Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.mft
File:                     kVijd10MXrOPIPDvmjYRBhpRlbM.mft (raw, json)
Hash identifier:          dyu0lHsA8CryBHZyrAmnT+0eFgBuDJ7aoLadzRnO+Fc=
Subject key identifier:   1D:70:72:10:E7:83:DE:09:68:AB:34:E9:75:49:78:4B:4C:EB:61:D5
Authority key identifier: 91:58:A3:77:5D:0C:5E:B3:8F:20:F0:EF:9A:36:11:06:1A:51:95:B3
Certificate issuer:       /CN=9158a3775d0c5eb38f20f0ef9a3611061a5195b3
Certificate serial:       019D9C2D6CC80AE51B7EE3753A176A485FD0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kVijd10MXrOPIPDvmjYRBhpRlbM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.mft
Manifest number:          18C0
Signing time:             Fri 17 Apr 2026 16:01:55 +0000
Manifest this update:     Fri 17 Apr 2026 16:01:55 +0000
Manifest next update:     Sat 18 Apr 2026 16:01:55 +0000
Files and hashes:         1: kVijd10MXrOPIPDvmjYRBhpRlbM.crl (hash: lzZnYqD44hUR1Nx+BnePEJhRYesdbzAFFDMbh3QW2D0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kVijd10MXrOPIPDvmjYRBhpRlbM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 14:47:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9c:2d:6c:c8:0a:e5:1b:7e:e3:75:3a:17:6a:48:5f:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9158a3775d0c5eb38f20f0ef9a3611061a5195b3
        Validity
            Not Before: Apr 17 16:01:55 2026 GMT
            Not After : Apr 18 16:01:55 2026 GMT
        Subject: CN=1d707210e783de0968ab34e97549784b4ceb61d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:30:5a:ee:49:39:c1:39:f2:e0:f2:7e:1c:3b:
                    c1:92:3e:df:a2:82:73:ae:43:ee:87:2b:c6:66:27:
                    78:63:b3:9b:f0:6a:28:50:8b:88:f1:f6:e7:38:e8:
                    d6:2f:c0:45:ce:87:2a:76:00:8a:b0:e1:2f:6c:75:
                    7b:a8:ac:9a:e6:4a:2e:23:18:77:48:4a:8f:65:eb:
                    e9:c6:64:63:1a:65:80:10:bf:7b:47:3c:bc:f8:44:
                    7e:5e:f5:92:3c:30:b9:fb:a0:52:36:77:c6:ba:56:
                    30:90:81:cb:ce:c8:14:93:0a:c6:aa:53:c4:a6:92:
                    48:47:16:32:7d:49:bb:34:9d:ce:cf:d6:13:69:18:
                    c6:d5:97:d3:fe:28:b8:15:87:d6:90:64:12:6e:95:
                    5a:69:8d:ad:1b:44:9b:35:66:2d:17:d8:1a:e4:f2:
                    6b:72:19:92:24:b3:9c:97:2c:2f:40:36:67:ee:20:
                    f0:17:7e:0d:e2:41:21:96:fc:28:70:40:c7:23:63:
                    00:8f:18:15:7b:30:15:db:be:de:75:bd:75:75:e8:
                    9f:39:1e:03:5d:21:f8:72:20:e7:c2:f6:1c:4b:9a:
                    17:fa:53:6a:ce:5f:03:85:d2:08:85:f4:54:4b:f5:
                    5d:0e:0f:78:11:ee:20:0d:be:5f:69:5d:88:2f:e8:
                    46:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:70:72:10:E7:83:DE:09:68:AB:34:E9:75:49:78:4B:4C:EB:61:D5
            X509v3 Authority Key Identifier:
                keyid:91:58:A3:77:5D:0C:5E:B3:8F:20:F0:EF:9A:36:11:06:1A:51:95:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVijd10MXrOPIPDvmjYRBhpRlbM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:21:d8:ca:bd:45:60:f5:8b:37:be:ba:e8:51:b3:20:c5:f0:
         e2:67:bb:03:10:11:58:b1:be:98:b2:09:7c:87:56:7d:09:16:
         44:32:48:af:14:76:61:8e:53:81:b2:4a:5e:c8:e3:5e:3a:97:
         dd:8e:26:db:5a:4f:9e:30:ab:97:8d:3d:4a:f2:ab:bf:2a:78:
         de:fa:6d:bb:e8:1d:93:a7:7e:98:f9:74:2a:1b:ce:b7:32:76:
         53:8c:08:c3:e8:c2:0b:dc:f8:ac:35:c5:ec:b6:ac:74:b9:cf:
         a0:49:5e:1e:fa:d2:8e:6c:fa:bb:ea:78:d8:6d:22:ae:37:27:
         fa:9f:32:ab:9f:23:91:b1:ef:b0:6f:65:18:9a:9b:9a:18:de:
         be:63:6e:0f:5e:ce:f4:81:db:75:bc:5d:be:66:35:13:40:bd:
         f0:ad:db:aa:e3:61:b0:ff:43:80:0a:ef:8d:16:65:fa:f1:2b:
         d9:c8:ce:ca:f5:eb:b7:d6:79:d0:ae:df:55:b8:aa:de:2a:38:
         da:92:25:fe:1e:a4:0a:c4:8d:cc:b3:a0:b0:d7:3c:2e:cb:17:
         50:08:fe:46:2e:59:29:d9:cb:8f:44:6a:54:d4:0b:b4:14:40:
         b9:13:b6:32:84:eb:c0:3b:cd:83:ae:91:87:a3:a7:25:00:19:
         d1:14:7c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----