Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
File:                     2ggpHPxyjQF2DsQngQlqxrTHSl0.mft (raw, json)
Hash identifier:          jJNhE/7kxE0o1SUHVKfB7N/R0A2CPJ+VPuBOYOWIfU4=
Subject key identifier:   95:45:C1:9C:A4:52:3A:2C:50:D7:10:28:DE:85:53:B5:4F:06:D2:BF
Authority key identifier: DA:08:29:1C:FC:72:8D:01:76:0E:C4:27:81:09:6A:C6:B4:C7:4A:5D
Certificate issuer:       /CN=da08291cfc728d01760ec42781096ac6b4c74a5d
Certificate serial:       019EBE7EFF916B407C0C8A5CB07981D800E6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2ggpHPxyjQF2DsQngQlqxrTHSl0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
Manifest number:          1956
Signing time:             Sat 13 Jun 2026 01:00:54 +0000
Manifest this update:     Sat 13 Jun 2026 01:00:54 +0000
Manifest next update:     Sun 14 Jun 2026 01:00:54 +0000
Files and hashes:         1: 2ggpHPxyjQF2DsQngQlqxrTHSl0.crl (hash: 0VzlnlXErcMaZzRNJwixTfng8XbObvSbWabHZxCnxAU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2ggpHPxyjQF2DsQngQlqxrTHSl0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7e:ff:91:6b:40:7c:0c:8a:5c:b0:79:81:d8:00:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da08291cfc728d01760ec42781096ac6b4c74a5d
        Validity
            Not Before: Jun 13 01:00:54 2026 GMT
            Not After : Jun 14 01:00:54 2026 GMT
        Subject: CN=9545c19ca4523a2c50d71028de8553b54f06d2bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:b1:b7:a1:24:8f:49:ca:6b:41:35:a7:b1:ae:
                    c8:d8:7b:a3:0b:8f:96:a2:29:57:73:f9:8a:ab:98:
                    49:e7:3c:c6:9f:d0:21:5b:bf:75:21:13:8a:b5:24:
                    76:03:45:98:f1:ef:16:a5:16:9e:43:0d:65:01:24:
                    a3:b8:92:56:84:86:1b:23:f4:87:70:cd:04:49:24:
                    b2:c6:f6:43:7d:dc:d4:1b:4e:6a:9a:3b:c6:21:e2:
                    09:d2:a7:b7:ef:98:ae:6e:3e:66:12:14:63:78:f6:
                    28:61:a9:7f:fd:60:06:25:4f:eb:41:08:6c:d3:d8:
                    21:02:7c:31:25:a5:5b:c2:5b:ee:7b:ad:f8:f4:d7:
                    b7:88:e5:6a:ba:ef:de:86:77:77:b2:ae:02:ef:18:
                    ec:d2:91:8f:c3:3a:b2:79:d4:57:19:ec:ed:21:71:
                    fc:e4:49:20:03:51:89:a9:99:07:87:c5:c5:ce:b7:
                    f8:df:77:82:ef:69:a5:31:f3:7c:f2:74:f3:cc:eb:
                    94:26:34:0d:0b:52:80:1a:33:ea:f2:ea:c3:55:c6:
                    26:85:03:70:12:4c:99:f1:15:e2:25:65:1b:15:e6:
                    c9:d8:d7:ac:7a:3c:4b:fe:67:b9:6a:8a:07:b1:bf:
                    01:cf:97:18:c3:fc:aa:f5:fe:a2:a9:90:42:73:80:
                    a7:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:45:C1:9C:A4:52:3A:2C:50:D7:10:28:DE:85:53:B5:4F:06:D2:BF
            X509v3 Authority Key Identifier:
                keyid:DA:08:29:1C:FC:72:8D:01:76:0E:C4:27:81:09:6A:C6:B4:C7:4A:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ggpHPxyjQF2DsQngQlqxrTHSl0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:64:c8:08:69:8f:f4:e5:fe:2b:a3:91:67:10:9c:44:2e:27:
         1e:d8:2d:ef:39:2d:dd:3c:b4:9c:d7:10:53:ce:a4:67:07:31:
         c7:0d:ef:83:9f:1f:76:5f:5c:19:87:fc:bf:a9:44:68:f5:b0:
         ba:2c:7f:85:fa:d4:a5:58:11:70:2f:92:87:da:bf:4e:2f:73:
         22:02:49:78:ed:aa:79:b1:34:e3:18:f4:fe:ff:2b:87:7d:d6:
         da:1b:ca:01:f5:e4:fb:78:d5:d2:f2:94:e7:d6:1b:30:4c:ff:
         dc:2b:aa:c8:2c:28:93:7e:1f:5a:8c:73:43:ba:91:92:ac:c8:
         e6:93:31:07:ee:6f:07:b8:52:df:2e:bd:16:ff:6e:4d:6b:ae:
         70:49:65:07:70:d4:fb:e3:6c:66:ee:bb:83:20:27:41:7b:34:
         00:5a:a1:74:d1:c2:04:46:7e:14:af:cd:6b:67:64:71:e0:73:
         c4:aa:04:a2:34:03:fe:f5:75:a7:6c:4c:af:cd:24:cb:f3:58:
         99:4f:e2:e2:6b:fa:80:f7:58:e0:a6:2c:66:64:0a:55:cb:76:
         73:1c:2d:85:f3:b2:c6:92:f8:2f:8d:ac:65:7e:26:b9:2e:52:
         4f:93:f5:07:b4:82:05:74:ec:78:3d:8f:eb:8e:81:92:98:1e:
         f9:d7:82:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----