Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
File:                     sCBx_ye9CehFJRchNknb9nvK1dE.mft (raw, json)
Hash identifier:          SCqM9L/TkK3gNVT81o5dnyyFsU+IvyBaV32nnECB6SU=
Subject key identifier:   44:D0:2E:24:79:FF:F9:64:BE:1F:F4:F1:89:DC:36:73:08:BA:6C:D7
Authority key identifier: B0:20:71:FF:27:BD:09:E8:45:25:17:21:36:49:DB:F6:7B:CA:D5:D1
Certificate issuer:       /CN=b02071ff27bd09e8452517213649dbf67bcad5d1
Certificate serial:       019D9AE347DF7B182F626A8A31397033CD2E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
Manifest number:          054E
Signing time:             Fri 17 Apr 2026 10:01:19 +0000
Manifest this update:     Fri 17 Apr 2026 10:01:19 +0000
Manifest next update:     Sat 18 Apr 2026 10:01:19 +0000
Files and hashes:         1: sCBx_ye9CehFJRchNknb9nvK1dE.crl (hash: yv85I+rTxhq4WeOqjHy7p02HRQPkJQQYvsdPZWa3UPg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:e3:47:df:7b:18:2f:62:6a:8a:31:39:70:33:cd:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b02071ff27bd09e8452517213649dbf67bcad5d1
        Validity
            Not Before: Apr 17 10:01:19 2026 GMT
            Not After : Apr 18 10:01:19 2026 GMT
        Subject: CN=44d02e2479fff964be1ff4f189dc367308ba6cd7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:03:1a:b5:d6:6e:12:bc:dc:00:1e:d2:6a:7f:
                    ac:5a:47:e2:96:43:e6:20:7f:18:c3:f9:3d:3a:eb:
                    cb:40:d5:a4:83:83:5a:58:3c:da:c7:0f:ba:b5:6e:
                    96:49:dc:6a:0e:36:6e:86:dd:79:c3:bd:f3:71:57:
                    4c:69:8c:3f:93:4c:f1:2b:37:5f:9b:ab:15:cd:0d:
                    97:0c:b7:ce:4e:6a:c6:60:55:a8:ba:1f:0c:9b:c6:
                    ac:08:ce:fd:46:47:50:4f:04:71:67:fa:a6:5d:7f:
                    02:d0:07:61:37:31:4f:91:03:10:12:82:d0:17:a5:
                    8b:07:fb:91:15:4d:a2:83:20:4c:f4:75:64:c9:f2:
                    63:57:84:20:c2:12:bd:07:54:c6:6e:25:f6:7d:55:
                    3e:87:85:4a:1c:a4:6f:96:3e:6f:9d:a4:55:68:82:
                    a2:bb:e4:9d:fa:16:6d:12:6c:b4:61:46:71:f8:ef:
                    43:8c:ed:fe:9d:1f:1a:ad:36:50:3b:07:8c:b5:8a:
                    92:2a:f4:90:77:74:f3:7e:f3:cd:a5:f4:26:b8:56:
                    fd:74:10:f7:e9:d7:4d:e5:ca:e3:51:22:7c:71:4b:
                    4b:bb:02:67:03:80:79:e9:a5:b0:22:04:a6:eb:f6:
                    fc:6c:89:04:85:0c:dc:92:e4:f6:13:f0:7f:d0:2b:
                    ed:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:D0:2E:24:79:FF:F9:64:BE:1F:F4:F1:89:DC:36:73:08:BA:6C:D7
            X509v3 Authority Key Identifier:
                keyid:B0:20:71:FF:27:BD:09:E8:45:25:17:21:36:49:DB:F6:7B:CA:D5:D1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:57:c1:28:0c:90:dd:e0:89:ce:8f:5b:c3:a4:0c:d1:e3:9c:
         c5:59:2d:e0:47:0c:bf:96:9d:06:6c:ad:7a:67:d3:cf:1a:2b:
         ec:fd:e9:66:e0:be:31:a5:8c:91:36:fa:fd:d5:79:83:ce:bd:
         5b:0a:fc:ca:59:34:10:13:f7:1e:45:d9:ff:c9:03:5d:ef:a2:
         6d:f2:62:84:5f:39:0b:e5:23:e3:37:c5:32:32:71:8e:79:13:
         99:f5:71:d7:56:50:43:e3:8f:d0:87:08:ae:6a:dc:9f:22:3f:
         f1:83:ee:75:5a:56:00:06:c4:2a:9b:a4:c0:d4:71:36:3b:89:
         bc:3a:f3:dc:8d:d0:3c:ab:11:b2:8d:6b:ac:ff:cd:7b:e7:eb:
         36:dd:93:45:99:74:18:b3:54:c4:63:ac:f2:d4:c5:78:a2:77:
         d2:43:94:21:cf:08:ad:a2:81:41:5a:bc:45:96:1e:4e:a5:f1:
         c2:85:55:af:e0:b0:40:5a:10:68:e9:6d:aa:28:9f:7d:a0:7e:
         99:b4:c6:18:a8:8b:04:71:9b:07:bd:47:25:dd:d2:e6:aa:90:
         44:ac:10:c6:aa:c5:27:b6:ec:c6:5a:0b:bf:cc:4d:12:37:67:
         e9:97:2e:63:51:af:91:93:16:4e:92:0d:c1:b4:1d:ed:31:8c:
         23:25:3b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----