Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File:                     p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier:          wbtM//f7ocLdEhYtmzaSHSYuZDxIY/64qZQy6OnPfi0=
Subject key identifier:   9C:1A:74:79:F7:3C:D1:3A:8F:2B:39:FF:97:80:7F:8C:05:74:2A:64
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer:       /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial:       019CAA582C7EB2180382E6AC3E9557C4BD21
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number:          1846
Signing time:             Sun 01 Mar 2026 17:00:31 +0000
Manifest this update:     Sun 01 Mar 2026 17:00:31 +0000
Manifest next update:     Mon 02 Mar 2026 17:00:31 +0000
Files and hashes:         1: YwiBk7F0B614LD9wQoEFnkWeQjs.roa (hash: mvD8mcgS8Z/u8tn955UOEASMu8p9nleqgNicn8XmXOw=)
                          2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: 4UB7eKlMc1hCxQQMrNE1cyge4mdvzxBAHjFyI9ZZDS8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 17:00:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:58:2c:7e:b2:18:03:82:e6:ac:3e:95:57:c4:bd:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
        Validity
            Not Before: Mar  1 17:00:31 2026 GMT
            Not After : Mar  2 17:00:31 2026 GMT
        Subject: CN=9c1a7479f73cd13a8f2b39ff97807f8c05742a64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:a6:ae:fd:15:4e:e5:31:34:37:ba:ad:7a:37:
                    72:1c:76:78:f7:c7:d2:50:87:8c:b0:1f:03:0c:4e:
                    c7:f2:f8:98:be:93:dd:50:95:19:a1:38:78:4f:eb:
                    47:92:9b:de:a7:81:81:3d:60:09:4d:77:e7:27:42:
                    e6:66:ed:a8:d7:84:40:05:ff:17:31:72:86:4b:55:
                    b3:9f:1b:52:56:90:6d:cd:f4:9c:8e:56:86:bd:d1:
                    bd:63:fb:f3:78:0b:15:8d:05:77:6c:e5:f0:24:a7:
                    c9:4b:e6:28:32:a9:59:31:55:60:f7:0c:2e:ee:c0:
                    05:8d:3f:d2:48:76:bf:76:50:4b:cc:67:38:c8:17:
                    cd:d7:4c:0c:26:a9:07:5a:9d:3d:89:f8:92:e2:a5:
                    61:3f:ce:d7:db:56:1e:4e:8e:11:cd:40:c5:af:0e:
                    97:a9:1a:fc:78:fa:78:37:7a:9c:7d:19:50:f9:dd:
                    2a:cf:7e:01:6d:b6:86:2b:d4:6a:b9:6b:34:68:97:
                    58:ce:54:7b:5d:a3:5c:06:df:77:0f:a8:a2:1a:32:
                    b6:66:e9:26:c5:47:a5:cc:91:1e:3e:8b:ad:2c:de:
                    4a:22:d4:b6:62:d1:ff:d4:0b:b7:96:76:8f:d5:65:
                    06:1e:22:f6:a6:76:17:e0:cc:76:9e:3e:56:bc:38:
                    61:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:1A:74:79:F7:3C:D1:3A:8F:2B:39:FF:97:80:7F:8C:05:74:2A:64
            X509v3 Authority Key Identifier:
                keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:49:8b:bf:8c:e9:8e:84:a1:fb:99:a2:1b:6b:cc:8c:97:dd:
         75:82:d6:46:17:c2:e3:c8:e3:6d:08:f7:3b:6d:ff:c0:0d:51:
         8c:d9:17:af:42:d9:4c:06:db:48:0a:d1:8c:42:bc:ec:3b:19:
         05:c8:e3:9a:09:e5:e2:83:3c:5d:81:dc:e2:f7:fc:b1:8d:dc:
         e0:57:0a:9d:ef:23:86:f1:8d:e3:f3:db:75:91:8a:c1:69:e8:
         da:a3:12:11:6b:34:44:bc:6e:75:7f:d7:ed:0f:b8:fd:23:39:
         d8:74:12:6f:97:12:3f:d1:5b:87:b8:ab:cf:88:3a:99:01:4a:
         cc:bf:3c:30:1e:7b:42:9e:b7:30:cc:91:ad:ec:35:51:34:0c:
         34:3a:af:18:ed:76:c8:c0:5f:78:96:f0:8f:4d:c8:c4:1a:3d:
         62:e3:3a:f6:48:84:1a:24:cc:9b:b6:92:e4:8f:6a:95:19:c2:
         5b:ea:97:e2:c4:5c:e8:f5:8a:c8:1e:5c:81:75:ef:c6:0d:8f:
         5a:49:ae:a9:88:f1:8c:f6:2e:9e:22:cb:cd:ed:7a:a9:b3:d4:
         a4:f8:c8:b6:88:1c:72:90:ba:7e:05:9b:e4:2d:e4:4c:31:aa:
         74:35:5b:0e:93:6c:06:72:61:c4:1f:bc:10:4f:7f:81:0c:db:
         17:26:7d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:10:11 2026 by rpki-client