Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
File:                     BpSFf1Ib4h4SZzna13O05qGKxps.mft (raw, json)
Hash identifier:          taRtcy1EaMsZLWT/PYbf8ToVZVhn/bVW0/tNblCLZfc=
Subject key identifier:   AA:95:21:EE:FF:5D:85:AC:2E:B1:FF:79:E2:9C:5A:DB:E2:1A:BC:4A
Authority key identifier: 06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B
Certificate issuer:       /CN=0694857f521be21e126739dad773b4e6a18ac69b
Certificate serial:       019CAB6AF55764A9B933CE77C7969D99FCFC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
Manifest number:          0B86
Signing time:             Sun 01 Mar 2026 22:00:39 +0000
Manifest this update:     Sun 01 Mar 2026 22:00:39 +0000
Manifest next update:     Mon 02 Mar 2026 22:00:39 +0000
Files and hashes:         1: BpSFf1Ib4h4SZzna13O05qGKxps.crl (hash: D20dWc8VBdk4L64Ysb4JVX/FAl5ea82e9WOZ/e4BaSs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 22:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6a:f5:57:64:a9:b9:33:ce:77:c7:96:9d:99:fc:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0694857f521be21e126739dad773b4e6a18ac69b
        Validity
            Not Before: Mar  1 22:00:39 2026 GMT
            Not After : Mar  2 22:00:39 2026 GMT
        Subject: CN=aa9521eeff5d85ac2eb1ff79e29c5adbe21abc4a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:34:49:f0:b2:7d:22:94:95:b6:67:8e:74:a7:
                    a5:4f:69:08:f0:e2:23:52:93:1e:f3:a4:72:3b:5e:
                    29:63:de:6c:ce:82:eb:d0:52:95:d7:bc:90:c3:20:
                    ba:10:9d:fa:bb:07:4c:d1:71:65:55:b0:d6:a1:13:
                    7b:c0:f3:a7:0a:62:4d:78:ad:b7:d4:e4:c6:98:7b:
                    bb:73:56:25:74:13:cd:7d:0a:58:69:40:5d:cd:3e:
                    27:e2:dc:1d:36:69:df:af:5d:5c:af:89:a2:f6:e3:
                    57:b7:36:aa:10:af:61:0d:da:d4:48:f9:c6:cb:bb:
                    4b:06:80:0f:1f:42:63:f9:d6:b2:cb:1b:08:dd:1b:
                    8e:bf:c9:5c:98:9d:d4:59:5d:71:98:42:c3:cc:bf:
                    a1:af:9a:e8:bf:89:99:83:a3:9b:43:60:20:80:f9:
                    0d:8c:58:49:ba:71:ff:f8:b4:d8:36:21:88:27:5b:
                    6e:39:95:3c:54:11:ba:f6:b9:d5:5d:2b:44:75:fb:
                    a8:c9:47:df:76:11:1f:1e:f6:1d:aa:7f:6d:86:08:
                    79:a0:9e:e7:03:05:ee:fb:17:28:17:3f:61:fe:dc:
                    31:fd:ad:76:47:98:ad:a2:12:21:d7:d6:9c:ad:4f:
                    df:fe:92:25:d4:10:47:4a:59:ec:3f:b1:f8:20:2f:
                    8f:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:95:21:EE:FF:5D:85:AC:2E:B1:FF:79:E2:9C:5A:DB:E2:1A:BC:4A
            X509v3 Authority Key Identifier:
