Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
File:                     2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json)
Hash identifier:          Y8iYwlbG98bKtj/LOHDMxVJ0MhRS4SsUbdoCP69uPeU=
Subject key identifier:   66:B4:F7:A6:21:FC:A7:E0:9D:21:A9:A2:A5:7A:15:12:5C:54:75:24
Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
Certificate issuer:       /CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Certificate serial:       019CABA21C5DF9A6311581355FAFCB0CB2C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
Manifest number:          1841
Signing time:             Sun 01 Mar 2026 23:00:53 +0000
Manifest this update:     Sun 01 Mar 2026 23:00:53 +0000
Manifest next update:     Mon 02 Mar 2026 23:00:53 +0000
Files and hashes:         1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: XA7xaN6e3e0utZFt7cEMDkj9el+MxN9qy7uOS9veal8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:a2:1c:5d:f9:a6:31:15:81:35:5f:af:cb:0c:b2:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f
        Validity
            Not Before: Mar  1 23:00:53 2026 GMT
            Not After : Mar  2 23:00:53 2026 GMT
        Subject: CN=66b4f7a621fca7e09d21a9a2a57a15125c547524
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:01:e5:98:a1:4a:f0:f1:57:6e:54:c6:ad:ec:
                    1f:d8:28:1f:ad:8c:ba:95:06:27:13:70:69:5c:1e:
                    82:e6:b1:d6:c6:cf:cf:d7:18:cb:a9:c3:bc:95:9e:
                    be:60:85:d4:2b:bd:22:cc:9c:7f:54:71:e5:b8:5e:
                    a8:c0:06:a8:b7:ca:63:e4:18:14:5d:5d:96:01:88:
                    c4:74:2c:26:e4:42:c7:7d:ac:61:fd:4a:cb:6e:71:
                    e0:ed:93:9b:ad:a4:7a:48:36:34:79:bf:43:0e:28:
                    69:8f:b8:b6:04:bd:bb:1a:1a:5d:64:97:27:af:50:
                    5a:7a:69:68:ee:48:68:8f:26:e8:77:3e:d6:e9:5d:
                    7e:cd:a5:59:68:83:df:d2:8f:a7:f9:38:21:fe:1b:
                    dd:e8:57:e4:70:29:eb:a6:f0:4b:3f:c8:33:b9:55:
                    ea:ac:a3:57:93:c6:4b:71:86:b1:7f:5e:b4:d3:19:
                    7a:81:a3:72:c2:dc:ee:27:5e:a8:ca:86:29:1d:3e:
                    1a:d8:32:e2:36:02:06:a9:d3:ac:d5:64:b2:1e:e0:
                    5c:3a:6c:6e:97:51:fb:c7:b6:dc:a1:3d:16:32:a3:
                    61:2b:14:13:56:ab:16:78:e6:7b:09:c7:38:5c:7a:
                    e7:9b:08:f3:bc:3d:73:85:60:1b:d0:d0:e9:af:7d:
                    f8:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:B4:F7:A6:21:FC:A7:E0:9D:21:A9:A2:A5:7A:15:12:5C:54:75:24
            X509v3 Authority Key Identifier:
                keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:a4:69:0e:b3:7f:82:bd:c8:b6:af:95:7f:37:24:76:bd:c9:
         70:4a:e0:e7:11:bc:2a:a4:41:c6:8d:47:25:98:5d:a8:93:a0:
         d1:9b:65:6b:46:5c:c2:c8:be:2a:0e:41:2b:23:d6:2a:30:5f:
         69:14:6b:1f:cb:48:71:aa:f7:b0:ce:c0:c1:65:db:1d:ae:28:
         a7:e6:40:09:f9:1d:88:d1:9f:ad:0b:69:8f:7c:05:4b:1e:f2:
         48:ce:3e:4a:c8:22:75:34:c8:03:66:b3:45:d2:df:65:f6:3c:
         0d:8a:28:fd:a6:58:82:da:ab:90:f2:9d:23:e2:6b:a4:27:f6:
         60:04:94:50:dd:e4:af:da:7f:a5:77:0a:cd:99:73:71:32:82:
         40:7d:73:3c:fd:37:f5:48:c5:66:ac:6a:d5:62:e3:b4:60:80:
         c8:37:df:f3:08:b5:be:d8:eb:54:4c:db:41:27:5b:a8:dd:78:
         ed:37:b0:2c:b0:5d:11:2b:52:fa:41:98:a5:5d:2c:53:69:38:
         ab:94:44:24:80:58:78:02:9f:4e:f0:c3:33:05:94:f4:62:3e:
         35:cf:94:02:a9:44:d7:a7:47:70:23:55:ad:91:96:b8:fa:46:
         93:f5:4a:8f:db:8d:81:1a:64:18:d6:5f:1e:a3:f8:74:aa:01:
         dd:e7:39:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----