Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File:                     X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier:          XxsI59Yf35t5dFHmhIdvEouIr4FYsUL5GnznsLLnU0s=
Subject key identifier:   15:36:C0:0A:91:2F:79:20:EB:4E:96:21:57:05:89:34:F5:5B:D2:24
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer:       /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial:       019CAD901CE698847DBD6B68E6D71F347FD5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number:          061E
Signing time:             Mon 02 Mar 2026 08:00:28 +0000
Manifest this update:     Mon 02 Mar 2026 08:00:28 +0000
Manifest next update:     Tue 03 Mar 2026 08:00:28 +0000
Files and hashes:         1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: Vljkv1ryC43Mc7InekICButZ5w7P+kX4LrLnYKKFIg4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 08:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:90:1c:e6:98:84:7d:bd:6b:68:e6:d7:1f:34:7f:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
        Validity
            Not Before: Mar  2 08:00:28 2026 GMT
            Not After : Mar  3 08:00:28 2026 GMT
        Subject: CN=1536c00a912f7920eb4e962157058934f55bd224
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:cc:9b:28:f7:4b:ce:3a:23:e2:b6:c3:be:b9:
                    20:f9:10:a9:86:58:e0:92:2c:92:9b:9d:66:94:1c:
                    20:0d:be:d1:3b:fc:82:ab:bf:58:1d:e8:ce:9f:3b:
                    41:22:9b:b4:5e:00:b9:91:0c:2c:d1:81:05:59:3f:
                    3c:af:ee:e2:09:15:19:f6:18:ae:bf:3b:7d:dd:9a:
                    c1:c9:2c:a3:bc:a1:c6:fb:71:6d:5a:a4:be:a9:40:
                    d1:6c:12:49:a7:72:a1:84:45:31:dc:f0:6a:c3:98:
                    4d:48:cb:09:79:c7:ee:97:6c:df:6a:2e:bf:0e:85:
                    11:ac:cb:63:77:5e:d7:aa:88:fd:ca:0a:e3:ef:ae:
                    7b:f0:db:ee:53:b6:6e:ff:d9:62:eb:12:de:b9:8b:
                    29:9d:e5:02:50:2f:82:c6:42:32:70:f7:36:5c:41:
                    d8:f5:1d:5a:fb:bf:9a:05:27:da:14:6e:4c:8c:52:
                    96:23:0c:95:77:55:cd:4e:70:e1:72:48:74:42:eb:
                    0a:7d:bc:b7:13:78:50:e7:41:8e:1f:76:a9:ea:d9:
                    0f:7d:26:e5:4f:78:b6:bc:70:4a:5c:01:21:bd:62:
                    b4:2d:20:99:01:57:49:90:65:86:87:1f:5f:9a:3c:
                    13:01:6c:b7:b3:d6:b0:94:6c:74:0d:58:cd:c1:a1:
                    3e:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:36:C0:0A:91:2F:79:20:EB:4E:96:21:57:05:89:34:F5:5B:D2:24
            X509v3 Authority Key Identifier:
                keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:34:e7:86:1b:1f:e8:75:d6:f9:42:d7:9a:dd:29:50:bb:c4:
         41:d8:97:8a:1e:2e:cd:2f:f3:2c:55:03:c7:8e:ae:5f:0a:bd:
         bc:a1:71:60:75:f7:04:d5:4a:05:db:84:1f:bf:63:8a:65:f9:
         8c:7c:25:15:05:93:79:c6:1b:b8:24:dd:e9:fa:33:4a:d4:d8:
         1c:fe:6b:f7:a5:28:04:33:29:4c:1a:fa:cc:4e:b8:da:0c:f7:
         66:8f:78:31:bb:a3:a3:89:97:8b:3a:bf:4a:fd:f9:4d:24:9a:
         3d:05:dd:a3:b1:19:e7:db:b9:2e:f9:8b:55:89:ef:e8:98:e6:
         b6:99:2f:5f:f2:62:c9:95:65:0b:3c:26:57:28:4b:35:aa:c6:
         fa:c1:60:b0:85:c4:a7:8f:25:1c:13:cb:03:9c:dc:90:c0:27:
         78:c5:65:5d:46:06:ed:b4:c8:68:e6:c7:31:58:c6:06:93:c6:
         15:99:c3:9c:24:fd:a5:2c:80:fc:b7:77:1a:77:fb:8c:dd:71:
         6e:9d:a1:83:e0:2f:67:9d:c4:f0:1c:8a:5e:43:00:ce:51:d2:
         04:e8:6f:7d:cd:39:0f:86:13:f2:e2:28:47:12:b9:3d:0d:1b:
         18:59:15:f6:69:83:54:2b:3f:a1:f9:ec:01:7c:3c:9d:9d:1b:
         48:98:a6:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----