                keyid:06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:92:e0:5b:cd:51:00:32:5e:db:c6:fd:b5:be:e2:1d:ed:6e:
         ae:10:65:fb:41:93:73:31:23:b4:69:f5:3b:f7:83:9b:03:f3:
         9d:c4:0c:85:fb:6b:35:8a:5f:29:4b:af:97:06:65:5c:3d:8b:
         2c:f3:8f:47:81:92:05:13:3d:df:49:25:23:9c:74:5a:fd:b6:
         fb:47:42:fe:d2:02:03:fd:8a:63:c5:ef:98:b6:5d:4c:a4:36:
         e3:36:2d:d7:d6:ba:ae:83:da:26:df:23:ba:48:f8:2a:a8:f9:
         e9:60:99:32:f5:11:53:17:4a:f8:33:86:39:04:9b:76:91:a3:
         ab:bd:9a:48:1c:6b:53:59:24:c8:d0:6f:b0:40:e2:63:41:47:
         8f:0b:9d:0e:28:d5:72:e2:09:61:78:e0:a2:39:5e:8b:f5:27:
         34:61:72:a1:26:35:fc:99:0c:2b:f6:f3:3a:2e:06:5b:e0:b7:
         53:b3:a8:1f:05:a6:81:9f:b9:9e:d8:21:1f:90:e5:2d:78:ad:
         55:ee:3b:d2:8f:ae:2a:1c:f0:71:ba:a9:a2:14:d4:4b:65:c8:
         d5:52:24:4b:8e:50:b9:0b:7a:33:b4:09:c7:c3:2b:77:3e:c4:
         8a:8b:dc:c3:ac:68:e7:f9:76:5d:cc:56:9c:e6:5c:c3:88:e5:
         ea:25:78:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyravVXZKm5M853x5admfz8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OTQ4NTdmNTIxYmUyMWUxMjY3MzlkYWQ3NzNiNGU2YTE4
YWM2OWIwHhcNMjYwMzAxMjIwMDM5WhcNMjYwMzAyMjIwMDM5WjAzMTEwLwYDVQQD
EyhhYTk1MjFlZWZmNWQ4NWFjMmViMWZmNzllMjljNWFkYmUyMWFiYzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTRJ8LJ9IpSVtmeOdKelT2kI8OIj
UpMe86RyO14pY95szoLr0FKV17yQwyC6EJ36uwdM0XFlVbDWoRN7wPOnCmJNeK23
1OTGmHu7c1YldBPNfQpYaUBdzT4n4twdNmnfr11cr4mi9uNXtzaqEK9hDdrUSPnG
y7tLBoAPH0Jj+dayyxsI3RuOv8lcmJ3UWV1xmELDzL+hr5rov4mZg6ObQ2AggPkN
jFhJunH/+LTYNiGIJ1tuOZU8VBG69rnVXStEdfuoyUffdhEfHvYdqn9thgh5oJ7n
AwXu+xcoFz9h/twx/a12R5itohIh19acrU/f/pIl1BBHSlnsP7H4IC+P4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqVIe7/XYWsLrH/eeKcWtviGrxKMB8GA1UdIwQY
MBaAFAaUhX9SG+IeEmc52tdztOahisabMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBTRmYxSWI0aDRTWnpuYTEzTzA1cUdLeHBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy81ZWIxNGMtZjAzYi00OGU4LWFlM2Yt
ODhhZmJkNGEzZGQyLzEvQnBTRmYxSWI0aDRTWnpuYTEzTzA1cUdLeHBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy81ZWIxNGMtZjAzYi00OGU4LWFlM2YtODhhZmJkNGEzZGQy
LzEvQnBTRmYxSWI0aDRTWnpuYTEzTzA1cUdLeHBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU5LgW81R
ADJe28b9tb7iHe1urhBl+0GTczEjtGn1O/eDmwPzncQMhftrNYpfKUuvlwZlXD2L
LPOPR4GSBRM930klI5x0Wv22+0dC/tICA/2KY8XvmLZdTKQ24zYt19a6roPaJt8j
ukj4Kqj56WCZMvURUxdK+DOGOQSbdpGjq72aSBxrU1kkyNBvsEDiY0FHjwudDijV
cuIJYXjgojlei/UnNGFyoSY1/JkMK/bzOi4GW+C3U7OoHwWmgZ+5ntghH5DlLXit
Ve470o+uKhzwcbqpohTUS2XI1VIkS45QuQt6M7QJx8Mrdz7Eiovcw6xo5/l2XcxW
nOZcw4jl6iV4Yw==
-----END CERTIFICATE-----