Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
File:                     2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json)
Hash identifier:          w4T4ORPZ7YhslpY6biDBLZET7W4UcyUfEjGS5w0sX/I=
Subject key identifier:   8D:7F:2E:A1:CC:E3:B0:0F:AE:7A:B1:DF:97:08:44:0C:91:5E:84:AD
Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
Certificate issuer:       /CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Certificate serial:       019EC0A439A11E6761ABD91E95022EB0D561
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
Manifest number:          1955
Signing time:             Sat 13 Jun 2026 11:00:48 +0000
Manifest this update:     Sat 13 Jun 2026 11:00:48 +0000
Manifest next update:     Sun 14 Jun 2026 11:00:48 +0000
Files and hashes:         1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: /LYdyZrPtrOVEURTJeyS8Al3RfyQ5MO+JbzgnbMm/vg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:a4:39:a1:1e:67:61:ab:d9:1e:95:02:2e:b0:d5:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f
        Validity
            Not Before: Jun 13 11:00:48 2026 GMT
            Not After : Jun 14 11:00:48 2026 GMT
        Subject: CN=8d7f2ea1cce3b00fae7ab1df9708440c915e84ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:50:bc:66:98:56:ce:e6:b6:c5:a3:6b:e7:94:
                    d0:b7:12:6f:5b:23:c0:56:fc:ae:04:8e:81:f7:38:
                    76:ad:96:c9:ec:db:4f:30:ce:cf:aa:f4:d2:c2:fd:
                    c1:3c:05:17:77:cb:16:e5:6f:98:c5:fd:d4:84:f6:
                    9b:9c:50:41:af:66:8d:2e:27:a5:9e:88:f2:78:69:
                    f7:6d:c7:23:39:9c:7e:05:db:01:7f:ed:8d:1b:61:
                    bd:56:08:1b:87:3e:25:91:18:8b:a4:53:0f:a1:e6:
                    3b:f7:79:a2:60:b0:94:a0:57:34:e0:aa:24:d2:87:
                    12:13:a0:ee:1e:6e:91:90:4d:83:14:c5:e4:49:ce:
                    f5:32:fd:c2:56:d0:95:60:c3:95:9c:57:bc:18:c2:
                    89:76:b3:ce:05:ec:26:47:2c:44:c0:f0:be:bf:d4:
                    3a:e6:c7:53:ff:4d:14:7d:cd:72:1e:25:56:95:67:
                    15:f8:76:d7:ad:78:48:87:f9:2d:26:89:fc:1e:c4:
                    ca:18:e2:7d:e8:0f:6f:be:e5:48:98:0c:4b:f2:f9:
                    72:5a:41:2e:59:5e:47:de:9c:a7:10:ea:bb:fc:ca:
                    f9:be:b0:83:e7:85:d5:86:96:83:c1:fc:60:a0:46:
                    6b:83:66:c8:16:90:71:af:3a:00:0a:d0:34:c9:46:
                    08:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:7F:2E:A1:CC:E3:B0:0F:AE:7A:B1:DF:97:08:44:0C:91:5E:84:AD
            X509v3 Authority Key Identifier:
                keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:40:17:5a:2b:b7:eb:70:09:87:9c:ea:5c:7c:71:27:40:18:
         cb:cf:f2:52:2f:77:ce:54:ec:bf:29:02:99:10:d6:04:34:65:
         28:e1:53:e2:a5:cf:ab:57:ec:da:af:73:05:b3:8e:58:49:de:
         e4:9b:ca:94:b6:19:fa:31:85:9a:6a:4f:9b:42:6a:aa:3c:68:
         ee:8e:ab:c5:0b:87:28:63:56:92:5e:a9:7f:22:0f:e3:dd:9b:
         05:8f:5d:bb:5e:50:f7:92:f6:bf:07:15:1c:f5:81:4b:cd:77:
         fc:f6:28:6e:68:e3:a7:d3:2a:ec:cb:4d:85:cf:05:42:d0:02:
         21:81:ed:70:0c:50:0f:0a:f3:75:83:d6:da:3a:9d:63:30:11:
         15:d5:ab:d5:8a:b3:53:f7:5e:1d:ba:74:56:05:fd:50:1e:d5:
         a3:dc:be:98:43:54:65:48:59:44:d3:b6:b6:e7:5c:c8:b2:72:
         01:ee:52:3b:92:d9:96:36:6a:ac:c6:e0:b3:ba:34:a4:a1:c4:
         7e:ef:a1:d9:a2:2e:57:ff:87:10:e0:86:6e:76:e7:12:f3:4d:
         29:83:92:6c:1d:2b:38:ab:45:14:73:c7:3e:2c:44:43:01:9a:
         07:f5:ea:e6:04:ae:cc:1c:3b:71:c7:88:ce:ec:3f:dd:d9:48:
         ee:fa:03:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7ApDmhHmdhq9kelQIusNVhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZTU3NjMxZjYwYWRiMTNmMGFlMzY4NjcxY2UwZjg3NDJm
NTk3N2YwHhcNMjYwNjEzMTEwMDQ4WhcNMjYwNjE0MTEwMDQ4WjAzMTEwLwYDVQQD
Eyg4ZDdmMmVhMWNjZTNiMDBmYWU3YWIxZGY5NzA4NDQwYzkxNWU4NGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FC8ZphWzua2xaNr55TQtxJvWyPA
VvyuBI6B9zh2rZbJ7NtPMM7PqvTSwv3BPAUXd8sW5W+Yxf3UhPabnFBBr2aNLiel
nojyeGn3bccjOZx+BdsBf+2NG2G9Vggbhz4lkRiLpFMPoeY793miYLCUoFc04Kok
0ocSE6DuHm6RkE2DFMXkSc71Mv3CVtCVYMOVnFe8GMKJdrPOBewmRyxEwPC+v9Q6
5sdT/00Ufc1yHiVWlWcV+HbXrXhIh/ktJon8HsTKGOJ96A9vvuVImAxL8vlyWkEu
WV5H3pynEOq7/Mr5vrCD54XVhpaDwfxgoEZrg2bIFpBxrzoACtA0yUYIfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1/LqHM47APrnqx35cIRAyRXoStMB8GA1UdIwQY
MBaAFNrldjH2CtsT8K42hnHOD4dC9Zd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8wZTgyNWEtNWJiNi00MzI3LTlhMGEt
NDM5ZjM2ZTE2NTNhLzEvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8wZTgyNWEtNWJiNi00MzI3LTlhMGEtNDM5ZjM2ZTE2NTNh
LzEvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX0AXWiu3
63AJh5zqXHxxJ0AYy8/yUi93zlTsvykCmRDWBDRlKOFT4qXPq1fs2q9zBbOOWEne
5JvKlLYZ+jGFmmpPm0Jqqjxo7o6rxQuHKGNWkl6pfyIP492bBY9du15Q95L2vwcV
HPWBS813/PYobmjjp9Mq7MtNhc8FQtACIYHtcAxQDwrzdYPW2jqdYzARFdWr1Yqz
U/deHbp0VgX9UB7Vo9y+mENUZUhZRNO2tudcyLJyAe5SO5LZljZqrMbgs7o0pKHE
fu+h2aIuV/+HEOCGbnbnEvNNKYOSbB0rOKtFFHPHPixEQwGaB/Xq5gSuzBw7cceI
zuw/3dlI7voDBA==
-----END CERTIFICATE-----