Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File:                     SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier:          LLqUrpqKGThJo03KpvWOq+Lpap2HlAD3P4kE/5n/iEI=
Subject key identifier:   B9:C6:1F:7B:69:10:25:90:0F:83:FE:D5:AB:BD:A9:35:A5:EC:6D:82
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer:       /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial:       019CAA8F8FE9197E06C9A72AA83EB83C67BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number:          182F
Signing time:             Sun 01 Mar 2026 18:01:01 +0000
Manifest this update:     Sun 01 Mar 2026 18:01:01 +0000
Manifest next update:     Mon 02 Mar 2026 18:01:01 +0000
Files and hashes:         1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: ncGsq9qu68mLk1/l4r478kvCyy7sQRNrxbkR8c71scA=)
                          2: r_1SBfNhdBcm7JVeR9X_A84AJes.roa (hash: 5FQO7eCKudZ+J7HgNfZUcYEMcJXj0nI8UpKfM1ybpwI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:8f:8f:e9:19:7e:06:c9:a7:2a:a8:3e:b8:3c:67:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
        Validity
            Not Before: Mar  1 18:01:01 2026 GMT
            Not After : Mar  2 18:01:01 2026 GMT
        Subject: CN=b9c61f7b691025900f83fed5abbda935a5ec6d82
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:64:57:69:d5:88:75:ef:64:6a:b0:f4:c3:78:
                    64:ca:50:dc:bb:f6:18:99:fc:0e:d5:15:61:ec:6e:
                    52:8b:ac:a8:71:b1:09:76:56:cd:8c:b8:7d:b8:12:
                    42:a7:54:09:95:93:b2:3f:4e:03:27:26:c2:24:f6:
                    58:db:6d:a7:44:86:1d:a6:9b:07:5a:79:31:57:27:
                    93:e0:5a:fa:76:54:68:2c:54:70:75:8a:fe:b3:d7:
                    71:e3:2f:bc:1c:c1:95:cb:50:82:72:ed:a8:5c:d1:
                    c9:5b:c9:32:da:80:3d:a1:25:72:d6:2b:2f:1e:a9:
                    77:2b:69:ff:03:58:32:25:8b:a3:c7:d7:bc:21:31:
                    b4:db:03:ed:d9:b3:a2:bd:fb:cb:a1:9f:97:b8:39:
                    1a:3b:ad:1b:23:34:cd:f1:0a:5a:1c:29:d8:e6:e3:
                    e6:5c:d1:ab:2a:a9:6a:4b:47:2b:a6:b3:6a:6d:3d:
                    fd:a4:34:46:77:e7:fd:e3:df:9e:a6:d2:bc:0a:33:
                    7f:b6:be:93:77:38:52:f8:e5:a9:04:ab:2b:3c:82:
                    d4:ff:17:74:c6:1f:2c:25:b3:95:d0:c0:cd:d3:77:
                    3e:40:43:39:42:9a:75:c6:66:48:28:ad:7e:9d:81:
                    42:a6:1c:c0:5c:c7:d6:37:9a:fa:7c:7e:d1:d9:d6:
                    4c:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:C6:1F:7B:69:10:25:90:0F:83:FE:D5:AB:BD:A9:35:A5:EC:6D:82
            X509v3 Authority Key Identifier:
                keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:15:0a:38:ab:d4:94:52:f5:66:50:01:dc:05:43:b4:fd:a8:
         8e:dd:de:dc:52:a1:c8:1e:93:28:7f:1f:45:68:9d:87:84:ed:
         1d:a1:82:cb:71:f4:88:40:d8:9d:55:10:f5:15:30:93:64:13:
         11:f9:66:a8:bb:2e:eb:ea:03:7c:8c:18:97:d7:b5:92:b8:88:
         63:17:e4:77:31:a9:0d:e2:1e:9f:80:11:a0:a0:52:19:54:8c:
         82:94:ed:b4:b6:10:88:1d:80:ab:3b:f4:fc:d6:80:36:ec:75:
         d4:a3:68:7a:a6:f4:f8:d8:16:63:2d:57:80:7f:fd:50:06:b8:
         28:c5:c7:6a:2d:fb:c5:34:b9:e4:2f:ea:cf:9d:25:dd:b4:1c:
         92:d2:bc:56:a3:18:1a:73:51:53:0c:ad:ef:3c:4f:15:c9:3d:
         80:c6:39:75:c9:79:c9:b5:96:6f:71:68:17:cf:60:f0:6b:16:
         21:90:b6:7f:f1:5a:d5:75:58:20:90:83:2b:10:56:e0:81:f2:
         45:1a:c7:56:a1:4e:7e:f3:f0:85:ab:43:69:71:9f:c5:a3:b2:
         8c:18:11:22:a1:fe:49:ea:25:be:41:89:a2:12:51:4f:09:53:
         4e:14:70:65:6b:b1:cc:0c:0a:20:c7:ee:b9:ff:00:17:bb:bb:
         de:cf:fa:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:07:00 2026 by rpki-client