Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
File:                     uOssmbjKaFoqU4WIFB2xxLZB03Y.mft (raw, json)
Hash identifier:          KQ/c7oSz052rnnWAD6Ul69jHFN8CQHgT5YlAjwLeSGI=
Subject key identifier:   35:86:78:BC:BD:D5:A1:BA:55:E8:61:14:35:47:A3:64:60:35:7D:89
Authority key identifier: B8:EB:2C:99:B8:CA:68:5A:2A:53:85:88:14:1D:B1:C4:B6:41:D3:76
Certificate issuer:       /CN=b8eb2c99b8ca685a2a538588141db1c4b641d376
Certificate serial:       019D9AE2E0A26A7908BFD0C1F7B8AB064464
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
Manifest number:          18BF
Signing time:             Fri 17 Apr 2026 10:00:52 +0000
Manifest this update:     Fri 17 Apr 2026 10:00:52 +0000
Manifest next update:     Sat 18 Apr 2026 10:00:52 +0000
Files and hashes:         1: uOssmbjKaFoqU4WIFB2xxLZB03Y.crl (hash: hYVRVhq2Xskn4rlU//ZnY4whOuUYoSyeOTbJxrcRR7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 10:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:e2:e0:a2:6a:79:08:bf:d0:c1:f7:b8:ab:06:44:64
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b8eb2c99b8ca685a2a538588141db1c4b641d376
        Validity
            Not Before: Apr 17 10:00:52 2026 GMT
            Not After : Apr 18 10:00:52 2026 GMT
        Subject: CN=358678bcbdd5a1ba55e861143547a36460357d89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:c0:ba:87:0c:92:1c:85:e5:5b:dd:29:39:33:
                    39:46:19:b6:32:42:2a:d3:48:98:d7:0f:e4:73:10:
                    77:87:8e:72:1b:ff:c6:40:00:5e:3b:47:32:10:c6:
                    be:25:0f:2f:c2:39:7f:aa:60:2c:f2:95:9a:cd:71:
                    69:79:0b:e8:1b:44:3d:02:59:55:e9:d5:2b:68:55:
                    31:76:b0:0a:44:80:20:31:d7:4b:4e:be:42:c1:cd:
                    fd:40:3a:75:96:6a:f9:87:2d:1e:a9:a4:f3:7c:06:
                    3e:36:c1:75:35:11:4e:04:57:2e:03:91:b0:fb:99:
                    99:fa:86:33:67:09:b8:8f:56:bc:0c:8d:4c:9a:2f:
                    5f:3f:13:7a:25:04:2e:92:a0:9a:3f:7f:3e:2f:36:
                    f5:81:c9:d8:54:24:15:53:30:07:4f:9a:51:41:52:
                    3c:50:40:32:57:88:d4:70:61:2d:81:ef:22:ad:0f:
                    f3:4f:d9:f2:56:d3:49:df:b9:13:28:1f:4b:8a:97:
                    92:17:3f:d6:24:85:2d:ba:40:39:4a:4f:bd:be:3a:
                    ca:7c:c2:de:6f:fd:84:88:80:25:05:e2:63:d6:34:
                    0d:30:cb:03:c2:76:bb:0d:7b:19:f1:5d:6b:b1:a1:
                    31:a0:da:be:49:e2:d7:38:28:49:ee:a2:6d:2b:27:
                    be:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:86:78:BC:BD:D5:A1:BA:55:E8:61:14:35:47:A3:64:60:35:7D:89
            X509v3 Authority Key Identifier:
                keyid:B8:EB:2C:99:B8:CA:68:5A:2A:53:85:88:14:1D:B1:C4:B6:41:D3:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:c5:1b:38:61:5c:9b:35:a6:14:15:c7:6f:27:86:5d:93:86:
         8c:07:57:60:14:50:c1:02:81:68:eb:40:8a:6e:03:34:63:36:
         40:a3:96:63:8b:cb:70:f3:aa:8b:73:6e:e3:c5:b1:19:17:f7:
         82:2c:cd:28:61:c1:3a:91:5e:0c:5f:8c:ad:45:22:ca:e9:30:
         0a:55:d7:34:98:5d:57:2c:d8:6f:2f:af:d1:8b:95:69:c0:e2:
         18:88:1f:14:98:59:ed:39:39:87:cb:3e:e2:76:6f:61:7d:7b:
         44:e5:11:f3:ae:8f:e9:bd:85:e9:47:8b:5a:89:dd:ea:65:ce:
         81:3b:ff:b8:09:e6:a6:7b:7e:af:86:93:0a:a6:1c:af:81:07:
         55:08:ca:63:41:b1:26:2e:ee:12:37:8f:d6:75:31:a8:50:be:
         66:f0:ba:fc:27:33:68:da:fa:3f:db:2b:cd:ec:11:43:52:82:
         ee:03:1e:d6:26:41:76:88:73:6d:25:38:f3:6e:90:31:90:5d:
         ba:06:c9:ed:b2:8f:1f:d6:5c:aa:17:d6:f9:77:82:60:d9:27:
         d3:d8:8b:39:ff:89:c9:66:c2:b3:e2:b8:ac:28:8c:cf:54:aa:
         41:38:8c:d5:42:1b:0e:83:1f:4d:d5:2b:25:19:08:38:5a:57:
         71:14:f0:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----