Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
File:                     fJ1n8CerKw_yajV1FHOa_ogDesk.mft (raw, json)
Hash identifier:          mlyZTgFqNPviXl9lr+or/DKHA+/uPz1E+oJYft+VZ4Y=
Subject key identifier:   7A:7D:BA:00:46:F8:87:CE:00:D2:00:8F:2B:75:7F:28:C2:CE:0E:48
Authority key identifier: 7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
Certificate issuer:       /CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Certificate serial:       019CAA58C1EDDBB9BB3B61DA7AEE97498F5A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
Manifest number:          175C
Signing time:             Sun 01 Mar 2026 17:01:09 +0000
Manifest this update:     Sun 01 Mar 2026 17:01:09 +0000
Manifest next update:     Mon 02 Mar 2026 17:01:09 +0000
Files and hashes:         1: fJ1n8CerKw_yajV1FHOa_ogDesk.crl (hash: f9hO66hdMG30NNO4O5t/YKKkHow2LJZC1TYyAgWl6TQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 17:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:58:c1:ed:db:b9:bb:3b:61:da:7a:ee:97:49:8f:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
        Validity
            Not Before: Mar  1 17:01:09 2026 GMT
            Not After : Mar  2 17:01:09 2026 GMT
        Subject: CN=7a7dba0046f887ce00d2008f2b757f28c2ce0e48
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:a6:64:b1:7e:33:a9:98:1b:f4:e2:08:2b:28:
                    4c:49:90:1a:42:6b:72:ba:0b:25:db:c6:6f:c0:47:
                    8c:b4:75:01:29:13:6f:08:50:54:1c:fe:b7:72:c4:
                    5e:6f:17:c6:f0:71:c5:c7:44:86:33:8c:9b:87:b0:
                    56:fc:f3:f9:99:31:a0:a2:66:df:6b:14:b5:f6:9c:
                    f1:a4:94:fc:9c:49:a5:b0:63:69:c7:a1:87:c6:80:
                    10:50:74:94:2a:76:d9:5e:c6:67:99:8b:5f:cd:eb:
                    ab:06:6e:2c:6b:0e:f1:e0:e8:ab:61:a8:7a:f1:ab:
                    8c:d1:ef:5b:47:50:8c:2e:2a:a9:ce:2a:30:3f:35:
                    cb:3e:09:ab:bc:fe:26:1c:50:34:a3:31:5f:67:3e:
                    c7:aa:e7:90:6e:ec:cb:ec:39:a5:ca:87:71:dd:b2:
                    60:12:f2:82:fd:96:de:90:5d:6b:5e:fc:41:96:18:
                    a4:ed:55:dc:39:1a:93:9d:c9:78:87:d3:10:3c:86:
                    60:71:9b:35:bc:fd:e7:57:70:0e:a7:f6:7b:0d:a3:
                    70:bb:f9:e4:e9:e2:b8:fd:71:70:1c:29:4f:4a:9c:
                    80:01:4e:ce:aa:59:f7:a8:4b:87:a2:8f:aa:6e:84:
                    aa:6f:7b:1f:ae:44:72:68:37:98:dc:99:c8:9c:43:
                    07:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:7D:BA:00:46:F8:87:CE:00:D2:00:8F:2B:75:7F:28:C2:CE:0E:48
            X509v3 Authority Key Identifier:
                keyid:7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:69:f8:cd:ec:57:3e:76:34:c3:de:9c:44:05:e0:87:78:0e:
         55:68:3d:cc:9f:db:d7:d5:33:98:86:2b:96:3c:7a:c8:c1:11:
         20:6b:30:58:15:14:82:4d:3b:70:23:4a:e5:b6:42:2d:2e:fd:
         3d:53:66:2a:63:aa:38:35:4e:25:e7:38:e0:3c:a1:eb:2a:99:
         2b:c8:24:01:ab:90:4b:67:82:30:a4:59:46:3a:ea:06:fa:15:
         25:60:cd:84:52:00:eb:57:05:5f:9e:75:fd:40:df:35:ad:29:
         1c:0f:41:7c:97:32:48:07:7d:b5:ac:50:98:df:70:22:66:3e:
         c9:aa:16:44:0f:93:40:d8:3d:26:bb:73:82:ce:75:31:89:86:
         58:ce:5d:20:23:01:fd:f1:46:7f:f1:8c:f6:a9:e3:f6:f7:c6:
         90:d8:7e:ec:35:85:d7:d6:8b:1a:d1:04:ba:54:dd:89:43:3f:
         8b:c8:87:93:53:53:79:08:ff:10:ae:cc:6c:a1:c5:d2:e3:97:
         d3:f2:30:2c:1f:bc:3c:25:2a:39:94:a9:48:35:9b:e4:04:ec:
         13:51:6b:eb:77:e8:0c:30:3d:74:15:e7:ad:a8:4e:76:a2:53:
         db:0f:3a:cd:34:2a:e8:8c:85:3b:a6:ea:9e:a1:22:ac:c4:ec:
         3a:12:24:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----