Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
File:                     idSzdf1Mr9XfusQG3SWmHSLdNso.mft (raw, json)
Hash identifier:          ioA6hmphQRDDJvxHx9VSRyPKYxHdMy9phlUl0OHECcQ=
Subject key identifier:   61:2C:C3:7B:2A:F8:67:DB:69:D7:4C:21:1C:C5:81:FE:49:AB:FC:0C
Authority key identifier: 89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA
Certificate issuer:       /CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
Certificate serial:       019D98F4CA49F93D97AF50080490BF63E9DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
Manifest number:          143E
Signing time:             Fri 17 Apr 2026 01:01:12 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:12 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:12 +0000
Files and hashes:         1: idSzdf1Mr9XfusQG3SWmHSLdNso.crl (hash: zF6gWpgEIkLuLD8jgjmkI3uvoWkIQz1acqk9ubxg33Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:ca:49:f9:3d:97:af:50:08:04:90:bf:63:e9:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
        Validity
            Not Before: Apr 17 01:01:12 2026 GMT
            Not After : Apr 18 01:01:12 2026 GMT
        Subject: CN=612cc37b2af867db69d74c211cc581fe49abfc0c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:4c:4b:08:ef:60:2f:d9:cd:fd:4c:18:48:54:
                    fb:7b:31:fb:b3:dd:0d:14:62:33:50:4e:e8:a3:95:
                    84:50:4c:80:09:9b:ab:84:3b:86:43:6b:81:d6:a1:
                    1d:73:79:14:e3:b5:da:31:7d:76:be:59:d3:91:56:
                    9c:01:d3:a8:d9:06:6c:88:41:8a:6d:94:04:d7:8c:
                    be:7e:49:b8:62:11:9a:fd:4f:29:9b:8b:a4:6e:d2:
                    2f:ab:f3:55:e0:33:31:ad:d1:1c:3d:37:81:fb:f3:
                    f8:0d:00:c0:a9:aa:ea:ec:b2:8b:56:ba:1f:5a:a7:
                    26:5a:07:95:89:8e:08:0e:6e:99:c7:6a:64:b7:40:
                    7f:08:19:fc:94:cf:fe:94:58:95:6f:95:28:ae:6b:
                    7b:f6:7c:1b:ac:be:a0:06:da:cb:98:e2:32:84:00:
                    4d:ea:4c:56:42:2a:d1:2a:80:bd:f7:fb:6d:70:51:
                    c4:66:40:6e:52:d1:b5:6e:cf:f5:4d:7f:46:b6:39:
                    b3:20:a8:53:2d:07:fd:3e:d5:12:07:2e:0f:0e:b3:
                    fe:ee:75:85:d6:da:20:61:a3:c4:a4:d5:91:da:98:
                    a4:d5:cc:8a:8d:b4:cd:a8:c4:7e:d0:d3:2c:c8:2c:
                    c5:63:7b:5a:38:df:12:86:fd:21:4e:02:1a:76:94:
                    b9:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:2C:C3:7B:2A:F8:67:DB:69:D7:4C:21:1C:C5:81:FE:49:AB:FC:0C
            X509v3 Authority Key Identifier:
                keyid:89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:c5:19:59:b1:8a:a4:d1:fa:98:0b:5c:69:57:f8:4c:64:5c:
         af:fe:ea:fe:4f:7c:9c:ea:59:75:ac:27:96:fc:f9:1a:9a:4e:
         5e:51:9b:f0:87:40:7a:e7:70:31:d3:b7:ae:bf:cb:31:23:be:
         c5:1e:dd:f3:2c:4a:7b:c4:9f:da:0d:19:7c:c7:46:60:28:6d:
         83:a4:bd:c5:d5:dc:7b:b4:54:26:94:47:8a:9a:ec:cd:4a:48:
         f8:1c:bc:46:d1:dd:89:27:20:7c:92:e1:46:8b:d8:91:58:48:
         ac:b8:b4:84:c6:e6:83:bd:53:2f:d3:fb:b3:2c:75:9b:7a:13:
         df:30:99:35:0b:07:78:68:78:3a:f4:71:0d:5a:16:80:16:6a:
         ec:ef:bf:d8:11:09:3c:a1:e5:f2:dc:d3:b9:92:fc:25:ed:7a:
         81:50:f2:ab:8a:06:06:dd:19:8a:29:fb:59:a6:5f:3a:ec:0e:
         d5:4c:92:a2:a5:61:3f:d2:b2:95:d5:89:ae:d5:75:03:fb:e8:
         31:40:06:49:9f:10:46:eb:a4:43:46:9d:f6:df:74:54:3a:75:
         6d:65:ba:ff:50:a3:d6:b8:bf:6e:3e:34:30:b8:3c:7e:00:27:
         18:7d:35:4a:bb:30:2e:80:7b:70:ef:31:c5:bf:a2:2b:06:96:
         fe:e7:2a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----