Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
File:                     Yv8lPFoTQ6JWma4I51dnrya52-U.mft (raw, json)
Hash identifier:          MCxC4Nd2/UrAvrdyyrvV4DxzOE0Y43Mo44GpmnGGuaI=
Subject key identifier:   7E:04:EC:93:2D:39:0A:6E:3F:80:C8:3C:E3:EC:B6:43:4A:B1:BC:F5
Authority key identifier: 62:FF:25:3C:5A:13:43:A2:56:99:AE:08:E7:57:67:AF:26:B9:DB:E5
Certificate issuer:       /CN=62ff253c5a1343a25699ae08e75767af26b9dbe5
Certificate serial:       019D9A3ED5944ADA379BBD69F1108ABB2984
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
Manifest number:          1851
Signing time:             Fri 17 Apr 2026 07:01:42 +0000
Manifest this update:     Fri 17 Apr 2026 07:01:42 +0000
Manifest next update:     Sat 18 Apr 2026 07:01:42 +0000
Files and hashes:         1: Yv8lPFoTQ6JWma4I51dnrya52-U.crl (hash: 5SGSU8Ho8P5qXGUiMRT6FVhttuELTvhF6hjMTYq5yrk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:3e:d5:94:4a:da:37:9b:bd:69:f1:10:8a:bb:29:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62ff253c5a1343a25699ae08e75767af26b9dbe5
        Validity
            Not Before: Apr 17 07:01:42 2026 GMT
            Not After : Apr 18 07:01:42 2026 GMT
        Subject: CN=7e04ec932d390a6e3f80c83ce3ecb6434ab1bcf5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:d8:19:11:b8:61:47:0f:0e:5f:84:d8:dd:4e:
                    db:54:83:9e:d6:5c:2f:d2:fe:f5:21:09:e8:ec:bc:
                    60:66:0d:ad:83:ed:fd:80:4c:dc:98:08:da:9c:af:
                    5f:9e:a2:41:d4:80:2a:f2:13:37:79:82:60:60:74:
                    86:82:7e:1f:19:86:24:5e:29:4a:2d:7f:39:e9:ba:
                    5f:49:c9:42:77:65:83:be:42:8f:43:35:a5:7f:8c:
                    8f:0c:9e:e6:86:a3:12:68:a5:ac:7b:0d:f8:0d:7d:
                    96:50:8d:68:44:44:59:61:49:b5:94:6f:65:00:99:
                    71:02:f1:c7:b4:e6:76:79:3c:24:fd:ef:a1:68:a0:
                    69:e2:4e:00:ef:11:f9:01:e3:2e:6b:e7:49:b0:ec:
                    75:6f:8b:29:bc:65:f3:a0:35:b0:6c:b9:0a:69:52:
                    2c:9f:49:9a:30:36:77:26:3a:01:8a:36:c7:88:05:
                    6c:53:3d:cb:5e:84:15:06:e0:a8:fd:6a:c1:00:4f:
                    3d:a1:be:b4:7a:24:47:12:57:ea:26:6e:9b:10:62:
                    f0:d4:bd:ab:51:cf:10:ee:a5:b0:88:0b:0a:8b:36:
                    18:29:f9:0c:09:50:03:14:35:1c:6b:19:f9:4e:12:
                    aa:74:70:db:32:a4:0c:f4:0f:26:24:7f:d6:3e:b1:
                    31:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:04:EC:93:2D:39:0A:6E:3F:80:C8:3C:E3:EC:B6:43:4A:B1:BC:F5
            X509v3 Authority Key Identifier:
                keyid:62:FF:25:3C:5A:13:43:A2:56:99:AE:08:E7:57:67:AF:26:B9:DB:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:a8:35:16:9c:fe:a6:f3:31:13:bb:cc:f5:d5:b4:7a:17:22:
         9d:d8:5b:b6:19:6a:5f:f8:36:3e:22:c3:1c:47:fb:0c:c2:64:
         0e:ce:e1:fb:db:bf:78:2f:ff:5a:51:d5:81:97:37:74:fe:5b:
         4a:3e:87:af:ad:49:25:e1:46:68:d7:8c:a3:8d:36:7d:cb:12:
         d4:0a:ed:9b:ec:22:4d:24:c1:05:e5:c2:72:f1:7f:54:e8:d7:
         5e:6e:e7:30:97:27:d1:d6:6f:92:17:33:1a:6d:41:9c:17:0b:
         d8:24:03:bc:ce:da:bb:2e:f2:66:19:68:90:8d:7b:d8:8d:2f:
         8a:ef:1d:51:91:8d:d0:50:7c:e1:28:1c:9b:e3:1f:36:9d:21:
         ac:dd:3d:71:ce:d4:0a:7f:cf:3d:f8:5a:be:b3:4c:bd:0f:fd:
         24:05:b1:f2:f4:a2:02:9e:b6:d7:9f:52:f3:ba:4e:80:70:a9:
         2b:b1:72:27:87:06:56:27:15:c1:03:3d:1a:ff:d7:74:d2:70:
         5d:40:17:37:39:45:4e:03:29:1c:0a:b0:f1:c3:94:5c:9a:a0:
         be:67:01:8d:9c:de:7e:d3:c7:25:b5:84:9a:59:79:62:a5:78:
         46:fb:66:c0:46:eb:63:bc:b0:5d:4c:04:79:4e:98:fe:12:91:
         a6:06:f9:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----