Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File:                     9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier:          XEoSgIs2aTWVqost9RPTf/C/6h55NIjJY1fSzbfzA3U=
Subject key identifier:   83:23:13:32:D4:65:F3:96:4A:F8:A8:5D:C0:DA:14:DE:D8:6A:A5:97
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer:       /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial:       019CAD599F6C959D58D9E5BF879638D3176F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number:          0E9B
Signing time:             Mon 02 Mar 2026 07:00:57 +0000
Manifest this update:     Mon 02 Mar 2026 07:00:57 +0000
Manifest next update:     Tue 03 Mar 2026 07:00:57 +0000
Files and hashes:         1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: n1R7FJ5QGMBl8j7J7AnSYF6NDms/txmx9SJ18t+1I9k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:9f:6c:95:9d:58:d9:e5:bf:87:96:38:d3:17:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
        Validity
            Not Before: Mar  2 07:00:57 2026 GMT
            Not After : Mar  3 07:00:57 2026 GMT
        Subject: CN=83231332d465f3964af8a85dc0da14ded86aa597
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:53:1c:2a:96:bd:4d:92:9c:d3:d3:f2:df:0a:
                    55:d2:a6:7f:d1:40:af:be:71:d2:b8:cb:02:50:7f:
                    10:64:98:53:ec:cb:f7:28:6c:79:03:6b:93:e4:c3:
                    6e:ae:f3:57:b8:d9:74:93:ea:dc:db:9b:e7:00:0e:
                    8b:d4:0b:8f:44:96:27:15:f3:e4:56:7a:ce:6a:dc:
                    05:ce:01:b7:1e:7e:d9:9c:5e:15:08:db:4f:47:a2:
                    88:46:c5:be:3b:45:02:f8:60:6f:74:98:5e:9a:bd:
                    53:2c:d7:74:d2:59:1e:ce:66:2b:53:88:8a:fa:e3:
                    d7:f2:79:0e:73:ee:46:62:7e:09:33:bf:7d:1c:4b:
                    2f:de:3c:bc:e4:c1:38:5c:28:fd:fe:bd:d4:4f:c9:
                    61:b2:48:42:7a:16:c5:88:23:f1:19:11:44:10:f1:
                    35:31:9c:10:6e:95:af:f1:ef:17:cc:09:42:16:fa:
                    2b:49:c1:8c:bc:2c:82:cb:b8:d8:e8:26:7b:f4:80:
                    eb:10:45:79:c0:54:c7:b9:15:1b:8e:9b:94:d8:88:
                    f0:de:89:aa:96:eb:19:0e:cc:7f:ea:19:65:2d:1f:
                    59:04:ad:24:5c:a9:6d:14:14:2d:74:cf:58:7a:85:
                    82:a6:dc:f3:20:27:70:55:26:13:1d:57:99:2e:bb:
                    bc:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:23:13:32:D4:65:F3:96:4A:F8:A8:5D:C0:DA:14:DE:D8:6A:A5:97
            X509v3 Authority Key Identifier:
                keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:b3:fb:5b:6a:f3:8e:81:ea:6a:bc:25:79:6b:1e:63:0d:46:
         31:1b:2a:02:52:fd:dc:d1:4e:32:ea:9a:ee:27:a1:45:aa:7d:
         a6:b7:0e:60:08:87:4c:1d:0c:72:2a:16:f5:68:14:46:c7:9e:
         cb:7c:7d:20:31:fd:88:68:09:4c:43:be:67:36:c5:85:34:de:
         a4:3e:5e:c1:c8:15:0a:f7:ed:7b:dc:78:c1:6d:f4:76:7e:72:
         24:02:94:c7:cb:13:4d:85:fb:2c:68:b6:38:57:7f:70:79:ba:
         ea:70:ed:8a:a4:4f:22:97:2f:e9:22:10:24:c5:76:8c:94:8f:
         c4:f1:6b:e5:69:6a:21:c5:05:9c:13:29:67:4a:96:3b:1f:2f:
         b8:94:75:0d:4d:16:93:23:bb:a8:63:b8:dd:56:97:44:d1:20:
         3a:0d:2a:45:54:cf:c8:c2:73:e4:ef:80:2a:ed:e3:90:17:1d:
         04:16:8d:3e:82:44:5a:87:6c:cd:a2:7a:bf:33:5a:89:50:ea:
         1b:ae:d9:0e:e3:19:72:e6:be:e5:e8:c7:3f:14:34:76:6e:93:
         da:5a:d1:dd:ed:9f:89:fd:24:5d:b4:f1:43:bb:74:f1:cf:14:
         29:81:80:c5:b3:4b:0c:7c:3b:41:17:df:52:2e:84:e7:6f:9d:
         90:9c:0d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----