:39:95:82:b5:c2:fe:c5:2b:53:2c:
         3f:3f:2d:51:09:80:24:bc:3a:30:b7:17:94:56:11:f9:86:1a:
         3b:c1:09:5d:b4:98:7d:b2:dd:d0:30:12:2d:00:84:31:4a:2b:
         39:67:2f:f7:b1:75:49:e7:84:78:1f:90:bc:28:2b:2c:2d:dc:
         4d:be:a2:ee:db:29:0a:3e:3a:36:84:48:4e:5b:e1:ca:14:90:
         46:bc:16:7d:db:9d:19:9a:4d:7d:31:8b:0d:86:1a:0d:96:e9:
         61:05:6f:67:b0:55:d6:fd:a9:0f:cc:9e:51:20:84:9d:6c:12:
         a7:64:16:df:15:7a:e7:d6:a6:3a:04:50:c0:9a:68:a5:62:1d:
         27:9a:b3:7f:65:ad:d6:8d:c2:3f:8f:6c:2b:27:22:3e:3d:b3:
         2e:61:ff:e9:64:2c:1c:21:db:02:1e:8b:6a:6f:87:63:6f:59:
         3f:b4:eb:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----