Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/fc7e2d-7b76-468f-8529-3c637651507d/1/CvFmObpIfvljxWzLMm8lCNGoPv0.mft
File:                     CvFmObpIfvljxWzLMm8lCNGoPv0.mft (raw, json)
Hash identifier:          45mIztZfs08hS+gDvZt5Iqy/S7Bh3GdWiZI9pfqMP1Q=
Subject key identifier:   C8:CF:F7:6B:4C:56:43:FF:C4:E0:54:02:81:61:35:8F:4E:65:A8:B0
Authority key identifier: 0A:F1:66:39:BA:48:7E:F9:63:C5:6C:CB:32:6F:25:08:D1:A8:3E:FD
Certificate issuer:       /CN=0af16639ba487ef963c56ccb326f2508d1a83efd
Certificate serial:       019EBE7FE3251FA6521B261FB837E4E000FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CvFmObpIfvljxWzLMm8lCNGoPv0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c1/fc7e2d-7b76-468f-8529-3c637651507d/1/CvFmObpIfvljxWzLMm8lCNGoPv0.mft
Manifest number:          0C48
Signing time:             Sat 13 Jun 2026 01:01:52 +0000
Manifest this update:     Sat 13 Jun 2026 01:01:52 +0000
Manifest next update:     Sun 14 Jun 2026 01:01:52 +0000
Files and hashes:         1: CvFmObpIfvljxWzLMm8lCNGoPv0.crl (hash: wfqftcq/jGmcU/KRbmHt6K+PUDavwQFK5LWutBnLmss=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c1/fc7e2d-7b76-468f-8529-3c637651507d/1/CvFmObpIfvljxWzLMm8lCNGoPv0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c1/fc7e2d-7b76-468f-8529-3c637651507d/1/CvFmObpIfvljxWzLMm8lCNGoPv0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CvFmObpIfvljxWzLMm8lCNGoPv0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7f:e3:25:1f:a6:52:1b:26:1f:b8:37:e4:e0:00:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0af16639ba487ef963c56ccb326f2508d1a83efd
        Validity
            Not Before: Jun 13 01:01:52 2026 GMT
            Not After : Jun 14 01:01:52 2026 GMT
        Subject: CN=c8cff76b4c5643ffc4e054028161358f4e65a8b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:b9:eb:35:19:96:22:89:a2:51:6c:2a:28:ee:
                    1d:ff:ae:ff:0e:4b:18:f6:35:0f:ec:cd:35:91:ef:
                    04:0b:aa:c4:48:7b:ec:60:1e:f6:cf:70:36:27:f9:
                    00:41:12:70:ed:e2:c6:83:15:7d:6b:06:cb:ce:d8:
                    e5:08:09:4d:07:da:c4:d7:5b:76:e7:1b:b2:75:51:
                    b8:6b:fa:cf:93:ed:14:9e:9d:59:9a:62:e2:78:d7:
                    66:2f:de:8b:a9:32:88:58:98:d4:e8:dd:0b:2e:e3:
                    9f:35:05:42:f8:2d:a0:f2:71:0e:3b:e3:f6:0b:11:
                    a4:6f:cc:77:be:a6:bb:51:4a:0a:b2:22:80:7c:60:
                    73:b5:8a:3f:64:e4:8f:0a:25:01:e4:c9:d5:b5:ab:
                    ae:f6:85:b5:0d:f4:d2:8c:14:1b:70:99:3f:9c:9a:
                    98:cf:7a:d3:28:b5:0c:a0:51:1c:3d:22:f4:3e:b4:
                    98:6d:a6:0b:c7:ab:70:9f:bb:68:a3:37:7f:c3:5d:
                    82:43:b9:36:6d:a7:20:db:b3:77:a0:33:37:2b:1c:
                    1b:d2:f5:eb:c9:a9:5a:5c:26:58:43:6b:63:fb:4a:
                    fe:a7:01:50:af:72:58:7c:b6:25:16:fd:81:34:5a:
                    a4:70:e7:de:b1:63:3f:3b:b6:8d:70:39:75:1c:9d:
                    2b:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:CF:F7:6B:4C:56:43:FF:C4:E0:54:02:81:61:35:8F:4E:65:A8:B0
            X509v3 Authority Key Identifier:
                keyid:0A:F1:66:39:BA:48:7E:F9:63:C5:6C:CB:32:6F:25:08:D1:A8:3E:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvFmObpIfvljxWzLMm8lCNGoPv0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/fc7e2d-7b76-468f-8529-3c637651507d/1/CvFmObpIfvljxWzLMm8lCNGoPv0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/fc7e2d-7b76-468f-8529-3c637651507d/1/CvFmObpIfvljxWzLMm8lCNGoPv0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:c0:f5:0b:0a:c9:72:bc:d7:b8:c3:32:2e:cf:11:65:47:e2:
         5c:1a:1d:50:93:37:bb:cf:49:6c:dc:6d:8d:a0:3f:23:44:c5:
         69:8d:93:0b:03:85:ee:1d:68:26:f4:6b:54:75:bd:f6:91:43:
         3d:63:65:95:06:df:f0:4f:7f:ad:e8:90:91:4b:73:b6:4d:d9:
         99:e3:88:f4:46:84:90:cd:6c:53:00:47:55:c7:89:ee:b6:04:
         9c:c2:47:1b:39:03:70:d5:f9:21:bb:47:f2:e7:1c:31:7d:5f:
         11:3f:21:41:24:0f:e4:af:5c:f2:36:60:6b:a3:60:4c:16:f7:
         b7:e9:8a:38:a4:f2:06:32:46:ab:61:c9:78:59:d1:7d:73:ba:
         31:25:78:a3:33:23:3e:95:d3:90:ea:d5:3b:7e:70:91:f3:3c:
         7d:25:3c:5a:15:06:dc:4d:d4:04:fb:d1:d0:58:9f:9b:bb:2c:
         5f:80:a1:b2:48:9d:3f:48:83:21:5b:bb:f3:8b:c2:73:7d:40:
         76:59:3d:ed:37:a4:9a:78:db:6e:76:5f:dd:c6:d6:d0:ec:a4:
         1a:e0:5e:11:19:9e:2d:96:39:12:bd:40:af:f2:ac:c2:1d:97:
         07:35:67:fd:3a:4e:cb:c4:2e:19:63:33:1f:66:81:7a:20:61:
         70:ec:4f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----