Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
File:                     nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft (raw, json)
Hash identifier:          seIWLlR5yuNuRX/RNG4/0Ckuf35t6BWCkyTULcPgUUc=
Subject key identifier:   1F:7B:1C:E7:2A:AA:30:CB:C2:CF:08:AB:5F:4E:C5:1D:E0:13:B0:07
Authority key identifier: 9C:E8:94:F1:D7:73:1E:99:61:71:9B:E1:ED:99:84:68:FC:BA:BE:A9
Certificate issuer:       /CN=9ce894f1d7731e9961719be1ed998468fcbabea9
Certificate serial:       019CAAC64A0AAFC241309DEE984FCF7E7D33
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nOiU8ddzHplhcZvh7ZmEaPy6vqk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
Manifest number:          182C
Signing time:             Sun 01 Mar 2026 19:00:47 +0000
Manifest this update:     Sun 01 Mar 2026 19:00:47 +0000
Manifest next update:     Mon 02 Mar 2026 19:00:47 +0000
Files and hashes:         1: nOiU8ddzHplhcZvh7ZmEaPy6vqk.crl (hash: FKDCmEeU+x2DpmkobzteBi2PXsoWonbIrr1++eYxQak=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nOiU8ddzHplhcZvh7ZmEaPy6vqk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:c6:4a:0a:af:c2:41:30:9d:ee:98:4f:cf:7e:7d:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9ce894f1d7731e9961719be1ed998468fcbabea9
        Validity
            Not Before: Mar  1 19:00:47 2026 GMT
            Not After : Mar  2 19:00:47 2026 GMT
        Subject: CN=1f7b1ce72aaa30cbc2cf08ab5f4ec51de013b007
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:38:a5:d2:6b:55:27:d2:95:56:67:b9:0c:a3:
                    16:02:99:98:d3:86:e4:05:49:33:94:f4:58:0e:fe:
                    78:03:c2:1f:68:ca:48:b5:73:03:d5:64:b4:1b:74:
                    ce:eb:bf:8d:5f:4f:87:8e:bb:08:bd:c4:7c:1a:3d:
                    8a:d2:df:0c:f4:b2:64:68:f2:ad:e9:e7:e0:dc:fb:
                    68:72:af:a4:95:58:bd:c3:84:88:be:bd:69:9a:39:
                    64:51:1a:f7:3b:03:00:bc:fc:fe:e2:2d:5f:e1:58:
                    95:e6:02:06:ed:b6:ac:2a:f7:44:7f:e2:2a:98:da:
                    74:aa:95:64:eb:d6:1d:53:4e:b5:6d:64:0f:7e:84:
                    4f:39:cb:c1:00:4a:ba:c7:66:99:69:ac:88:bd:63:
                    96:f0:c8:df:b7:ec:db:06:5e:5d:e4:73:2a:2f:18:
                    03:67:03:52:31:3f:1e:cc:e8:e4:d3:3b:73:97:ea:
                    05:1e:65:45:47:54:5b:58:d0:dc:be:fb:88:fe:d7:
                    1a:71:7c:04:1f:de:ff:cc:ce:56:b4:f4:fa:76:a8:
                    e0:38:0c:d8:a4:26:c5:33:92:2c:df:99:70:ca:30:
                    61:0c:1a:84:cc:ae:ef:e0:6e:96:04:10:ee:61:08:
                    96:80:fe:8a:b6:bf:9a:bf:53:10:12:67:4b:3f:13:
                    10:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:7B:1C:E7:2A:AA:30:CB:C2:CF:08:AB:5F:4E:C5:1D:E0:13:B0:07
            X509v3 Authority Key Identifier:
                keyid:9C:E8:94:F1:D7:73:1E:99:61:71:9B:E1:ED:99:84:68:FC:BA:BE:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOiU8ddzHplhcZvh7ZmEaPy6vqk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:de:56:c4:c4:d2:18:3f:e3:a3:37:7c:96:22:41:a7:c2:e9:
         21:86:ee:93:8f:b8:fe:2e:d5:ed:5c:b2:a1:ed:33:da:ac:29:
         37:0a:1c:fe:95:d6:ec:e5:72:a0:70:25:de:80:91:bb:d1:b9:
         35:be:be:79:db:57:ef:c8:9d:b7:e3:73:86:76:10:3e:98:a5:
         a4:87:3b:35:3b:fa:dd:99:dd:56:3d:98:4d:19:a5:37:5e:d8:
         21:b1:18:e9:23:a4:1d:3b:cf:eb:11:e3:89:57:77:ea:69:85:
         92:4c:43:bd:ad:75:da:9e:cf:7e:e4:5f:40:ff:63:2a:c8:e2:
         30:da:c3:eb:16:61:42:21:c7:56:0a:19:99:89:26:92:52:5e:
         1a:84:c5:38:73:c4:29:c1:19:94:61:6b:2d:54:95:66:ad:9f:
         1c:10:a2:62:6b:50:be:92:15:49:36:fe:ea:7d:5d:b2:18:c5:
         05:f0:9e:21:b4:7d:8d:ce:c7:dc:ee:bb:d6:30:23:18:34:e2:
         45:2b:c4:95:e2:5d:8c:b2:bf:6e:b3:2b:36:be:39:4f:61:c9:
         f1:e3:1f:ed:fb:2b:da:f5:23:35:aa:6f:b0:5a:78:aa:3d:ba:
         69:f4:0c:e1:39:7d:62:e1:a3:96:99:4d:b1:72:6f:70:38:27:
         6b:ca:3c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----