Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/7f7361-b1e6-4019-ad63-2005994df471/1/G_ksKZT_tTV_jcRieb3Zm-OlbL0.mft
File:                     G_ksKZT_tTV_jcRieb3Zm-OlbL0.mft (raw, json)
Hash identifier:          B9Bed73VdVqKmcQ0wbR0jMvhUs2GFcArmG20vVOqDBM=
Subject key identifier:   9B:9D:A7:90:D5:F4:07:5E:9B:96:5A:06:B4:AC:E0:39:2B:E1:99:52
Authority key identifier: 1B:F9:2C:29:94:FF:B5:35:7F:8D:C4:62:79:BD:D9:9B:E3:A5:6C:BD
Certificate issuer:       /CN=1bf92c2994ffb5357f8dc46279bdd99be3a56cbd
Certificate serial:       019D9AE2867E263B319FD007D8C1845A93EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G_ksKZT_tTV_jcRieb3Zm-OlbL0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/7f7361-b1e6-4019-ad63-2005994df471/1/G_ksKZT_tTV_jcRieb3Zm-OlbL0.mft
Manifest number:          105A
Signing time:             Fri 17 Apr 2026 10:00:29 +0000
Manifest this update:     Fri 17 Apr 2026 10:00:29 +0000
Manifest next update:     Sat 18 Apr 2026 10:00:29 +0000
Files and hashes:         1: G_ksKZT_tTV_jcRieb3Zm-OlbL0.crl (hash: 25v9y16j+Nu/JJ4//Qki3Qop+rY26kufoy1j4W+/CbQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/7f7361-b1e6-4019-ad63-2005994df471/1/G_ksKZT_tTV_jcRieb3Zm-OlbL0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/7f7361-b1e6-4019-ad63-2005994df471/1/G_ksKZT_tTV_jcRieb3Zm-OlbL0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G_ksKZT_tTV_jcRieb3Zm-OlbL0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 10:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:e2:86:7e:26:3b:31:9f:d0:07:d8:c1:84:5a:93:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1bf92c2994ffb5357f8dc46279bdd99be3a56cbd
        Validity
            Not Before: Apr 17 10:00:29 2026 GMT
            Not After : Apr 18 10:00:29 2026 GMT
        Subject: CN=9b9da790d5f4075e9b965a06b4ace0392be19952
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:66:5f:0b:58:ec:77:a2:3e:90:b1:d0:96:80:
                    50:0e:0f:09:0e:b7:ef:ae:49:0c:52:5b:0e:e5:97:
                    56:fa:70:01:83:80:cb:b1:35:37:2b:ee:23:a7:54:
                    bc:d7:26:78:ee:80:2d:dc:2a:4b:fd:8a:cb:9b:a2:
                    e5:67:01:de:1c:8a:f9:85:09:2b:5c:22:a1:4f:0e:
                    b0:58:2c:b3:08:2c:eb:d9:ab:f1:4a:7b:e2:eb:2d:
                    30:32:32:6f:23:9c:7b:01:83:72:f0:a1:43:c5:45:
                    52:80:2a:60:a2:b8:d6:1a:08:ce:03:86:49:5e:5e:
                    40:1a:23:0f:30:04:31:ae:65:b6:93:a3:1a:6e:d7:
                    91:7a:7d:d8:01:40:bc:77:82:92:92:a0:1b:5e:6c:
                    72:f9:80:0f:99:32:f7:7e:cc:16:63:2a:3e:ce:82:
                    b3:90:53:f7:df:ad:65:c1:29:66:38:89:62:98:99:
                    4a:c7:ef:34:40:f7:3e:f3:85:d4:6a:19:bc:a4:30:
                    6d:b4:d7:63:0d:c1:59:8c:53:4b:05:6c:10:14:a1:
                    77:bd:4a:5b:51:5b:9b:2d:fa:07:95:fd:1e:c1:0c:
                    56:50:b2:ab:78:27:8a:4c:43:5a:d5:a3:c2:7b:81:
                    2c:6e:cd:60:cf:8e:85:20:60:f2:d1:6f:47:ec:a7:
                    1b:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:9D:A7:90:D5:F4:07:5E:9B:96:5A:06:B4:AC:E0:39:2B:E1:99:52
            X509v3 Authority Key Identifier:
                keyid:1B:F9:2C:29:94:FF:B5:35:7F:8D:C4:62:79:BD:D9:9B:E3:A5:6C:BD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_ksKZT_tTV_jcRieb3Zm-OlbL0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7f7361-b1e6-4019-ad63-2005994df471/1/G_ksKZT_tTV_jcRieb3Zm-OlbL0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7f7361-b1e6-4019-ad63-2005994df471/1/G_ksKZT_tTV_jcRieb3Zm-OlbL0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d4:e0:3f:dd:0d:e1:15:1c:09:e7:f4:13:5a:d7:6f:7b:39:e7:
         0d:01:ae:95:ea:85:ba:01:0e:21:01:3b:e7:9b:f2:90:6a:73:
         0c:72:92:a9:ed:ce:2e:d7:0a:b9:34:f4:85:a2:e5:12:d5:e8:
         6e:f2:38:d9:6c:d8:6e:27:79:7c:43:3d:6f:7b:7c:86:d0:8e:
         9d:8e:3d:d2:3d:6f:f8:88:75:b7:a6:cb:83:c4:79:be:ad:ea:
         66:b3:d9:99:c6:b1:2b:00:4a:55:8f:68:11:46:f7:b6:73:66:
         3d:e3:cf:38:02:a6:2c:47:d5:94:6f:4e:96:49:21:6f:13:4f:
         cf:71:5f:cd:a9:55:73:68:55:7b:70:53:57:5f:5c:f3:b3:06:
         12:0f:a0:12:ed:f8:a8:c8:ea:97:cd:d6:30:b3:fd:19:84:85:
         72:32:f8:e1:c7:9b:c6:66:78:2b:96:8f:72:23:df:50:a9:17:
         a9:2b:0d:3a:9f:23:b9:1b:a3:d2:72:f3:f7:bb:60:cd:09:29:
         05:ae:9a:38:e3:c6:02:c4:e5:d1:80:2f:d7:45:ee:2d:c9:f0:
         a5:a0:33:4d:e6:bd:20:b0:90:c6:f3:ba:2c:a4:67:f8:f2:ad:
         58:42:b6:7d:a8:e7:6f:7d:f1:32:46:e6:ad:3d:46:1f:aa:62:
         cd:b0:81:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----