Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
File:                     bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft (raw, json)
Hash identifier:          UC8L7wAqAr0yfgxVgtZRz5ILQYi4vEX6DMxXB+rnF/Y=
Subject key identifier:   4D:8D:DC:09:31:96:7D:7B:C5:D3:53:90:F6:3F:C6:4E:E9:5A:BD:15
Authority key identifier: 6E:68:C1:B9:0E:45:F9:1B:AB:8D:60:78:8E:ED:25:CB:4A:01:0F:E8
Certificate issuer:       /CN=6e68c1b90e45f91bab8d60788eed25cb4a010fe8
Certificate serial:       019CABA1F4D73FC7D4859E0A3DAB07B058DC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bmjBuQ5F-RurjWB4ju0ly0oBD-g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
Manifest number:          0792
Signing time:             Sun 01 Mar 2026 23:00:43 +0000
Manifest this update:     Sun 01 Mar 2026 23:00:43 +0000
Manifest next update:     Mon 02 Mar 2026 23:00:43 +0000
Files and hashes:         1: bmjBuQ5F-RurjWB4ju0ly0oBD-g.crl (hash: H0ZhJaZ8tCsh1KO1wkh1zUHgd4LN35cA3kEkptMW2ac=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bmjBuQ5F-RurjWB4ju0ly0oBD-g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:a1:f4:d7:3f:c7:d4:85:9e:0a:3d:ab:07:b0:58:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e68c1b90e45f91bab8d60788eed25cb4a010fe8
        Validity
            Not Before: Mar  1 23:00:43 2026 GMT
            Not After : Mar  2 23:00:43 2026 GMT
        Subject: CN=4d8ddc0931967d7bc5d35390f63fc64ee95abd15
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:c2:21:4f:2f:96:d3:2d:2e:e0:eb:22:b7:da:
                    ef:e4:63:bd:90:2c:2b:d7:d5:90:89:b2:10:05:5a:
                    74:f2:ca:a6:2d:f0:67:a3:2c:36:6e:7b:c3:76:ed:
                    ce:35:ec:5d:4c:97:e2:40:3c:b6:89:9d:49:6a:cd:
                    52:04:9e:c9:f4:e8:87:e2:dd:6f:68:ae:42:0e:b2:
                    52:6d:19:0f:d1:22:14:17:42:06:4c:e7:06:0f:28:
                    47:58:bf:5c:e1:6f:f3:15:93:20:d9:7a:a2:c1:63:
                    c8:96:07:12:57:ae:75:09:f5:3b:58:6e:9a:a6:31:
                    4a:aa:93:51:6f:b2:2e:8c:43:fc:48:75:63:45:ab:
                    65:97:3c:5d:0e:3a:89:0c:74:a5:97:02:a0:43:4c:
                    cc:64:60:15:25:f5:9a:45:31:72:2e:34:d3:02:4d:
                    53:01:a7:6f:c8:fc:1d:49:3a:64:7f:e1:d4:04:bb:
                    e6:33:69:a7:fc:77:2f:fc:8c:fe:0b:6f:5e:5f:be:
                    cc:44:5e:76:dd:57:ae:5e:27:af:a0:16:f3:7c:cd:
                    8d:88:6f:9b:12:60:66:c7:5d:c7:f0:b1:ff:c2:87:
                    99:3c:6f:5b:4c:4e:fd:bc:f6:59:8b:ea:d2:b8:1c:
                    fc:5c:9f:b6:82:26:ab:8b:3d:88:4c:7d:e7:6b:69:
                    42:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:8D:DC:09:31:96:7D:7B:C5:D3:53:90:F6:3F:C6:4E:E9:5A:BD:15
            X509v3 Authority Key Identifier:
                keyid:6E:68:C1:B9:0E:45:F9:1B:AB:8D:60:78:8E:ED:25:CB:4A:01:0F:E8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bmjBuQ5F-RurjWB4ju0ly0oBD-g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:d0:54:4d:57:f8:f0:c1:cc:59:1d:fb:96:f7:27:f0:df:f2:
         d0:17:29:00:ed:ea:dd:9e:fd:50:5d:da:8d:5f:35:31:2a:61:
         36:f4:04:c7:79:23:e0:f8:82:23:9f:34:c6:d4:89:56:d9:aa:
         f7:e3:9e:21:3d:8f:a7:52:99:74:0e:c6:8e:78:23:2d:89:89:
         54:c6:a2:00:fc:dc:cd:c8:86:0b:74:0e:a1:ea:a4:fd:1d:54:
         64:66:f0:66:6c:fd:e8:48:3b:9c:c0:e3:6a:8a:be:4e:f2:2d:
         1f:a3:3f:47:0d:7c:7d:98:81:77:27:db:1f:6f:3f:e8:c2:a1:
         31:94:7a:de:4f:ba:5d:51:d7:b4:f1:57:fe:4b:49:18:86:8f:
         3d:c9:24:35:d0:7f:d4:a8:9e:6b:a9:56:f2:15:f9:26:e4:20:
         1c:b5:68:88:d6:de:15:34:5a:9d:52:12:6c:15:2c:6f:6b:92:
         61:44:ec:ac:95:6b:ce:e6:2c:49:7d:76:fa:9d:bb:2b:86:a9:
         55:6b:0e:cc:33:6a:83:19:3c:db:58:46:d7:41:2a:b7:46:7e:
         5c:85:b4:df:18:d9:1f:a8:86:27:8b:f7:14:bf:18:2a:dd:b6:
         a6:95:2b:70:7d:5d:15:6d:5f:af:b3:21:a4:d9:c0:7e:55:df:
         fc:a6:63:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----