Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
File:                     uOssmbjKaFoqU4WIFB2xxLZB03Y.mft (raw, json)
Hash identifier:          CB+1PhoJkX5ATvVPsRnHjNUlStntfVotS1E5sijQohs=
Subject key identifier:   9F:90:ED:69:03:93:E9:67:AB:99:0B:26:F2:97:39:32:65:A1:EC:CA
Authority key identifier: B8:EB:2C:99:B8:CA:68:5A:2A:53:85:88:14:1D:B1:C4:B6:41:D3:76
Certificate issuer:       /CN=b8eb2c99b8ca685a2a538588141db1c4b641d376
Certificate serial:       019CAF47C6FAA196DF3B425F96EF01930EB2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
Manifest number:          1845
Signing time:             Mon 02 Mar 2026 16:00:42 +0000
Manifest this update:     Mon 02 Mar 2026 16:00:42 +0000
Manifest next update:     Tue 03 Mar 2026 16:00:42 +0000
Files and hashes:         1: uOssmbjKaFoqU4WIFB2xxLZB03Y.crl (hash: GIy5YGWflPpkvjaGG/bUt6wIqDW4/kA8C8ovia5KEDQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 15:05:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:af:47:c6:fa:a1:96:df:3b:42:5f:96:ef:01:93:0e:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b8eb2c99b8ca685a2a538588141db1c4b641d376
        Validity
            Not Before: Mar  2 16:00:42 2026 GMT
            Not After : Mar  3 16:00:42 2026 GMT
        Subject: CN=9f90ed690393e967ab990b26f297393265a1ecca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:07:f5:f0:53:24:b2:da:42:e6:4f:27:14:f9:
                    a1:4f:37:aa:a3:42:76:75:a3:9f:6b:14:c5:3e:84:
                    3c:c0:64:ad:29:db:93:17:53:94:fe:26:7e:b4:fa:
                    36:04:e1:b4:83:bc:26:e5:06:16:6b:53:9a:9f:43:
                    8f:78:44:a2:77:75:a1:4f:bb:b3:e4:63:05:df:cd:
                    42:92:2d:5e:d4:b3:fb:05:df:30:3a:eb:01:b2:b9:
                    d4:4d:7b:bb:be:d2:47:a6:e4:63:11:a0:3b:34:83:
                    09:40:d3:cc:03:1c:8b:69:70:4e:f6:4c:35:94:a4:
                    91:94:1c:eb:8d:f3:0c:5a:c7:5e:5c:ea:fc:69:5d:
                    74:a8:60:2b:7b:4f:58:e8:d0:dd:86:06:ee:38:68:
                    5f:e1:93:2e:2f:a0:c7:73:0c:08:96:82:8f:63:ac:
                    aa:0a:c4:78:24:1c:5b:ca:1b:d5:9d:2a:d9:91:ef:
                    44:fc:6a:b6:d3:c8:08:44:e4:da:76:b8:b2:a2:47:
                    da:f0:9b:a9:a6:56:aa:25:55:c8:46:9f:c2:f2:95:
                    86:04:8a:ca:1b:14:89:76:f8:e4:2e:79:b9:95:ed:
                    b0:b0:e1:66:4c:ad:1a:32:8b:10:ba:c4:b7:72:e1:
                    c3:d4:85:44:8f:93:d3:13:54:32:8f:ae:4c:a8:6a:
                    8f:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:90:ED:69:03:93:E9:67:AB:99:0B:26:F2:97:39:32:65:A1:EC:CA
            X509v3 Authority Key Identifier:
                keyid:B8:EB:2C:99:B8:CA:68:5A:2A:53:85:88:14:1D:B1:C4:B6:41:D3:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:84:5b:ec:d4:aa:8f:14:d6:c4:44:2e:eb:c6:f0:33:d7:92:
         40:94:76:9d:56:8d:73:7b:b4:bb:b2:94:b8:9c:9a:ed:a9:c3:
         1e:95:27:d9:9b:1c:2b:f9:50:29:18:cb:3b:16:74:ee:65:c2:
         72:a5:23:6f:73:75:13:57:9c:6b:e7:2d:a2:71:9c:1e:ef:38:
         4a:9a:4c:16:1b:da:43:32:2f:62:4b:18:c9:2e:f1:88:9e:8a:
         0f:38:b6:a8:25:9e:0f:60:bb:e8:d9:8a:ea:fe:ae:ab:aa:aa:
         56:5b:2c:42:c5:1d:c6:bc:1b:3a:ad:99:8a:fe:42:1a:8c:a1:
         df:6b:a4:3d:c7:42:c9:a5:f6:28:e7:8c:66:6b:12:7e:32:9d:
         c0:e9:ec:f3:25:43:93:c8:22:7e:e6:c3:cc:66:ce:4b:6c:21:
         b7:eb:d7:11:a9:76:84:98:74:9b:4c:b9:51:47:32:ef:64:7f:
         01:55:73:9a:01:59:82:8f:1c:65:7e:d4:e7:47:8a:df:6d:fa:
         19:ef:68:52:f1:3a:34:b7:d7:ac:b2:b3:eb:18:86:ce:5b:ea:
         07:a9:1b:d4:94:51:10:c8:a8:0b:e0:80:b9:ad:df:08:c7:ba:
         86:a7:fe:f7:4b:7a:cd:87:c2:b0:88:cb:ef:c3:de:ff:a7:81:
         65:24:8f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----