Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File:                     TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier:          eNMLPeTmio1NXt9/kUb196jITL9b8YQNH3pJHOCZWMs=
Subject key identifier:   47:AD:10:D9:C7:E5:D8:62:4E:EE:1D:67:F0:71:48:3E:07:66:3B:95
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer:       /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial:       019DA3AEFEA6B01E2DCB517E933AE99521B0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number:          0B36
Signing time:             Sun 19 Apr 2026 03:00:47 +0000
Manifest this update:     Sun 19 Apr 2026 03:00:47 +0000
Manifest next update:     Mon 20 Apr 2026 03:00:47 +0000
Files and hashes:         1: TT7AxVwRgLIDSeadKvoi71E8vK0.asa (hash: o3OsuB0V5ph9dQ1ef1EOSm9Ca3120WnHHtR+xfhJuI4=)
                          2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: xm56Yv+N51S/sFpgeWojRjZtVwxyb4Pule6hC0ofHaU=)
                          3: vkkRAkl-IwQNmrBge38zIHM1u4s.roa (hash: ww7yIGrhLBt5cEWEEdI9G55jx6vHqfpMgzLOawUYyek=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Apr 2026 02:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:a3:ae:fe:a6:b0:1e:2d:cb:51:7e:93:3a:e9:95:21:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
        Validity
            Not Before: Apr 19 03:00:47 2026 GMT
            Not After : Apr 20 03:00:47 2026 GMT
        Subject: CN=47ad10d9c7e5d8624eee1d67f071483e07663b95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:cf:23:d8:fb:a7:5e:8a:e4:c7:27:0c:58:a0:
                    34:a2:29:cd:fa:1f:7f:8f:e8:91:bb:2f:c3:18:56:
                    c2:49:a3:dd:b0:7f:c3:49:57:3e:28:ec:f1:f2:95:
                    f8:32:15:97:de:9b:2e:0c:9b:d2:2a:31:ab:f9:e0:
                    1c:75:ff:23:ff:0f:72:db:95:ee:1f:e6:d1:99:40:
                    48:30:fb:64:4d:5a:73:6b:0d:64:67:35:ed:ad:74:
                    2d:e2:c9:4f:c4:4d:6e:3f:90:9b:06:00:94:fc:0d:
                    d8:dc:63:19:01:af:ba:fb:e5:09:ee:b9:da:71:84:
                    c5:39:e9:94:e6:82:fe:d1:72:fc:71:74:6d:9e:66:
                    01:a0:ff:4c:89:75:3a:cf:e0:98:e7:35:e7:9b:a0:
                    ee:ff:63:7e:0c:76:9e:b9:18:b0:6e:a3:fe:bb:5e:
                    d8:b4:a0:f6:2c:4d:9a:62:a5:84:0f:0a:aa:6a:2c:
                    cb:58:4d:ee:46:37:46:c9:d0:f3:fe:dc:8c:f6:fc:
                    0e:d5:ac:28:d0:af:c2:f6:4f:cf:eb:ad:12:69:bb:
                    54:55:5e:dd:da:b9:87:0a:cb:4c:0e:1c:b0:7f:3d:
                    d5:c2:92:d4:35:15:a9:82:90:90:e0:9e:f5:f5:26:
                    cb:93:9a:20:1d:4c:54:59:8e:43:d9:c5:77:3a:49:
                    6a:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:AD:10:D9:C7:E5:D8:62:4E:EE:1D:67:F0:71:48:3E:07:66:3B:95
            X509v3 Authority Key Identifier:
                keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:a1:d6:f9:6e:c7:64:05:9a:d2:65:3d:a9:58:86:c6:3a:65:
         3a:f3:38:8f:44:60:61:e0:dd:1b:7f:5d:0f:e6:80:f0:34:04:
         71:da:72:2f:4d:18:23:3c:5a:b3:fd:d6:f7:33:f0:25:3f:5c:
         ba:f1:be:5f:bf:5f:c7:71:b3:32:7f:4e:9a:57:41:2c:a6:26:
         a1:4c:d7:f7:73:74:73:f3:63:fc:1f:31:4b:3c:bc:94:5c:f0:
         ef:31:31:ae:b9:4b:2e:7c:22:21:e8:8d:c5:54:aa:62:e9:01:
         a9:1f:5d:35:25:e1:d8:c8:9f:9a:87:e3:85:a4:17:62:80:4d:
         00:1d:c3:30:80:96:94:e7:0b:25:82:7e:eb:57:73:7c:7b:40:
         0d:bd:5d:31:41:c2:54:b8:c8:3f:76:93:f6:00:4c:40:61:ad:
         d2:81:ab:30:87:2d:85:9b:c6:36:ba:0c:97:98:ca:89:c3:9d:
         d9:7f:83:6f:58:15:cb:5e:2a:33:ad:30:c8:3f:ae:30:77:99:
         ea:29:ea:b9:4e:cc:7f:60:21:4e:43:82:49:84:0d:83:ad:6e:
         e9:e2:31:14:de:c3:33:c5:db:63:30:ca:1a:a0:d1:64:f8:e3:
         ec:dc:29:28:14:8d:8d:08:32:1a:1c:aa:fe:3c:f2:3e:b8:c3:
         ff:2b:9c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:51 2026 by rpki-client