Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File:                     K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier:          Ga8d1ez7t1V757+cnTcdx1amHKmMwJ+jVC37jiKKjfA=
Subject key identifier:   6F:C5:56:EB:48:5D:D6:33:59:E9:36:B6:A6:04:F3:F3:01:B3:BE:66
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer:       /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial:       019CAC103D18242BE8942B1AFE4B1D97602A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number:          0A13
Signing time:             Mon 02 Mar 2026 01:01:11 +0000
Manifest this update:     Mon 02 Mar 2026 01:01:11 +0000
Manifest next update:     Tue 03 Mar 2026 01:01:11 +0000
Files and hashes:         1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: ko3gYjsKykBm6oVV0tQeuNE220Jt1q9skh71xoDF0Z8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:10:3d:18:24:2b:e8:94:2b:1a:fe:4b:1d:97:60:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
        Validity
            Not Before: Mar  2 01:01:11 2026 GMT
            Not After : Mar  3 01:01:11 2026 GMT
        Subject: CN=6fc556eb485dd63359e936b6a604f3f301b3be66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:03:67:e7:bf:92:56:eb:31:ea:22:01:02:42:
                    9c:74:10:42:d2:86:43:69:16:4c:30:1d:ee:27:ac:
                    41:92:39:86:3e:ec:0e:dc:17:61:6d:50:c9:1f:b2:
                    cc:70:ff:b5:f0:f3:ca:9d:60:6a:b1:b6:0d:58:c1:
                    72:c2:9e:2a:c3:09:cb:af:2a:2d:98:5c:43:92:6d:
                    bf:60:c9:94:27:5d:fb:aa:61:c6:3b:01:7e:dc:56:
                    ab:99:85:75:1f:62:11:f6:56:de:84:cf:30:9f:22:
                    38:d1:50:62:9b:de:0a:b7:88:a8:5f:83:73:94:dd:
                    a3:47:2d:bd:a0:95:de:bb:64:1a:84:7f:9b:8a:55:
                    9a:04:9d:31:de:47:c6:94:b4:0d:77:cc:5e:94:39:
                    a7:ad:9e:f0:4b:dc:63:e0:cb:95:fd:88:81:d7:ab:
                    07:8c:55:ae:96:92:57:82:e6:ae:67:ce:4f:15:0c:
                    1b:8f:57:77:c8:6d:45:42:15:7d:5e:de:03:26:75:
                    94:bf:3b:ad:07:e9:8a:2e:70:93:92:8e:3d:b4:9e:
                    9c:81:07:a6:79:99:6f:86:91:d5:ba:4a:bf:0f:f7:
                    48:ca:fa:bc:7e:0a:77:54:4a:3a:35:ac:c0:27:40:
                    26:cb:3d:87:82:91:5b:8a:33:d2:7f:ef:11:ea:11:
                    f1:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:C5:56:EB:48:5D:D6:33:59:E9:36:B6:A6:04:F3:F3:01:B3:BE:66
            X509v3 Authority Key Identifier:
                keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:6f:79:e0:db:53:47:8e:e2:61:46:56:f7:56:91:0e:ae:5f:
         57:05:a7:e6:2a:22:7d:87:ce:93:96:fe:ea:28:8b:a9:d5:a5:
         03:c8:fe:22:02:9b:01:26:de:8e:55:f7:ff:3c:cf:f1:6b:d9:
         b8:7d:70:60:6d:7e:b4:9f:a2:c2:b7:e6:b3:d1:40:90:12:12:
         79:33:fb:61:7d:dd:0a:9b:b1:84:4d:8a:89:f2:8e:3d:69:91:
         c7:03:82:79:e9:14:f3:36:58:f5:6e:d2:ec:69:f9:7f:88:0f:
         d7:b0:9d:e2:17:32:58:c1:66:07:1e:74:6d:6d:09:f3:37:25:
         0a:66:3f:29:8c:44:5e:25:0d:cd:89:b0:fb:ee:37:d2:88:6a:
         31:65:eb:77:a0:33:ac:05:4d:50:70:c2:70:52:48:65:33:4b:
         23:03:82:eb:51:95:e7:9d:a8:07:15:80:d1:86:f0:d7:16:fc:
         fa:78:be:cb:2d:be:3c:fb:86:76:54:44:4b:c8:ff:bb:d4:99:
         21:d3:95:9a:b6:7f:8d:66:b6:28:39:9d:fc:1d:62:ae:81:61:
         39:26:73:e6:16:88:22:12:14:f2:6d:28:63:a3:d1:08:a9:a5:
         04:1a:20:cc:ef:9d:ce:0b:65:47:7b:57:77:fb:ed:06:72:77:
         72:bc:22:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----