Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
File:                     pnyqBsCo91QBbmFEgLuzh35AiR0.mft (raw, json)
Hash identifier:          k6xChopwjO00aYve8sP0/0zpf13eIHHb0gc+KU3xs4s=
Subject key identifier:   5D:5E:8B:FD:62:E1:F9:D8:C2:40:D7:F3:1F:75:FB:BF:4D:DB:66:BB
Authority key identifier: A6:7C:AA:06:C0:A8:F7:54:01:6E:61:44:80:BB:B3:87:7E:40:89:1D
Certificate issuer:       /CN=a67caa06c0a8f754016e614480bbb3877e40891d
Certificate serial:       019CAC7E12E4A032F662D093958032F71FE2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
Manifest number:          0570
Signing time:             Mon 02 Mar 2026 03:01:09 +0000
Manifest this update:     Mon 02 Mar 2026 03:01:09 +0000
Manifest next update:     Tue 03 Mar 2026 03:01:09 +0000
Files and hashes:         1: pnyqBsCo91QBbmFEgLuzh35AiR0.crl (hash: JOCpIkCV0JVEB8FnGSu6xuVtxcm6D8Xg85kqHPx7ps4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 03:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:7e:12:e4:a0:32:f6:62:d0:93:95:80:32:f7:1f:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a67caa06c0a8f754016e614480bbb3877e40891d
        Validity
            Not Before: Mar  2 03:01:09 2026 GMT
            Not After : Mar  3 03:01:09 2026 GMT
        Subject: CN=5d5e8bfd62e1f9d8c240d7f31f75fbbf4ddb66bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:98:8a:18:74:cb:ff:a0:b3:58:5f:c0:2d:74:
                    70:74:0b:7e:9e:c2:eb:1b:82:15:4e:f0:0a:22:be:
                    2b:40:ac:d1:3d:9c:11:a0:09:66:4b:91:75:29:63:
                    b5:4c:b9:1e:cf:02:d5:53:9c:cb:36:29:91:d0:67:
                    d7:00:4b:ad:77:4f:79:01:cf:ac:bd:71:6a:91:c3:
                    73:e6:20:8e:4f:90:5f:58:f3:43:90:c5:2a:79:f0:
                    bd:3b:26:38:c5:52:f0:ab:dc:e2:51:70:6f:24:5f:
                    1c:c0:00:ac:9e:37:b1:b8:32:71:76:ff:e3:6c:5b:
                    02:3e:83:de:1a:b9:57:4b:3e:3d:2b:a6:88:34:be:
                    5c:71:9f:ac:eb:42:73:e8:1b:44:76:97:8e:71:f6:
                    03:ad:0c:a2:14:95:d3:e6:42:57:73:5e:58:74:72:
                    ff:18:ea:8f:ba:64:d2:0e:b6:7b:29:52:06:88:9b:
                    e7:8e:4f:be:46:6d:7c:b4:52:63:59:43:ee:4d:49:
                    d1:16:c4:ef:37:8c:dc:61:93:e5:8b:0c:27:0d:0f:
                    75:d7:7f:a3:1c:2b:c3:bc:93:84:9b:bc:c0:71:96:
                    04:43:8c:45:1e:4e:30:35:b9:e7:8a:94:e9:41:e0:
                    1e:65:47:60:e6:67:b9:60:09:28:71:66:d3:af:9a:
                    06:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:5E:8B:FD:62:E1:F9:D8:C2:40:D7:F3:1F:75:FB:BF:4D:DB:66:BB
            X509v3 Authority Key Identifier:
                keyid:A6:7C:AA:06:C0:A8:F7:54:01:6E:61:44:80:BB:B3:87:7E:40:89:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:b9:75:18:63:39:fe:bb:88:75:ed:33:a1:f8:bc:41:61:e0:
         7d:c1:86:5f:35:0e:ac:1c:08:08:f2:68:18:7b:bd:46:ac:1b:
         56:99:e2:1f:3e:90:23:af:5c:89:5c:65:c2:20:a3:c7:51:4f:
         fd:47:a2:76:4a:9a:f8:a6:0d:c2:cc:f0:12:de:75:2b:ab:bc:
         78:ec:b1:38:a2:0a:5f:00:2e:46:16:67:d0:c6:8b:7b:a8:b0:
         3f:f2:25:e2:08:b9:a9:53:6a:5e:ea:f7:cc:db:b1:e4:d0:5c:
         4d:fd:fb:59:f2:37:ce:63:4f:13:e2:c1:54:e0:61:21:7a:1e:
         a2:f5:78:a2:d0:0d:67:62:09:37:28:63:8c:c3:4a:62:0e:ed:
         6e:04:a1:ce:47:a4:6d:fc:0f:71:97:a8:bd:81:ea:fd:b6:c1:
         08:a9:c5:83:58:a8:b6:95:4f:41:28:3e:0d:df:ba:59:66:68:
         fd:7f:52:3e:8e:4c:c6:5c:82:3d:6f:ba:5a:ed:49:f5:57:2f:
         cf:35:00:8c:a9:cd:da:ed:45:e5:f1:36:eb:e2:1f:b4:cb:37:
         e3:d6:bb:fc:ac:ea:e7:3c:61:f6:f6:3e:e5:9e:1d:ed:d2:1b:
         85:ba:08:53:44:b6:69:cf:3a:37:4c:30:95:64:be:29:f8:ab:
         0f:01:29:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----