Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
File:                     02jCohY2GiT97Jfx838uHRIHEIc.mft (raw, json)
Hash identifier:          wPQWK5JHOs0e/Z/tTP/3njda0qCuNpMjsg0ijghIIqg=
Subject key identifier:   28:40:88:E7:19:12:07:35:60:AB:E7:A2:F5:CC:1F:4E:F2:E7:BE:9F
Authority key identifier: D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87
Certificate issuer:       /CN=d368c2a216361a24fdec97f1f37f2e1d12071087
Certificate serial:       019D985027C902FE3CAA8731EFE38B7E1285
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
Manifest number:          18BD
Signing time:             Thu 16 Apr 2026 22:01:22 +0000
Manifest this update:     Thu 16 Apr 2026 22:01:22 +0000
Manifest next update:     Fri 17 Apr 2026 22:01:22 +0000
Files and hashes:         1: 02jCohY2GiT97Jfx838uHRIHEIc.crl (hash: AK036H/UeNmh1diZIuEgacuAx76IJid2ItWdk14c2SU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:50:27:c9:02:fe:3c:aa:87:31:ef:e3:8b:7e:12:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d368c2a216361a24fdec97f1f37f2e1d12071087
        Validity
            Not Before: Apr 16 22:01:22 2026 GMT
            Not After : Apr 17 22:01:22 2026 GMT
        Subject: CN=284088e71912073560abe7a2f5cc1f4ef2e7be9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:84:d3:c0:5b:78:f3:6d:5a:eb:8a:33:13:ec:
                    5c:51:0c:36:5f:55:cc:eb:23:08:01:a4:20:47:6c:
                    c9:a7:58:08:0f:09:7c:a2:fa:80:35:ee:7e:56:65:
                    a0:03:89:cb:17:77:a1:95:5f:74:66:2a:35:1f:e1:
                    de:de:fc:c6:ed:d0:67:46:42:92:3d:f8:fc:01:0d:
                    65:44:40:18:58:e9:86:41:09:46:2f:47:ac:47:a1:
                    03:26:49:5d:8a:8f:81:14:82:74:f3:b0:14:ee:1a:
                    5d:f1:65:09:25:6d:23:45:1d:8c:fa:58:ff:b3:5b:
                    83:98:e6:a8:ec:7f:34:5c:ba:c4:1e:69:c2:58:7f:
                    c9:05:a1:80:4b:77:f8:66:ac:e5:2d:af:5d:b3:33:
                    0d:5d:f6:35:a9:c5:fc:cd:3d:e6:6f:cb:bd:b9:ef:
                    b6:28:03:53:f1:cc:36:83:01:ac:d4:51:a1:48:5b:
                    a5:79:fc:a2:59:e1:6e:d8:a2:a0:a0:67:79:6d:02:
                    8f:ed:0b:bc:cf:90:6d:5a:2d:56:fe:c4:7b:54:44:
                    36:38:b3:b4:af:fa:f2:dd:c9:dc:d8:18:d2:0e:2c:
                    4b:25:db:e4:c7:6f:ca:5c:bc:22:ca:81:41:ad:6c:
                    67:57:a5:e5:45:fb:28:ee:4f:5b:8d:6f:e6:27:b9:
                    02:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:40:88:E7:19:12:07:35:60:AB:E7:A2:F5:CC:1F:4E:F2:E7:BE:9F
            X509v3 Authority Key Identifier:
                keyid:D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:80:9c:b0:39:b9:93:29:7f:9d:8b:c3:f2:70:98:50:47:73:
         24:71:3c:0a:1a:1e:09:8e:a1:97:89:27:d0:b7:f6:98:b5:1a:
         d2:3f:69:7e:99:cf:95:c8:b2:29:80:6c:63:38:1b:98:17:57:
         7c:56:e9:97:0e:bc:0d:75:08:df:57:3f:b7:d3:fc:10:1c:e8:
         f6:13:75:b6:07:3c:89:6b:aa:e6:49:6e:82:eb:12:c1:8e:7d:
         44:2f:ed:76:71:58:7f:90:f3:0d:7e:98:fb:59:48:76:47:8f:
         5f:d1:7f:62:a5:cb:85:89:16:84:8a:fc:f9:a5:ae:47:1f:7e:
         48:4b:0d:c8:14:52:d9:6e:39:e9:4c:3a:cb:40:1e:b5:07:5f:
         a3:b1:9a:80:9b:80:d7:9b:b0:31:c1:d0:60:11:50:5b:b6:f2:
         f0:46:4c:53:20:0b:4a:70:4c:13:c2:9b:02:e1:35:18:60:21:
         4a:e7:73:4e:77:88:64:cd:42:5a:b0:a5:9c:74:8a:18:16:d2:
         30:45:84:b2:c1:3c:ff:21:24:dd:39:ec:e4:6d:01:b5:ff:ea:
         bf:e1:4c:cb:51:17:3a:49:92:cf:52:1a:91:ef:11:f1:d6:a9:
         cc:89:f1:c5:d3:9e:f6:52:2d:8a:a2:f5:5d:ce:4c:00:5c:6d:
         67:c2:12:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----