Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
File:                     4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft (raw, json)
Hash identifier:          1+MXai6l24FVmCpz9X7AEbA39bF+2NJ7cZg+ZmKIsH4=
Subject key identifier:   06:AE:0C:40:37:89:34:20:9C:E6:99:20:75:F4:D8:F0:CF:08:77:5D
Authority key identifier: E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4
Certificate issuer:       /CN=e0b867131100c15de890110063e638a5f02367c4
Certificate serial:       019EC148E3536AC50368D69CF00E0D6CCEF7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
Manifest number:          1959
Signing time:             Sat 13 Jun 2026 14:00:39 +0000
Manifest this update:     Sat 13 Jun 2026 14:00:39 +0000
Manifest next update:     Sun 14 Jun 2026 14:00:39 +0000
Files and hashes:         1: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl (hash: JmTr9lzqo5T+78r0VgJ+AyEDwGbE/1DjkNB7yU8Ypdw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 14:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c1:48:e3:53:6a:c5:03:68:d6:9c:f0:0e:0d:6c:ce:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0b867131100c15de890110063e638a5f02367c4
        Validity
            Not Before: Jun 13 14:00:39 2026 GMT
            Not After : Jun 14 14:00:39 2026 GMT
        Subject: CN=06ae0c40378934209ce6992075f4d8f0cf08775d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:01:54:2b:0a:b7:c6:72:90:ce:55:85:1e:82:
                    50:4d:5e:c2:2d:93:7d:f5:eb:89:0d:26:9d:01:3a:
                    36:de:dc:01:f5:14:37:69:77:6a:99:10:32:9c:b3:
                    e6:91:4f:97:d8:c6:82:a3:30:26:11:1a:be:da:73:
                    45:89:6f:ba:8a:53:d9:50:45:8b:eb:89:57:9f:96:
                    f0:c6:30:0b:50:0a:e5:6a:92:ba:0e:c1:25:7f:0b:
                    19:3f:16:78:7f:0f:ef:72:ea:34:33:93:1c:19:ec:
                    19:fc:51:e7:64:51:45:2d:68:79:46:18:33:5a:3c:
                    dc:8e:a5:07:6c:8f:1e:16:84:87:a4:14:d0:5c:48:
                    46:7e:09:1f:c8:81:08:07:53:cc:fe:3d:25:18:7c:
                    91:c1:49:60:fb:63:3b:a6:ff:45:4d:49:0b:19:c3:
                    88:54:3e:a6:7c:fb:c3:93:2d:78:3b:24:33:58:2d:
                    8c:29:06:9e:dc:53:ca:05:de:68:a8:2d:04:a2:a6:
                    59:9e:a1:a1:ef:c9:e4:2a:73:66:9a:19:52:e5:2f:
                    ea:15:d8:92:94:8b:5a:8f:33:35:e4:55:61:dc:1b:
                    59:ae:ee:13:bb:c8:29:4e:71:4b:0e:97:4c:f8:c5:
                    2a:b1:c5:45:81:59:89:c0:1c:be:f6:89:4b:34:32:
                    e0:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:AE:0C:40:37:89:34:20:9C:E6:99:20:75:F4:D8:F0:CF:08:77:5D
            X509v3 Authority Key Identifier:
                keyid:E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:f1:13:df:17:0c:83:a2:70:0a:c2:a9:40:81:43:01:00:ff:
         01:18:3c:86:a3:ff:cd:88:1a:e2:e2:a4:cd:62:48:99:b5:b5:
         82:96:41:08:e3:0b:10:5d:83:68:64:2d:f0:9a:9a:9e:60:3f:
         66:da:36:50:8c:c4:f6:bc:d8:77:be:5b:6a:36:f0:cf:06:73:
         22:6f:f3:5d:67:9f:ec:e8:cd:1f:bd:dd:f2:de:d4:96:00:9a:
         87:9b:f2:b3:dc:6b:e7:b1:b9:56:b3:2c:cc:41:a9:05:a5:4b:
         b2:ed:d0:b3:17:78:7f:eb:6d:e0:31:fc:f7:83:69:21:f3:da:
         ed:f6:70:91:2a:81:40:ff:91:d1:2e:d2:1c:ad:14:de:cf:f3:
         07:3c:25:ff:0b:1c:fe:e7:16:be:88:67:40:82:24:92:0f:8f:
         63:eb:a8:27:a1:d5:68:e7:82:d0:63:b1:1b:a7:a5:5c:91:67:
         7d:19:10:bd:df:a3:d8:c2:1b:59:35:6c:1f:16:5b:59:c7:ad:
         5a:79:e3:0a:58:b7:a2:a2:ef:6a:05:aa:93:31:56:39:d9:42:
         28:7a:4e:5b:23:83:68:c3:ef:5e:f6:69:57:81:06:d8:d0:f1:
         6e:3a:8f:23:3a:1c:ac:6c:5f:08:3e:ec:1b:9d:96:45:11:ea:
         82:a6:1d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----