Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
File:                     Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft (raw, json)
Hash identifier:          Wob1sA1aLx0dy0yqDvfT0fBrTfYv7yB73NljlNtYVEI=
Subject key identifier:   0E:4D:CA:4D:26:58:2A:D4:AF:01:60:66:F4:FB:82:59:77:1C:A6:81
Authority key identifier: 0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89
Certificate issuer:       /CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
Certificate serial:       019D9A7536493D621393E29CAD39A93428E4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
Manifest number:          072E
Signing time:             Fri 17 Apr 2026 08:01:06 +0000
Manifest this update:     Fri 17 Apr 2026 08:01:06 +0000
Manifest next update:     Sat 18 Apr 2026 08:01:06 +0000
Files and hashes:         1: Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl (hash: pHWVAG+CwEdE9Kpc/SusWogwDk/4KnyfEaiO6DaM8b4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:75:36:49:3d:62:13:93:e2:9c:ad:39:a9:34:28:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
        Validity
            Not Before: Apr 17 08:01:06 2026 GMT
            Not After : Apr 18 08:01:06 2026 GMT
        Subject: CN=0e4dca4d26582ad4af016066f4fb8259771ca681
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:ef:cc:6a:80:61:59:17:fc:cf:5e:f8:ac:c5:
                    cf:60:06:5f:c9:d3:5d:70:aa:27:92:ce:bf:19:7a:
                    95:bd:0a:13:59:04:2b:50:68:ae:27:f4:ae:71:67:
                    33:79:cf:18:f2:bc:68:02:1f:d8:f3:65:d8:ea:91:
                    57:23:fc:39:90:12:0a:20:9a:6f:7e:68:f1:07:03:
                    91:bf:88:54:6f:8b:4c:8c:db:11:a4:b2:75:5e:2f:
                    44:37:6b:bf:fc:fe:00:ea:1b:17:74:0f:15:84:7c:
                    2a:03:9c:3f:72:a9:05:ab:52:6c:9a:1f:66:84:19:
                    b4:3f:8c:d0:8a:96:c1:5e:c9:db:49:57:de:25:35:
                    ef:4b:f8:52:9f:d1:cc:64:a8:eb:62:1e:e9:43:86:
                    9a:fc:7a:10:76:b7:01:ff:88:a3:a8:c7:1a:2f:60:
                    87:5b:1b:e1:86:d3:e3:e4:ba:21:00:c6:36:4d:72:
                    eb:d2:a2:c9:ed:b4:58:0b:65:37:69:b1:b9:68:c6:
                    fb:c1:02:2c:15:4c:71:6b:e5:4c:2b:0b:80:52:19:
                    a7:26:32:87:d8:80:06:aa:1d:d0:57:ef:08:6d:88:
                    6b:ea:89:8c:86:c1:39:c6:58:d5:cc:79:88:d9:29:
                    02:a0:41:ab:1d:ec:a8:8f:62:60:92:80:6a:0b:b6:
                    25:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:4D:CA:4D:26:58:2A:D4:AF:01:60:66:F4:FB:82:59:77:1C:A6:81
            X509v3 Authority Key Identifier:
                keyid:0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:56:f5:85:ad:95:df:63:a1:5f:f1:7b:f1:f1:7f:83:a8:86:
         28:5e:1e:a0:3d:65:d4:53:68:de:bb:1b:ac:10:17:a0:e0:a5:
         d1:e4:ce:79:ff:6b:82:ff:c0:9a:e3:5c:12:05:74:6f:48:7b:
         9d:67:bb:a1:64:b9:40:1f:a3:b4:46:3d:81:ba:bc:cd:a3:40:
         5e:85:94:aa:0a:3b:bc:41:28:c3:2b:ac:2e:9c:1e:85:77:4e:
         11:b7:5f:f6:81:a9:8a:08:1c:b0:df:cb:ab:a0:b7:77:db:05:
         bb:63:97:df:7e:eb:1f:64:3c:e3:b1:7f:94:7d:83:34:4e:4a:
         73:fa:d0:ed:a9:ef:bd:6d:14:e5:99:59:db:4a:65:77:b1:2d:
         d2:6e:4e:3c:fe:7e:7e:04:7e:db:fe:bd:b1:98:98:d4:f9:43:
         ea:2a:4e:e6:65:d1:b9:e2:48:f5:f6:ae:c5:c3:36:ff:3c:f4:
         15:4d:8c:9b:b6:73:6c:4c:98:3d:35:8f:aa:90:7f:dd:c6:7c:
         df:a8:20:32:77:a9:2d:6d:06:fe:fd:e3:67:0b:0d:45:ed:6f:
         42:77:a0:8b:32:7b:82:c6:91:99:9a:9a:96:52:91:3e:42:22:
         12:02:00:04:40:82:de:71:f8:67:45:de:7c:11:e8:73:34:83:
         2d:3e:bb:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----